diff --git a/.acrolinx-config.edn b/.acrolinx-config.edn deleted file mode 100644 index 8e363367900..00000000000 --- a/.acrolinx-config.edn +++ /dev/null @@ -1,57 +0,0 @@ -{ - ; https://support.acrolinx.com/hc/en-us/articles/10342999034130-Define-What-Acrolinx-for-Git-Hosting-Checks - :allowed-branchname-matches ["main" "live"] - :allowed-filename-matches ["^concepts/(?!toc\\.yml).*" "includes/" "(?i)(?!(^.*/i|^i)ntune[^/]*$|(^.*/e|^e)nums[^/]*$|(^.*/t|^t)oc\\.yml[^/]*$)^api-reference/.*$"] - - :use-gh-statuses true - - :targets - { - :counts { - ;;:correctness 13 - ;;:total 15 ;; absolute flag count but i don't know the difference between this and issues - ;;:issues 15 ;; coming from the platform, will need to be tested. - ;;:correctness 13 ;; combined spelling and grammar - } - :scores { - ;;:terminology 100 - :qualityscore 80 - ;;:correctness 40 - } - } - - :guidance-profile "d2b6c2c8-00ee-47f1-8d10-b280cc3434c1" ;; Profile ID for "M365-specific" - - :template-header - - " - -## Acrolinx Scorecards - -**The minimum Acrolinx topic score of 80 is required for all Microsoft Graph content merged to the default branch.** - -If you need a scoring exception for content in this PR, add the *ready for content review* and the *acrolinx exception* labels to the PR. The content review team will review the exception request and may take one or more of the following actions: - -- Work with you to resolve the issues requiring the exception. -- Escalate the exception request to the Acrolinx Review Team for review. -- Approve the exception and work with the GitHub Admin Team to merge the PR to the default branch. - -For more information about the exception criteria and exception process, see [Acrolinx for Microsoft Graph docs](https://eng.ms/cid/27dee76c-3a60-4e65-8fdf-08ea849b3498/fid/d80517923e291f07a0da8b5ce8e082ba680a55ddda65497a1061ca9f97c50290). - -Select the scorecard links for each article to review the Acrolinx feedback on grammar, spelling, punctuation, writing style, and terminology: - -| Article | Score | Issues | Correctness
score | Scorecard | Processed | -| ------- | ----- | ------ | ------ | --------- | --------- | -" - - :template-change - "| ${s/file} | ${acrolinx/qualityscore} | ${acrolinx/flags/issues} | ${acrolinx/scores/correctness} | [link](${acrolinx/scorecard}) | ${s/status} | -" - - :template-footer - " -**More info about Acrolinx** - -Use the Acrolinx extension, or sidebar, in Visual Studio Code to check spelling, grammar, style, tone, clarity, and key terminology when you're creating or updating content. For more information, see [Use the Visual Studio Code extension to run Acrolinx locally](https://learn.microsoft.com/help/platform/acrolinx-vscode-setup) (you must sign in to access the page). -" -} diff --git a/.openpublishing.redirection.json b/.openpublishing.redirection.json index fc4365900dd..df1e2b5be7b 100644 --- a/.openpublishing.redirection.json +++ b/.openpublishing.redirection.json @@ -1,5 +1,15 @@ { "redirections": [ + { + "source_path": "api-reference/beta/resources/accessreviewdatauploadtriggercallbackdata.md", + "redirect_url": "/graph/api/resources/customdataprovidedresourcepayloads-data?view=graph-rest-beta", + "redirect_document_id": false + }, + { + "source_path": "api-reference/beta/resources/accessreviewresourcedatauploadsessioncontextdata.md", + "redirect_url": "/graph/api/resources/customdataprovidedresourcepayloads-accessreviewcontextdata?view=graph-rest-beta", + "redirect_document_id": false + }, { "source_path": "api-reference/beta/api/readingassignmentsubmission-get.md", "redirect_url": "api-reference/beta/api/reportsroot-list-readingassignmentsubmissions.md", diff --git a/api-reference/beta/api/accesspackagesubject-update.md b/api-reference/beta/api/accesspackagesubject-update.md index 4d35a7223de..a7ed9a991c2 100644 --- a/api-reference/beta/api/accesspackagesubject-update.md +++ b/api-reference/beta/api/accesspackagesubject-update.md @@ -24,6 +24,9 @@ Choose the permission or permissions marked as least privileged for this API. Us [!INCLUDE [permissions-table](../includes/permissions/accesspackagesubject-update-permissions.md)] +[!INCLUDE [rbac-entitlement-catalog-owner-write](../includes/rbac-for-apis/rbac-entitlement-management-catalog-owner-apis-write.md)] + + ## HTTP request + +``` http +POST https://graph.microsoft.com/beta/deviceManagement/virtualEndpoint/provisioningPolicies/1d164206-bf41-4fd2-8424-a3192d39ffff/apply +Content-Type: application/json + +{ + "isForceUserLogoffEnabled": true, + "reservePercentage": 0 +} +``` + +# [C#](#tab/csharp) +[!INCLUDE [sample-code](../includes/snippets/csharp/apply-cloudpcprovisioningpolicy-frontline-forcelogoff-csharp-snippets.md)] +[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] + +# [Go](#tab/go) +[!INCLUDE [sample-code](../includes/snippets/go/apply-cloudpcprovisioningpolicy-frontline-forcelogoff-go-snippets.md)] +[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] + +# [Java](#tab/java) +[!INCLUDE [sample-code](../includes/snippets/java/apply-cloudpcprovisioningpolicy-frontline-forcelogoff-java-snippets.md)] +[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] + +# [JavaScript](#tab/javascript) +[!INCLUDE [sample-code](../includes/snippets/javascript/apply-cloudpcprovisioningpolicy-frontline-forcelogoff-javascript-snippets.md)] +[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] + +# [PHP](#tab/php) +[!INCLUDE [sample-code](../includes/snippets/php/apply-cloudpcprovisioningpolicy-frontline-forcelogoff-php-snippets.md)] +[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] + +# [Python](#tab/python) +[!INCLUDE [sample-code](../includes/snippets/python/apply-cloudpcprovisioningpolicy-frontline-forcelogoff-python-snippets.md)] +[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] + +--- + +#### Response + +The following example shows the response. + + + +``` http +HTTP/1.1 204 No Content +``` diff --git a/api-reference/beta/api/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult.md b/api-reference/beta/api/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult.md new file mode 100644 index 00000000000..1ef71845373 --- /dev/null +++ b/api-reference/beta/api/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult.md @@ -0,0 +1,86 @@ +--- +title: "cloudPcProvisioningPolicy: retrievePolicyUpdateStatusResult" +description: "Retrieve the pending apply status of a provisioning policy to determine whether unapplied changes exist for Cloud PCs." +author: "zhuangzhuang131419" +ms.localizationpriority: medium +ms.subservice: "cloud-pc" +doc_type: apiPageType +ms.date: 06/01/2026 +--- + +# cloudPcProvisioningPolicy: retrievePolicyUpdateStatusResult + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Retrieve the pending apply status of a [provisioning policy](../resources/cloudpcprovisioningpolicy.md) to determine whether unapplied changes exist for Cloud PCs. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult-permissions.md)] + +## HTTP request + + + +``` http +GET /deviceManagement/virtualEndpoint/provisioningPolicies/{id}/retrievePolicyUpdateStatusResult +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this function returns a `200 OK` response code and a [cloudPcPolicyPendingApplyStatusResult](../resources/cloudpcpolicypendingapplystatusresult.md) in the response body. + +## Examples + +### Request + +The following example shows a request. + + + +``` http +GET https://graph.microsoft.com/beta/deviceManagement/virtualEndpoint/provisioningPolicies/b0c2d35f-3385-46c8-a6f5-6c3dfad7708b/retrievePolicyUpdateStatusResult +``` + +### Response + +The following example shows the response. + + + +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.type": "https://graph.microsoft.com/beta/$metadata#cloudPcPolicyPendingApplyStatusResult", + "hasUnappliedPolicyUpdate": true +} +``` diff --git a/api-reference/beta/api/crosstenantmigrationjob-migrate.md b/api-reference/beta/api/crosstenantmigrationjob-migrate.md index b89ee2980e9..3a2c669f645 100644 --- a/api-reference/beta/api/crosstenantmigrationjob-migrate.md +++ b/api-reference/beta/api/crosstenantmigrationjob-migrate.md @@ -68,6 +68,8 @@ This method can also return the following error codes in the response body. ### Request The following example shows a request. + +# [HTTP](#tab/http) ``` http -POST /identityGovernance/entitlementManagement/accessPackageCatalogs/{accessPackageCatalogId}/accessPackageResources/{accessPackageResourceId}/uploadSessions/{customDataProvidedResourceUploadSessionId}/uploadFile +POST /identityGovernance/catalogs/{catalogId}/accessPackageResources/{accessPackageResourceId}/uploadSessions/{customDataProvidedResourceUploadSessionId}/uploadFile ``` ## Request headers @@ -46,14 +46,15 @@ POST /identityGovernance/entitlementManagement/accessPackageCatalogs/{accessPack |Name|Description| |:---|:---| |Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| -|Content-Type| multipart/form-data; boundary={your-boundary}. Required.| +|Content-Type|multipart/form-data; boundary={your-boundary}. Required.| ## Request body The body can contain a multipart message as shown in the example. -The columns in CSV should match the attributes of [accessReviewDataUploadTriggerCallbackData](../resources/accessreviewdatauploadtriggercallbackdata.md) object. +The columns in the CSV should match the following required properties: `PrincipalAADId`, `ResourceId`, `ResourceName`, `ResourceDescription`, `ResourceType`, `PermissionId`, `PermissionName`, `PermissionDescription`, `PermissionType`, `ResourceOwners[AAD users]`. ## Response + If successful, this action returns a `200 OK` response code and a [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md) in the response body. ## Examples @@ -69,20 +70,21 @@ The following example shows a request. } --> ```http -POST https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageCatalogs/{accessPackageCatalogId}/accessPackageResources/{accessPackageResourceId}/uploadSessions/{customDataProvidedResourceUploadSessionId}/uploadFile +POST https://graph.microsoft.com/beta/identityGovernance/catalogs/{catalogId}/accessPackageResources/{accessPackageResourceId}/uploadSessions/{customDataProvidedResourceUploadSessionId}/uploadFile Content-Type: multipart/form-data; boundary=MyPartBoundary198374 --MyPartBoundary198374 -Content-Disposition: form-data; name="file"; filename="valid.csv" +Content-Disposition: form-data; name="file"; filename="building-access-data.csv" Content-Type: application/octet-stream -PrincipalAADId,ResourceId,ResourceName,ResourceDescription,ResourceType,PermissionId,PermissionName,PermissionDescription,PermissionType,ResourceOwners -john.doe@contoso.com,550e8400-e29b-41d4-a716-446655440000,Building A,Main office building,Building,6ba7b810-9dad-11d1-80b4-00c04fd430c8,Access,Physical access to building,Physical,["admin@contoso.com"] -jane.doe@contoso.com,550e8400-e29b-41d4-a716-446655440001,Room 101,Conference room,Room,6ba7b810-9dad-11d1-80b4-00c04fd430c9,Reserve,Book conference room,Administrative,["admin@contoso.com","manager@contoso.com"] +principalId,principalType,permissionId,permissionName,permissionDescription,permissionType +550e8400-e29b-41d4-a716-446655440000,user,6ba7b810-9dad-11d1-80b4-00c04fd430c8,Access,Physical access to building,Physical +7c9e6679-7425-40de-944b-e07fc1f90ae7,user,6ba7b810-9dad-11d1-80b4-00c04fd430c9,Reserve,Book conference room,Administrative --MyPartBoundary198374 ``` # [JavaScript](#tab/javascript) + [!INCLUDE [sample-code](../includes/snippets/javascript/customdataprovidedresourceuploadsessionthisuploadfile-javascript-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] @@ -103,22 +105,21 @@ HTTP/1.1 200 OK Content-Type: application/json { - "@odata.context": "https://graph.microsoft.com/beta/$metadata#microsoft.graph.customDataProvidedResourceUploadSession", + "@odata.context": "https://graph.microsoft.com/beta/$metadata#microsoft.graph.customDataProvidedResourceAccessReviewUploadSession", + "@odata.type": "#microsoft.graph.customDataProvidedResourceAccessReviewUploadSession", "id": "0b64df22-1a83-472c-9556-6c3dc41742b9", "referenceId": "ca24f9b9-5917-4971-9b5b-07aae0aa74e8", "status": "active", "isUploadDone": false, "createdDateTime": "2026-04-01T18:24:07.1484627Z", - "source": "BuildingAccessDataTIP", - "type": "#microsoft.graph.accessReviewDataUploadTriggerCallbackData", "stats": { "filesUploaded": 1, "totalBytesUploaded": 198374 }, "data": { - "@odata.type": "#microsoft.graph.accessReviewResourceDataUploadSessionContextData", - "accessReviewId": "f5744a40-bca0-4506-a286-a8afac513d1c", - "accessReviewInstanceId": "ca24f9b9-5917-4971-9b5b-07aae0aa74e8" + "@odata.type": "#microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextData", + "reviewDefinitionId": "f5744a40-bca0-4506-a286-a8afac513d1c", + "reviewInstanceId": "ca24f9b9-5917-4971-9b5b-07aae0aa74e8" }, "files": [ { @@ -130,4 +131,3 @@ Content-Type: application/json ] } ``` - diff --git a/api-reference/beta/api/distributionlist-addmembers.md b/api-reference/beta/api/distributionlist-addmembers.md index 4307caed849..a098d434c34 100644 --- a/api-reference/beta/api/distributionlist-addmembers.md +++ b/api-reference/beta/api/distributionlist-addmembers.md @@ -60,6 +60,7 @@ If successful, this action returns a `200 OK` response code and a [distributionL ### Request The following example shows a request. +# [HTTP](#tab/http) +[!INCLUDE [permissions-table](../includes/permissions/groupanalytics-get-permissions.md)] + +[!INCLUDE [rbac-usage-insights-apis](../includes/rbac-for-apis/rbac-usage-insights-apis.md)] + +## HTTP request + + +```http +GET /reports/identityAnalytics/groups/{groupAnalyticsId} +``` + +## Optional query parameters + +This method supports the `$select` OData query parameter to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). + +## Request headers + +| Name | Description | +| :------------ | :------------- | +| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts). | + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a [groupAnalytics](../resources/groupanalytics.md) object in the response body. + +## Examples + +### Request + +The following example shows a request. + + +```http +GET https://graph.microsoft.com/beta/reports/identityAnalytics/groups/1f3a3b9c-6e2c-4f0a-9b2c-9a6d4d2e8f10 +``` + +### Response + +The following example shows the response. + +>**Note:** The response object shown here might be shortened for readability. + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/beta/$metadata#reports/identityAnalytics/groups/$entity", + "id": "1f3a3b9c-6e2c-4f0a-9b2c-9a6d4d2e8f10", + "tenantId": "5d6f7a8b-1c2d-3e4f-5a6b-7c8d9e0f1a2b", + "displayName": "Sales Team", + "calculatedDateTime": "2026-06-08T00:00:00Z", + "createdDateTime": "2023-02-15T10:30:00Z", + "groupType": "isCloudGroup", + "dynamicMembershipType": "None", + "isValidGroup": true, + "isCloudM365Group": true, + "isCloudDistributionListGroup": false, + "isCloudMailEnabledSecurityGroup": false, + "isCloudSecurityGroup": false, + "isDynamicGroup": false, + "isOnPremiseDistributionListGroup": false, + "isOnPremiseMailEnabledSecurityGroup": false, + "isOnPremiseSecurityGroup": false, + "directGroupMemberCount": 3, + "transitiveUserCount": 412, + "memberTransitiveUserCount": 405, + "guestTransitiveUserCount": 7, + "transitiveServicePrincipalCount": 2, + "assignedRoleCount": 1, + "sensitivityLabelCount": 1, + "guestOwnerCount": 0, + "memberOwnerCount": 2, + "servicePrincipalOwnerCount": 0 +} +``` diff --git a/api-reference/beta/api/identityanalyticsroot-list-groups.md b/api-reference/beta/api/identityanalyticsroot-list-groups.md new file mode 100644 index 00000000000..b0cb6cc516a --- /dev/null +++ b/api-reference/beta/api/identityanalyticsroot-list-groups.md @@ -0,0 +1,170 @@ +--- +title: "List groupAnalytics" +doc_type: apiPageType +description: "Get a list of the groupAnalytics objects and their properties for groups in a Microsoft Entra tenant." +ms.localizationpriority: medium +author: "Licantrop0" +ms.subservice: "reports" +ms.date: 06/09/2026 +--- + +# List groupAnalytics + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Get a list of the [groupAnalytics](../resources/groupanalytics.md) objects and their properties for a Microsoft Entra tenant. Each object holds point-in-time [identity analytics](../resources/identityanalyticsroot.md) for one group. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/identityanalyticsroot-list-groups-permissions.md)] + +[!INCLUDE [rbac-usage-insights-apis](../includes/rbac-for-apis/rbac-usage-insights-apis.md)] + +## HTTP request + + +```http +GET /reports/identityAnalytics/groups +``` + +## Optional query parameters + +This method supports the `$count`, `$filter`, `$orderby`, `$select`, and `$top` OData query parameters to help customize the response. The `$filter` operators and `$orderby` support available for each property are listed in the [groupAnalytics](../resources/groupanalytics.md) properties table. + +Across the resource, `$filter` supports the `eq`, `ne`, `gt`, `ge`, `lt`, and `le` operators, the `and` and `or` logical operators, and the `startsWith`, `endsWith`, and `contains` string functions, depending on the property type. The `not` and `has` operators aren't supported. + +To get the number of matching groups, append `/$count` to the request URL (for example, `GET /reports/identityAnalytics/groups/$count`) or add the `$count=true` query parameter to return the count inline as the `@odata.count` property. Large result sets are paged; follow the `@odata.nextLink` URL in the response to retrieve the next page. For general information, see [OData query parameters](/graph/query-parameters). + +## Request headers + +| Name | Description | +| :------------ | :------------- | +| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts). | + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a collection of [groupAnalytics](../resources/groupanalytics.md) objects in the response body. + +## Examples + +### Example 1: Get a list of groupAnalytics objects + +#### Request + +The following example shows a request. + + +```http +GET https://graph.microsoft.com/beta/reports/identityAnalytics/groups +``` + +#### Response + +The following example shows the response. + +>**Note:** The response object shown here might be shortened for readability. + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/beta/$metadata#reports/identityAnalytics/groups", + "value": [ + { + "id": "1f3a3b9c-6e2c-4f0a-9b2c-9a6d4d2e8f10", + "tenantId": "5d6f7a8b-1c2d-3e4f-5a6b-7c8d9e0f1a2b", + "displayName": "Sales Team", + "calculatedDateTime": "2026-06-08T00:00:00Z", + "createdDateTime": "2023-02-15T10:30:00Z", + "groupType": "isCloudGroup", + "isValidGroup": true, + "isCloudM365Group": true, + "isDynamicGroup": false, + "directGroupMemberCount": 3, + "transitiveUserCount": 412, + "memberTransitiveUserCount": 405, + "guestTransitiveUserCount": 7, + "assignedRoleCount": 1 + }, + { + "id": "9a8b7c6d-5e4f-3a2b-1c0d-9e8f7a6b5c4d", + "tenantId": "5d6f7a8b-1c2d-3e4f-5a6b-7c8d9e0f1a2b", + "displayName": "Engineering - All", + "calculatedDateTime": "2026-06-08T00:00:00Z", + "createdDateTime": "2021-11-03T08:00:00Z", + "groupType": "isCloudGroup", + "isValidGroup": true, + "isCloudM365Group": false, + "isCloudSecurityGroup": true, + "isDynamicGroup": true, + "directGroupMemberCount": 12, + "transitiveUserCount": 1890, + "memberTransitiveUserCount": 1890, + "guestTransitiveUserCount": 0, + "assignedRoleCount": 0 + } + ] +} +``` + +### Example 2: Get valid groups that contain guests, with selected properties + +#### Request + +The following example uses `$filter` to return only valid groups that contain at least one transitive guest user. It uses `$select` to limit the returned properties, `$orderby` to sort the results by creation date, and `$top` to return at most 10 results. + + +```http +GET https://graph.microsoft.com/beta/reports/identityAnalytics/groups?$filter=isValidGroup eq true and guestTransitiveUserCount gt 0&$select=id,displayName,createdDateTime,groupType,transitiveUserCount,guestTransitiveUserCount&$orderby=createdDateTime desc&$top=10 +``` + +#### Response + +The following example shows the response. + +>**Note:** The response object shown here might be shortened for readability. + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/beta/$metadata#reports/identityAnalytics/groups(id,displayName,createdDateTime,groupType,transitiveUserCount,guestTransitiveUserCount)", + "value": [ + { + "id": "1f3a3b9c-6e2c-4f0a-9b2c-9a6d4d2e8f10", + "displayName": "Sales Team", + "createdDateTime": "2023-02-15T10:30:00Z", + "groupType": "isCloudGroup", + "transitiveUserCount": 412, + "guestTransitiveUserCount": 7 + } + ] +} +``` diff --git a/api-reference/beta/api/networkaccess-tlsinspectionpolicy-list-policyrules.md b/api-reference/beta/api/networkaccess-tlsinspectionpolicy-list-policyrules.md index 8548e23b40b..e9bcf2574e3 100644 --- a/api-reference/beta/api/networkaccess-tlsinspectionpolicy-list-policyrules.md +++ b/api-reference/beta/api/networkaccess-tlsinspectionpolicy-list-policyrules.md @@ -133,7 +133,7 @@ Content-Type: application/json { "@odata.type": "#microsoft.graph.networkaccess.tlsInspectionFqdnDestination", "values": [ - "www.contoso.test.com", + "www.contoso.com", "*.contoso.org" ] }, diff --git a/api-reference/beta/api/networkaccess-tlsinspectionrule-get.md b/api-reference/beta/api/networkaccess-tlsinspectionrule-get.md index 9a74c968e70..373a9676448 100644 --- a/api-reference/beta/api/networkaccess-tlsinspectionrule-get.md +++ b/api-reference/beta/api/networkaccess-tlsinspectionrule-get.md @@ -130,7 +130,7 @@ Content-Type: application/json { "@odata.type": "#microsoft.graph.networkaccess.tlsInspectionFqdnDestination", "values": [ - "www.contoso.test.com", + "www.contoso.com", "*.contoso.org" ] }, diff --git a/api-reference/beta/api/reportroot-getsharepointapiusage.md b/api-reference/beta/api/reportroot-getsharepointapiusage.md new file mode 100644 index 00000000000..5a34d78b83b --- /dev/null +++ b/api-reference/beta/api/reportroot-getsharepointapiusage.md @@ -0,0 +1,521 @@ +--- +title: "reportRoot: getSharePointApiUsage" +description: "Retrieve OneDrive and SharePoint API usage metrics for a tenant." +author: "ireneren" +ms.localizationpriority: medium +ms.subservice: "reports" +doc_type: apiPageType +ms.date: 06/19/2026 +--- + +# reportRoot: getSharePointApiUsage + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Get aggregated usage data for all applications in a tenant. This API retrieves usage data by predefined period or by specific date (you may specify a period or a date, but not both). The response format differs by content type: JSON returns a structured format with separate `summary` and `details` properties, while CSV returns a flat structure with the summary as the first data row. + +The API supports two query patterns: + +- **Period-based**: Get usage for the last N days (`D1`, `D7`, or `D30`). +- **Date-based**: Get usage for a specific date. + +Results can be optionally filtered by application ID(s). Data is returned in CSV format by default, or JSON format when explicitly requested via the `$format` query parameter. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/reportroot-getsharepointapiusage-permissions.md)] + +## HTTP request + + +``` http +GET /reports/getSharePointApiUsage(period='{period_value}') +GET /reports/getSharePointApiUsage(date={date_value}) +GET /reports/getSharePointApiUsage(period='{period_value}',appId='{appId_value}') +GET /reports/getSharePointApiUsage(date={date_value},appId='{appId_value}') +GET /reports/getSharePointApiUsage(period='{period_value}')?$format={format} +``` + +## Function parameters + +In the request URL, provide the following parameters with values. + +| Parameter | Type | Description | +|:----------|:-----------------|:----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| +| appId | String | Optional. A comma-separated list of application GUIDs to filter results. When specified, only detail rows for the specified applications are returned and the summary row is excluded. | +| date | Date | Required if **period** isn't specified. Specifies the date for the report. Accepts `YYYY-MM-DD` format (for example, `2026-02-05`). Can't be used with **period**. Can't be a future date. | +| period | String | Required if **date** isn't specified. Specifies the length of time over which the report is aggregated. The supported values are: `D1`, `D7`, `D30`. Can't be used with **date**. | + +## Optional query parameters + +This method supports the `$format`, `$skip`, and `$top` [OData query parameters](/graph/query-parameters) to customize the response. + +| Parameter | Type | Description | +|:-----------|:-------|:---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| +| `$format` | String | The response format. Supported values: `csv`, `text/csv`, `json`, `application/json`. Default: `text/csv`. | +| `$skip` | Int32 | JSON only. The number of items to skip for pagination. Not supported with CSV format. | +| `$top` | Int32 | JSON only. The number of items to return per page. Not supported with CSV format. | + +## Request headers + +| Name | Description | +|:--------------|:------------------------------------------------------------------------------------------------------| +| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts). | + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and usage data in the requested format. + +If no usage data is available for the specified period or date, this method returns a `204 No Content` response with an empty response body. + +### CSV format + +If successful with CSV format, this method returns a `200 OK` response with content type `text/csv`. The CSV data is returned directly in the response body. + +> **Note:** Unlike most other Microsoft Graph reports APIs that return a `302 Found` redirect to a preauthenticated download URL, this API returns the CSV data directly in the response body with a `200 OK` response. + +The CSV file has the following column headers: + +`UsageDateTime,ServiceArea,TenantId,AppId,UsageMB,UsageRequests,ActiveApps` + +The first data row is a summary row with **ActiveApps** populated and **AppId** empty. Subsequent rows are per-app, per-date details with **AppId** populated and **ActiveApps** empty. Data points are ordered by **UsageDateTime** descending (most recent first). + +### JSON format + +If successful with JSON format, this method returns a structured object with `summary` and `details` properties. The `summary` contains aggregated totals, and `details` contains an array of per-application, per-date details. The `summary` is `null` when an `appId` filter is specified. The `details` array supports pagination via `$skip` and `$top` query parameters. + +## Examples + +### Example 1: Get usage for last 7 days (CSV format, default) + +#### Request + +The following example shows a request. + + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(period='D7')?$format=text/csv +``` + +#### Response + +The following example shows the response. + + +``` http +HTTP/1.1 200 OK +Content-Type: text/csv + +UsageDateTime,ServiceArea,TenantId,AppId,UsageMB,UsageRequests,ActiveApps +2026-02-04T00:00:00Z,OneDrive and SharePoint,12345678-1234-1234-1234-123456789abc,,128000,15000,5 +2026-02-04T00:00:00Z,OneDrive and SharePoint,12345678-1234-1234-1234-123456789abc,00000003-0000-0ff1-ce00-000000000000,82000,8500, +2026-02-04T00:00:00Z,OneDrive and SharePoint,12345678-1234-1234-1234-123456789abc,ab9b8c07-8f02-4f72-87fa-80105867a763,46000,4500, +2026-02-03T00:00:00Z,OneDrive and SharePoint,12345678-1234-1234-1234-123456789abc,00000003-0000-0ff1-ce00-000000000000,75000,7000, +2026-02-03T00:00:00Z,OneDrive and SharePoint,12345678-1234-1234-1234-123456789abc,ab9b8c07-8f02-4f72-87fa-80105867a763,38000,3500, +``` + +### Example 2: Get usage for a specific date (JSON format) + +#### Request + +The following example shows a request. + + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(date=2026-02-04)?$format=application/json +``` + +#### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "summary": { + "usageDateTime": "2026-02-04T00:00:00Z", + "serviceArea": "OneDrive and SharePoint", + "tenantId": "12345678-1234-1234-1234-123456789abc", + "appId": null, + "usageMB": 128000, + "usageRequests": 15000, + "activeApps": 5 + }, + "details": [ + { + "usageDateTime": "2026-02-04T00:00:00Z", + "serviceArea": "OneDrive and SharePoint", + "tenantId": "12345678-1234-1234-1234-123456789abc", + "appId": "00000003-0000-0ff1-ce00-000000000000", + "usageMB": 82000, + "usageRequests": 8500, + "activeApps": null + }, + { + "usageDateTime": "2026-02-04T00:00:00Z", + "serviceArea": "OneDrive and SharePoint", + "tenantId": "12345678-1234-1234-1234-123456789abc", + "appId": "ab9b8c07-8f02-4f72-87fa-80105867a763", + "usageMB": 46000, + "usageRequests": 4500, + "activeApps": null + } + ] +} +``` + +### Example 3: Filter by application ID + +#### Request + +The following example shows a request. + + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(period='D7',appId='75b613ff-af8b-48bb-b872-e06048ccf8ea')?$format=text/csv +``` + +#### Response + +The following example shows the response. + + +``` http +HTTP/1.1 200 OK +Content-Type: text/csv + +UsageDateTime,ServiceArea,TenantId,AppId,UsageMB,UsageRequests,ActiveApps +2025-08-28T00:00:00Z,OneDrive and SharePoint,12345678-1234-1234-1234-123456789abc,75b613ff-af8b-48bb-b872-e06048ccf8ea,2432,1500, +``` + +### Example 4: Get JSON response + +#### Request + +The following example shows a request. + + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(period='D7')?$format=application/json +``` + +#### Response + +The following example shows the response. + + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "summary": { + "usageDateTime": "2026-02-04T00:00:00Z", + "serviceArea": "OneDrive and SharePoint", + "tenantId": "12345678-1234-1234-1234-123456789abc", + "appId": null, + "usageMB": 128000, + "usageRequests": 15000, + "activeApps": 5 + }, + "details": [ + { + "usageDateTime": "2026-02-04T00:00:00Z", + "serviceArea": "OneDrive and SharePoint", + "tenantId": "12345678-1234-1234-1234-123456789abc", + "appId": "00000003-0000-0ff1-ce00-000000000000", + "usageMB": 82000, + "usageRequests": 8500, + "activeApps": null + }, + { + "usageDateTime": "2026-02-04T00:00:00Z", + "serviceArea": "OneDrive and SharePoint", + "tenantId": "12345678-1234-1234-1234-123456789abc", + "appId": "ab9b8c07-8f02-4f72-87fa-80105867a763", + "usageMB": 46000, + "usageRequests": 4500, + "activeApps": null + } + ] +} +``` + +> **Note:** JSON format returns a structured object with `summary` containing aggregated totals and `details` containing per-application details. The `details` array supports pagination via `$skip` and `$top` query parameters. + +### Example 5: Get JSON response with appId filter + +#### Request + +The following example shows a request. + + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(period='D7',appId='00000003-0000-0ff1-ce00-000000000000')?$format=application/json +``` + +#### Response + +The following example shows the response. + + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "summary": null, + "details": [ + { + "usageDateTime": "2026-02-04T00:00:00Z", + "serviceArea": "OneDrive and SharePoint", + "tenantId": "12345678-1234-1234-1234-123456789abc", + "appId": "00000003-0000-0ff1-ce00-000000000000", + "usageMB": 82000, + "usageRequests": 8500, + "activeApps": null + }, + { + "usageDateTime": "2026-02-03T00:00:00Z", + "serviceArea": "OneDrive and SharePoint", + "tenantId": "12345678-1234-1234-1234-123456789abc", + "appId": "00000003-0000-0ff1-ce00-000000000000", + "usageMB": 75000, + "usageRequests": 7000, + "activeApps": null + } + ] +} +``` + +> **Note:** When an `appId` filter is specified, the `summary` property is `null` and only filtered detail rows appear in the `details` array. + + +### Example 6: No data available + +#### Request + +The following example shows a request. + + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(date=2026-02-01) +``` + +#### Response + +The following example shows the response. + + +``` http +HTTP/1.1 204 No Content +``` + +### Example 7: Error - Missing both parameters + +#### Request + +The following example shows a request. + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage +``` + +#### Response + +The following example shows the response. + +```http +HTTP/1.1 400 Bad Request +Content-Type: application/json + +{ + "error": { + "code": "invalidRequest", + "message": "Either 'period' OR 'date' parameter must be provided." + } +} +``` + +### Example 8: Error - Both parameters provided + +#### Request + +The following example shows a request. + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(period='D7',date=2026-02-01) +``` + +#### Response + +The following example shows the response. + +```http +HTTP/1.1 400 Bad Request +Content-Type: application/json + +{ + "error": { + "code": "invalidRequest", + "message": "Cannot specify both 'period' and 'date' parameters. Provide only one." + } +} +``` + +### Example 9: Error - Invalid period + +#### Request + +The following example shows a request. + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(period='D90') +``` + +#### Response + +The following example shows the response. + +```http +HTTP/1.1 400 Bad Request +Content-Type: application/json + +{ + "error": { + "code": "invalidRequest", + "message": "Invalid period 'D90'. Allowed values: D1, D7, D30." + } +} +``` + +### Example 10: Error - Tenant not onboarded for preview + +#### Request + +The following example shows a request. + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(period='D7') +``` + +#### Response + +The following example shows the response. + +```http +HTTP/1.1 403 Forbidden +Content-Type: application/json + +{ + "error": { + "code": "accessDenied", + "message": "Tenant {tenantId} is not enabled for this preview feature." + } +} +``` diff --git a/api-reference/beta/api/restorepoint-search.md b/api-reference/beta/api/restorepoint-search.md index 2432c846f86..f9b5937656f 100644 --- a/api-reference/beta/api/restorepoint-search.md +++ b/api-reference/beta/api/restorepoint-search.md @@ -80,7 +80,7 @@ For a list of possible error responses, see [Backup Storage API error responses] #### Request The following example shows a request. -# [HTTP](#tab/http) + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.context": "/solutions/backupRestore/$metadata#restorePoints", + "searchResponseId": "M2UyZDAwMDAwMDMxMzkzYTMyNj", + "searchResults": [ + { + "artifactHitCount": 26, + "restorePoint": { + "@odata.type": "#microsoft.graph.restorePoint", + "id": "1f1fccc3-a642-4f61-bf49-f37b9a888279", + "protectionDateTime": "2023-01-04T00:00:00Z", + "expirationDateTime": "2024-01-04T00:00:00Z", + "protectionUnit": { + "@odata.type": "#microsoft.graph.siteProtectionUnit", + "id": "23014d8c-71fe-4d00-a01a-31850bc5b42a", + "siteId": "344d9337-d8f0-456e-92cd-00a3abdd2093", + "policyId": "9fec8e78-bce4-4aaf-ab1b-5451cc387264" + }, + "tags": "fastRestore" + } + } + ] +} +``` -# [Java](#tab/java) -[!INCLUDE [sample-code](../includes/snippets/java/restorepoint-search-artifactquery-java-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] +### Example 3: Search with structuredQueryExpression -# [JavaScript](#tab/javascript) -[!INCLUDE [sample-code](../includes/snippets/javascript/restorepoint-search-artifactquery-javascript-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] +#### Request -# [PHP](#tab/php) -[!INCLUDE [sample-code](../includes/snippets/php/restorepoint-search-artifactquery-php-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] +The following example shows a request using the new structured query expression. -# [PowerShell](#tab/powershell) -[!INCLUDE [sample-code](../includes/snippets/powershell/restorepoint-search-artifactquery-powershell-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] + +```http +POST https://graph.microsoft.com/beta/solutions/backupRestore/restorePoints/search +Content-Type: application/json -# [Python](#tab/python) -[!INCLUDE [sample-code](../includes/snippets/python/restorepoint-search-artifactquery-python-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] +{ + "artifactQuery": { + "structuredQueryExpression": { + "senders": ["abc@contoso.com"], + "subjects": ["Check email", "Important"], + "hasAttachment": true, + "items": ["email"] + } + }, + "protectionUnitIds": ["23014d8c-71fe-4d00-a01a-31850bc5b42a"], + "protectionTimePeriod": { + "startDateTime": "2021-01-01T00:00:00Z", + "endDateTime": "2021-01-30T00:00:00Z" + }, + "restorePointPreference": "oldest" +} +``` --- @@ -285,9 +301,9 @@ Content-Type: application/json "protectionDateTime": "2023-01-04T00:00:00Z", "expirationDateTime": "2024-01-04T00:00:00Z", "protectionUnit": { - "@odata.type": "#microsoft.graph.siteProtectionUnit", + "@odata.type": "#microsoft.graph.mailboxProtectionUnit", "id": "23014d8c-71fe-4d00-a01a-31850bc5b42a", - "siteId": "344d9337-d8f0-456e-92cd-00a3abdd2093", + "userId": "344d9337-d8f0-456e-92cd-00a3abdd2093", "policyId": "9fec8e78-bce4-4aaf-ab1b-5451cc387264" }, "tags": "fastRestore" diff --git a/api-reference/beta/api/security-detectionrule-update.md b/api-reference/beta/api/security-detectionrule-update.md index 2ffda6e4dfa..b1df4ce144d 100644 --- a/api-reference/beta/api/security-detectionrule-update.md +++ b/api-reference/beta/api/security-detectionrule-update.md @@ -159,4 +159,4 @@ Content-Type: application/json } } } -``` \ No newline at end of file +``` diff --git a/api-reference/beta/api/security-rulesroot-delete-detectionrules.md b/api-reference/beta/api/security-rulesroot-delete-detectionrules.md index 7101572d78c..b81a463287a 100644 --- a/api-reference/beta/api/security-rulesroot-delete-detectionrules.md +++ b/api-reference/beta/api/security-rulesroot-delete-detectionrules.md @@ -78,4 +78,4 @@ The following example shows the response. --> ``` http HTTP/1.1 204 No Content -``` \ No newline at end of file +``` diff --git a/api-reference/beta/api/security-rulesroot-list-detectionrules.md b/api-reference/beta/api/security-rulesroot-list-detectionrules.md index 546928abb48..b0e2c7a96f1 100644 --- a/api-reference/beta/api/security-rulesroot-list-detectionrules.md +++ b/api-reference/beta/api/security-rulesroot-list-detectionrules.md @@ -148,4 +148,4 @@ Content-Type: application/json } ] } -``` \ No newline at end of file +``` diff --git a/api-reference/beta/api/security-rulesroot-post-detectionrules.md b/api-reference/beta/api/security-rulesroot-post-detectionrules.md index ee48784dcaa..a245f6861e1 100644 --- a/api-reference/beta/api/security-rulesroot-post-detectionrules.md +++ b/api-reference/beta/api/security-rulesroot-post-detectionrules.md @@ -210,4 +210,4 @@ Location: https://graph.microsoft.com/beta/security/rules/detectionRules/office- } } } -``` \ No newline at end of file +``` diff --git a/api-reference/beta/api/security-security-gethuntingschema.md b/api-reference/beta/api/security-security-gethuntingschema.md new file mode 100644 index 00000000000..2f6d737e889 --- /dev/null +++ b/api-reference/beta/api/security-security-gethuntingschema.md @@ -0,0 +1,183 @@ +--- +title: "security: getHuntingSchema" +description: "Retrieve the advanced hunting schema accessible to the signed-in user." +author: "nitzanfrogel" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: apiPageType +ms.date: 05/13/2026 +--- + +# security: getHuntingSchema + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Retrieve the advanced hunting schema accessible to the signed-in user, including the tables and functions the user is authorized to query and invoke in [advanced hunting](/microsoft-365/security/defender/advanced-hunting-overview?view=o365-worldwide&preserve-view=true) with Microsoft Defender XDR. + +The returned schema reflects the user's effective permissions. Each user within a tenant may have a different effective schema depending on their role and access level. + +Common use cases include: + +- **Preventing unauthorized queries**: Determine which tables and functions a user can access before executing Kusto queries, reducing the risk of authorization failures. +- **Permission-aware query generation**: Enable applications and tools to construct queries dynamically based on the user's effective schema. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/security-security-gethuntingschema-permissions.md)] + +>[!IMPORTANT] +> The signed-in user must also be assigned a [Microsoft Defender XDR Unified RBAC role](/microsoft-365/security/defender/manage-rbac) that grants permission to run advanced hunting queries, or one of the following Microsoft Entra ID roles which provide only the least privilege necessary: **Security Reader**, **Security Operator**, **Security Administrator**. + +## HTTP request + + +```http +GET /security/getHuntingSchema +``` + +## Function parameters + +This method doesn't support any OData query parameters to customize the response. + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this function returns a `200 OK` response code and a [huntingSchemaResult](../resources/security-huntingschemaresult.md) in the response body. + +## Examples + +### Request + + +```http +GET https://graph.microsoft.com/beta/security/getHuntingSchema +``` + +### Response + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "tables": [ + { + "name": "DeviceProcessEvents", + "description": "Process creation and related events", + "columns": [ + { + "name": "Timestamp", + "dataType": "DateTime", + "description": "Date and time when the record was generated" + }, + { + "name": "DeviceId", + "dataType": "String", + "description": "Unique identifier for the device in the service" + }, + { + "name": "DeviceName", + "dataType": "String", + "description": "Fully qualified domain name (FQDN) of the device" + } + ] + }, + { + "name": "DeviceNetworkEvents", + "description": "Network connection and related events", + "columns": [ + { + "name": "Timestamp", + "dataType": "DateTime", + "description": "Date and time when the record was generated" + }, + { + "name": "DeviceId", + "dataType": "String", + "description": "Unique identifier for the device in the service" + } + ] + } + ], + "functions": { + "builtInFunctions": [ + { + "huntingFunctionId": 1, + "name": "FileProfile", + "path": "Built-in", + "documentation": "Enriches query results with file information such as file name, size, and hash.", + "inputParameters": [ + { + "name": "SHA1", + "cslType": "string", + "defaultValue": null + } + ], + "outputColumns": [ + { + "name": "SHA1", + "dataType": "String", + "description": "SHA-1 hash of the file" + }, + { + "name": "SHA256", + "dataType": "String", + "description": "SHA-256 hash of the file" + } + ] + } + ], + "savedFunctions": [ + { + "huntingFunctionId": 100, + "name": "MyCustomQuery", + "path": "Shared", + "description": "A custom query that filters device events by severity.", + "createdBy": "user@contoso.com", + "lastModifiedBy": "user@contoso.com", + "lastModifiedDateTime": "2026-04-15T10:30:00Z", + "inputParameters": [], + "outputColumns": [ + { + "name": "DeviceId", + "dataType": "String", + "description": "Unique identifier for the device" + } + ] + } + ] + } +} +``` + diff --git a/api-reference/beta/api/sharepointgroup-list-members.md b/api-reference/beta/api/sharepointgroup-list-members.md index 2062076b51d..13861635ca1 100644 --- a/api-reference/beta/api/sharepointgroup-list-members.md +++ b/api-reference/beta/api/sharepointgroup-list-members.md @@ -145,9 +145,5 @@ Content-Type: application/json "description": "List members", "keywords": "", "section": "documentation", - "tocPath": "", - "suppressions": [ - "Error: /api/sharepointgroup-list-members.md: - Failed to parse enumeration values for type microsoft.graph.list. Table requires a column header named one of the following: Member, Name, Value" - ] + "tocPath": "" }--> diff --git a/api-reference/beta/api/teamworksection-post-items.md b/api-reference/beta/api/teamworksection-post-items.md index c36b3a9036c..7b9b0eee789 100644 --- a/api-reference/beta/api/teamworksection-post-items.md +++ b/api-reference/beta/api/teamworksection-post-items.md @@ -48,7 +48,7 @@ The following table lists the properties that you can set when you add a **teamw | Property | Type | Description | |:---------|:-----|:------------| -| id | String | The conversation ID of the chat, channel, meeting, or community to add to the section. For community items, the service automatically normalizes the ID to the `19:{id}@EngageCommunity` format. Required. | +| id | String | The conversation ID of the chat, channel, meeting, or community to add to the section. For a community (Viva Engage) item, you can provide either the bare community ID returned when you [list communities](../api/employeeexperience-list-communities.md) (for example, `eyJfdHlwZSI6Ikdyb3VwIiwiaWQiOiIxOTAzMzYyMTIyMTAifQ`) or the full `19:{communityId}@EngageCommunity` thread ID. When you provide a bare community ID, the service automatically normalizes it to the `19:{communityId}@EngageCommunity` format; an ID that already includes the thread prefix is used as-is. Required. | ## Response @@ -73,9 +73,13 @@ The following errors are possible. ## Examples -### Request +### Example 1: Add a chat to a section -The following example shows a request to add a chat to a section. +The following example shows how to add a chat to a section. + +#### Request + +The following example shows a request. # [HTTP](#tab/http) +```http +POST https://graph.microsoft.com/beta/users/10f8c3a6-3e2a-4e8b-9c7d-5a4b6c8d9e0f/teamwork/sections/a1b2c3d4-e5f6-7890-abcd-ef1234567890/items +Content-type: application/json +If-Match: "1742515210" + +{ + "id": "eyJfdHlwZSI6Ikdyb3VwIiwiaWQiOiIxOTAzMzYyMTIyMTAifQ" +} +``` + +# [C#](#tab/csharp) +[!INCLUDE [sample-code](../includes/snippets/csharp/add-teamworksectionitem-community-csharp-snippets.md)] +[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] + +# [Go](#tab/go) +[!INCLUDE [sample-code](../includes/snippets/go/add-teamworksectionitem-community-go-snippets.md)] +[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] + +# [Java](#tab/java) +[!INCLUDE [sample-code](../includes/snippets/java/add-teamworksectionitem-community-java-snippets.md)] +[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] + +# [JavaScript](#tab/javascript) +[!INCLUDE [sample-code](../includes/snippets/javascript/add-teamworksectionitem-community-javascript-snippets.md)] +[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] + +# [PHP](#tab/php) +[!INCLUDE [sample-code](../includes/snippets/php/add-teamworksectionitem-community-php-snippets.md)] +[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] + +# [Python](#tab/python) +[!INCLUDE [sample-code](../includes/snippets/python/add-teamworksectionitem-community-python-snippets.md)] +[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] + +--- + +#### Response + +The following example shows the response. The **id** property is returned in the normalized `19:{communityId}@EngageCommunity` format. + +>**Note:** The response object shown here might be shortened for readability. + + +```http +HTTP/1.1 201 Created +Content-type: application/json +Location: https://graph.microsoft.com/beta/users/10f8c3a6-3e2a-4e8b-9c7d-5a4b6c8d9e0f/teamwork/sections/a1b2c3d4-e5f6-7890-abcd-ef1234567890/items/19:eyJfdHlwZSI6Ikdyb3VwIiwiaWQiOiIxOTAzMzYyMTIyMTAifQ@EngageCommunity + +{ + "@odata.type": "#microsoft.graph.teamworkSectionItem", + "@odata.etag": "\"1742515220\"", + "id": "19:eyJfdHlwZSI6Ikdyb3VwIiwiaWQiOiIxOTAzMzYyMTIyMTAifQ@EngageCommunity", + "itemType": "community", + "createdDateTime": "2026-03-08T10:05:00Z", + "lastModifiedDateTime": null +} +``` + + diff --git a/api-reference/beta/resources/accessreviewdatauploadtriggercallbackdata.md b/api-reference/beta/resources/accessreviewdatauploadtriggercallbackdata.md deleted file mode 100644 index daa1a3464d0..00000000000 --- a/api-reference/beta/resources/accessreviewdatauploadtriggercallbackdata.md +++ /dev/null @@ -1,54 +0,0 @@ ---- -title: "accessReviewDataUploadTriggerCallbackData resource type" -description: "The schematized representation of the CSV columns expected in the uploaded files." -author: "pratima-cloudknox" -ms.date: 10/09/2025 -ms.localizationpriority: medium -ms.subservice: "entra-id-governance" -doc_type: resourcePageType ---- - -# accessReviewDataUploadTriggerCallbackData resource type - -Namespace: microsoft.graph - -[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] - -This object represents the columns expected in the CSV file that is uploaded in a [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md). - - -Inherits from [customExtensionData](../resources/customextensiondata.md). - - -## Properties -| Property |Type| Description | -|:----------------------|:---|:-----------------------| -| permissionDescription |String| A description for the permission.| -| permissionId |String| The id of the permission assigned to this principal.| -| permissionName |String| The name of the permission assigned to this principal.| -| permissionType |String| The type of the permission assigned to this principal.| -| principalId |String| The id of the principal who has permissions on the custom data provided resource.| -| principalType |String| The type of the principal. The allowed values are "EntraIdUser". | - -## Relationships -None. - -## JSON representation -The following JSON representation shows the resource type. - -``` json -{ - "@odata.type": "#microsoft.graph.accessReviewDataUploadTriggerCallbackData", - "principalId": "String", - "principalType": "String", - "permissionId": "String", - "permissionName": "String", - "permissionDescription": "String", - "permissionType": "String" -} -``` - diff --git a/api-reference/beta/resources/accessreviewresourcedatauploadsessioncontextdata.md b/api-reference/beta/resources/accessreviewresourcedatauploadsessioncontextdata.md deleted file mode 100644 index 687bccab0a5..00000000000 --- a/api-reference/beta/resources/accessreviewresourcedatauploadsessioncontextdata.md +++ /dev/null @@ -1,43 +0,0 @@ ---- -title: "accessReviewResourceDataUploadSessionContextData resource type." -description: "Metadata related to the access review instance for which the customDataProvidedResourceUploadSession is created." -author: "pratima-cloudknox" -ms.date: 10/09/2025 -ms.localizationpriority: medium -ms.subservice: "entra-id-governance" -doc_type: resourcePageType ---- - -# accessReviewResourceDataUploadSessionContextData resource type - -Namespace: microsoft.graph - -[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] - -Metadata related to the access review instance for which the [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md) was created. - - -## Properties -|Property|Type|Description| -|:---|:---|:---| -|accessReviewId|String|The access review definition id.| -|accessReviewInstanceId|String|The access review instance id.| - -## Relationships -None. - -## JSON representation -The following JSON representation shows the resource type. - -``` json -{ - "@odata.type": "#microsoft.graph.accessReviewResourceDataUploadSessionContextData", - "accessReviewId": "String", - "accessReviewInstanceId": "String" -} -``` - diff --git a/api-reference/beta/resources/agentidentity.md b/api-reference/beta/resources/agentidentity.md index d815c38c905..0ea45366cf7 100644 --- a/api-reference/beta/resources/agentidentity.md +++ b/api-reference/beta/resources/agentidentity.md @@ -67,6 +67,7 @@ This resource is an open type that allows additional properties beyond those doc |odata.type|String| `#microsoft.graph.agentIdentity`. Distinguishes this object as an agent identity. Can be used to identify this object as an agent identity, instead of another kind of service principal. | |accountEnabled|Boolean|`true` if the agent identity account is enabled; otherwise, `false`. If set to `false`, then no users are able to sign in to this app, even if they're assigned to it. Inherited from [servicePrincipal](../resources/serviceprincipal.md).| |agentIdentityBlueprintId|String|The **appId** of the agent identity blueprint that defines the configuration for this agent identity.| +|appRoleAssignmentRequired|Boolean|Specifies whether users or other service principals need to be granted an app role assignment for this agent identity before users can sign in or apps can get tokens. The default value is `false`. Not nullable. Inherited from [servicePrincipal](../resources/serviceprincipal.md). Supports `$filter` (`eq`, `ne`, `NOT`).| |customSecurityAttributes|[customSecurityAttributeValue](../resources/customsecurityattributevalue.md)|An open complex type that holds the value of a custom security attribute that is assigned to a directory object. Nullable. Requires `$select` to retrieve. Inherited from [servicePrincipal](../resources/serviceprincipal.md).| |createdByAppId|String|The **appId** of the application that created this agent identity. Set internally by Microsoft Entra ID. Read-only. Inherited from [servicePrincipal](../resources/serviceprincipal.md).| |createdDateTime|DateTimeOffset|The date and time the agent identity was created. Read-only. Inherited from [servicePrincipal](../resources/serviceprincipal.md).| @@ -106,6 +107,7 @@ The following JSON representation shows the resource type. Only a subset of all "id": "String (identifier)", "accountEnabled": "Boolean", "agentIdentityBlueprintId": "String", + "appRoleAssignmentRequired": "Boolean", "createdByAppId": "String", "createdDateTime": "String (timestamp)", "disabledByMicrosoftStatus": "String", diff --git a/api-reference/beta/resources/artifactquery.md b/api-reference/beta/resources/artifactquery.md index 410ebe4ac7b..5d187475905 100644 --- a/api-reference/beta/resources/artifactquery.md +++ b/api-reference/beta/resources/artifactquery.md @@ -20,7 +20,8 @@ Contains an expression that specifies the criteria for search. For more informat |Property|Type|Description| |:---|:---|:---| |artifactType|[restorableArtifact](../resources/artifactquery.md#restorableartifact-values)|The type of artifact to search. The possible values are: `message`, `unknownFutureValue`.| -|queryExpression|String|Specifies criteria to retrieve artifacts.| +|structuredQueryExpression|[restoreSearchArtifactQueryExpression](../resources/restoresearchartifactqueryexpression.md)|Contains a structured query expression for searching artifacts.| +|queryExpression (deprecated)|String|Deprecated. Going forward, use the **structuredQueryExpression** property instead. Specifies criteria to retrieve artifacts.| ### restorableArtifact values @@ -43,7 +44,10 @@ The following JSON representation shows the resource type. { "@odata.type": "#microsoft.graph.artifactQuery", "queryExpression": "String", - "artifactType": "String" + "artifactType": "String", + "structuredQueryExpression": { + "@odata.type": "#microsoft.graph.restoreSearchArtifactQueryExpression" + } } ``` diff --git a/api-reference/beta/resources/cloudpcpolicypendingapplystatusresult.md b/api-reference/beta/resources/cloudpcpolicypendingapplystatusresult.md new file mode 100644 index 00000000000..1b5881f67ef --- /dev/null +++ b/api-reference/beta/resources/cloudpcpolicypendingapplystatusresult.md @@ -0,0 +1,43 @@ +--- +title: "cloudPcPolicyPendingApplyStatusResult resource type" +description: "Represents the result of checking whether a provisioning policy has unapplied changes pending for Cloud PCs." +author: "zhuangzhuang131419" +ms.localizationpriority: medium +ms.subservice: "cloud-pc" +doc_type: resourcePageType +ms.date: 06/01/2026 +--- + +# cloudPcPolicyPendingApplyStatusResult resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents the result of checking whether a provisioning policy has unapplied changes pending for Cloud PCs. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|hasUnappliedPolicyUpdate|Boolean|Indicates whether the provisioning policy has unapplied changes pending for Cloud PCs. When `true`, the policy contains changes that aren't yet applied. When `false`, all policy changes are applied. Read-only.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.cloudPcPolicyPendingApplyStatusResult", + "hasUnappliedPolicyUpdate": true +} +``` diff --git a/api-reference/beta/resources/cloudpcpolicyscheduledapplyactiondetail.md b/api-reference/beta/resources/cloudpcpolicyscheduledapplyactiondetail.md index c4c415c8d69..2c3dcfe4ac4 100644 --- a/api-reference/beta/resources/cloudpcpolicyscheduledapplyactiondetail.md +++ b/api-reference/beta/resources/cloudpcpolicyscheduledapplyactiondetail.md @@ -5,7 +5,7 @@ author: "zhuangzhuang131419" ms.localizationpriority: medium ms.subservice: "cloud-pc" doc_type: resourcePageType -ms.date: 05/08/2025 +ms.date: 06/01/2026 --- # cloudPcPolicyScheduledApplyActionDetail resource type @@ -20,11 +20,12 @@ Represents a scheduled apply rule set on the policy. For `Frontline shared` only |Property|Type|Description| |:---|:---|:---| -|reservePercentage|Int32|The percentage of Cloud PCs to keep available. Administrators can set this property to a value from 0 to 99. Cloud PCs are reprovisioned only when there are no active and connected Cloud PC users. `Frontline shared` only.| |cronScheduleExpression|String|An expression that specifies the cron schedule. (For example, "0 0 0 20 * *" means schedules a job to run at midnight on the 20th of every month) Administrators can set a cron expression to define the scheduling rules for automatic regular application. When auto provision is disabled, `cronScheduleExpression` is set to null, stopping the automatic task scheduling. Read-Only.| +|endDateTime|String|Indicates IT Admins can set an end date to define the last scheduler run before this time. If not set, the scheduler runs continuously. There is no time zone information at this time; it needs to be coordinated with `timezone`, for example, "2025-02-01 00:00:00" with "China Standard Time" means the scheduling rule takes effect before Feb 01 2025 00:00:00 GMT+0800 (China Standard Time).| +|isForceUserLogoffEnabled|Boolean|Indicates whether active Cloud PC sessions are forcibly signed out when reprovisioning begins. When `true`, connected users are immediately signed out and reprovisioning starts right away; **reservePercentage** must be set to `0` when this property is `true`, otherwise the request fails. When `false`, reprovisioning waits until the user disconnects. The default value is `false`. Optional. *Frontline shared* only.| |nextRunDateTime|String|Indicates IT Admins can see when the next automatic regular apply is executed. It needs to be coordinated with `timezone`, for example, "2025-01-01 00:00:00" with "China Standard Time" means the next task executes at Jan 01 2025 00:00:00 GMT+0800 (China Standard Time). Read-Only.| +|reservePercentage|Int32|The percentage of Cloud PCs to keep available. Administrators can set this property to a value from `0` to `99`. Cloud PCs are reprovisioned only when there are no active and connected Cloud PC users. *Frontline shared* only.| |startDateTime|String|Indicates IT Admins can set a start date to define the first scheduler run after this time. If not set, the default is the current time. There is no time zone information at this time, it needs to be coordinated with `timezone`, for example, "2025-01-01 00:00:00" with "China Standard Time" means the scheduling rule takes effect after Jan 01 2025 00:00:00 GMT+0800 (China Standard Time).| -|endDateTime|String|Indicates IT Admins can set an end date to define the last scheduler run before this time. If not set, the scheduler runs continuously. There is no time zone information at this time; it needs to be coordinated with `timezone`, for example, "2025-02-01 00:00:00" with "China Standard Time" means the scheduling rule takes effect before Feb 01 2025 00:00:00 GMT+0800 (China Standard Time).| |timezone|cloudPcPolicyTimezone|Indicates IT Admins can set a timezone to define the timezone of `nextRunDateTime`, `startDateTime`, `endDateTime`, default is `gmt`. Possible values are `gmt`, `bit`, `nut`, `hst`, `mit`, `akst`, `pst`, `mst`, `east`, `est`, `ast`, `nst`, `art`, `gst`, `azot`, `cet`, `cat`, `eat`, `get`, `pkt`, `ist`, `bst`, `tha`, `cst`, `jst`, `acst`, `pgt`, `sbt`, `fjt`, `tot`, `lint`, and `unknownFutureValue`.| ## JSON representation @@ -43,6 +44,7 @@ The following JSON representation shows the resource type. { "@odata.type": "https://graph.microsoft.com/beta/$metadata#cloudPcPolicyScheduledApplyActionDetail", "reservePercentage": 50, + "isForceUserLogoffEnabled": "Boolean", "cronScheduleExpression": "0 0 0 20 * *", "nextRunDateTime": "2025-03-20 08:00:00", "startDateTime": "2025-03-12 00:00:00", diff --git a/api-reference/beta/resources/cloudpcprovisioningpolicy.md b/api-reference/beta/resources/cloudpcprovisioningpolicy.md index 7ef7fbeb013..22a3005f985 100644 --- a/api-reference/beta/resources/cloudpcprovisioningpolicy.md +++ b/api-reference/beta/resources/cloudpcprovisioningpolicy.md @@ -5,7 +5,7 @@ author: "danipocket" ms.localizationpriority: medium ms.subservice: "cloud-pc" doc_type: resourcePageType -ms.date: 05/05/2026 +ms.date: 06/01/2026 --- # cloudPcProvisioningPolicy resource type @@ -32,6 +32,7 @@ Represents a Cloud PC provisioning policy. |[Schedule policy apply task](../api/cloudpcprovisioningpolicy-schedulepolicyapplytask.md)|None|Schedule a policy apply task for a [provisioning policy](../resources/cloudpcprovisioningpolicy.md).| |[Retrieve policy apply action result](../api/cloudpcprovisioningpolicy-retrievepolicyapplyactionresult.md)|[cloudPcPolicyApplyActionResult](../resources/cloudpcpolicyapplyactionresult.md)|Retrieve the result of a policy apply action for a [provisioning policy](../resources/cloudpcprovisioningpolicy.md).| |[Retrieve policy apply schedule](../api/cloudpcprovisioningpolicy-retrievepolicyapplyschedule.md)|[cloudPcPolicyScheduledApplyActionDetail](../resources/cloudpcpolicyscheduledapplyactiondetail.md)|Retrieve the schedule for a policy apply action for a [provisioning policy](../resources/cloudpcprovisioningpolicy.md).| +|[Retrieve policy update status result](../api/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult.md)|[cloudPcPolicyPendingApplyStatusResult](../resources/cloudpcpolicypendingapplystatusresult.md)|Retrieve the pending apply status of a [provisioning policy](../resources/cloudpcprovisioningpolicy.md) to determine whether unapplied changes exist for Cloud PCs.| ## Properties diff --git a/api-reference/beta/resources/crosstenant-migration-overview.md b/api-reference/beta/resources/crosstenant-migration-overview.md index de8ee60df61..e94c2c8ae28 100644 --- a/api-reference/beta/resources/crosstenant-migration-overview.md +++ b/api-reference/beta/resources/crosstenant-migration-overview.md @@ -25,7 +25,7 @@ Organizations often need to consolidate or reorganize Microsoft 365 environments ## Key features -- **Create migration jobs**: Define workloads (Teams, Exchange, ODSP) and resources to migrate. +- **Create migration jobs**: Define workloads (Teams, Exchange, OneDrive and SharePoint) and resources to migrate. - **Retrieve migration jobs**: Get details for all jobs or a specific job. - **Update migration jobs**: Modify the `completeAfterDateTime` property. - **Cancel migration jobs or specific users**: Stop migrations in progress. diff --git a/api-reference/beta/resources/customdataprovidedresourceaccessreviewuploadsession.md b/api-reference/beta/resources/customdataprovidedresourceaccessreviewuploadsession.md new file mode 100644 index 00000000000..196f9a0ee7b --- /dev/null +++ b/api-reference/beta/resources/customdataprovidedresourceaccessreviewuploadsession.md @@ -0,0 +1,69 @@ +--- +title: "customDataProvidedResourceAccessReviewUploadSession resource type" +description: "Represents a concrete upload session for access review scenarios on a custom data provided resource." +author: "jaylenemartinez0" +ms.date: 05/12/2026 +ms.localizationpriority: medium +ms.subservice: "entra-id-governance" +doc_type: resourcePageType +--- + +# customDataProvidedResourceAccessReviewUploadSession resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents an upload session for access review scenarios on a [customDataProvidedResource](../resources/customdataprovidedresource.md). Use this type when uploading external access data for access reviews via the Bring Your Own Data (BYOD) flow. + +Inherits from [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md). + +## Methods + +This derived type supports the same methods as the base [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md) resource. For the list of supported operations, see the base type documentation. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|createdDateTime|DateTimeOffset|DateTime when the upload session was created. Read-only. Supports `$orderby`. Inherited from [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md).| +|data|[microsoft.graph.customDataProvidedResourcePayloads.data](../resources/customdataprovidedresourcepayloads-data.md)|An object containing the context for which this data is being uploaded. For access review upload sessions, this is of type [microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextData](../resources/customdataprovidedresourcepayloads-accessreviewcontextdata.md). Inherited from [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md).| +|id|String|Unique identifier of the upload session. Read-only. Inherited from [entity](../resources/entity.md).| +|isUploadDone|Boolean|Indicates if all the necessary files have been uploaded to this session. Inherited from [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md).| +|referenceId|String|The ID of the context for which data is being uploaded, for example, the access review instance ID. Supports `$filter (eq)`. Inherited from [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md).| +|stats|[customDataProvidedResourceUploadStats](../resources/customdataprovidedresourceuploadstats.md)|Metadata about the files uploaded in this upload session thus far. Inherited from [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md).| +|status|microsoft.graph.identityGovernance.customDataProvidedResourceUploadStatus|Status of the upload session. The possible values are: `active`, `complete`, `expired`, `unknownFutureValue`. Supports `$filter (eq)`. Inherited from [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md).| + +## Relationships + +|Relationship|Type|Description| +|:---|:---|:---| +|files|[customDataProvidedResourceFile](../resources/customdataprovidedresourcefile.md) collection|The files uploaded during this upload session. Supports `$expand` and `$expand` with nested `$filter` and `$orderby`. Inherited from [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md).| + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.customDataProvidedResourceAccessReviewUploadSession", + "id": "String (identifier)", + "status": "String", + "isUploadDone": "Boolean", + "stats": { + "@odata.type": "microsoft.graph.customDataProvidedResourceUploadStats" + }, + "createdDateTime": "String (timestamp)", + "referenceId": "String", + "data": { + "@odata.type": "microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextData" + } +} +``` diff --git a/api-reference/beta/resources/customdataprovidedresourcepayloads-accessreviewcontextdata.md b/api-reference/beta/resources/customdataprovidedresourcepayloads-accessreviewcontextdata.md new file mode 100644 index 00000000000..3f1acce75fb --- /dev/null +++ b/api-reference/beta/resources/customdataprovidedresourcepayloads-accessreviewcontextdata.md @@ -0,0 +1,46 @@ +--- +title: "accessReviewContextData resource type" +description: "Represents context data for access review upload session scenarios associated with a custom data provided resource." +author: "jaylenemartinez0" +ms.date: 05/12/2026 +ms.localizationpriority: medium +ms.subservice: "entra-id-governance" +doc_type: resourcePageType +--- + +# accessReviewContextData resource type + +Namespace: microsoft.graph.customDataProvidedResourcePayloads + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents context data for access review upload session scenarios associated with a [customDataProvidedResource](../resources/customdataprovidedresource.md). This type is used as the **data** payload when creating a [customDataProvidedResourceAccessReviewUploadSession](../resources/customdataprovidedresourceaccessreviewuploadsession.md) to specify which access review the uploaded data is for. + +Inherits from [microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextDataBase](../resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase.md). + + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|reviewDefinitionId|String|The unique identifier of the access review definition that this data is associated with. Inherited from [microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextDataBase](../resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase.md).| +|reviewInstanceId|String|The unique identifier of the access review instance that this data is associated with. Inherited from [microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextDataBase](../resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase.md).| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextData", + "reviewDefinitionId": "String", + "reviewInstanceId": "String" +} +``` + + diff --git a/api-reference/beta/resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase.md b/api-reference/beta/resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase.md new file mode 100644 index 00000000000..dd66f05cfd1 --- /dev/null +++ b/api-reference/beta/resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase.md @@ -0,0 +1,51 @@ +--- +title: "accessReviewContextDataBase resource type" +description: "Represents the abstract base for access review context data associated with a custom data provided resource." +author: "jaylenemartinez0" +ms.date: 05/12/2026 +ms.localizationpriority: medium +ms.subservice: "entra-id-governance" +doc_type: resourcePageType +--- + +# accessReviewContextDataBase resource type + +Namespace: microsoft.graph.customDataProvidedResourcePayloads + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents the abstract base for access review context data associated with a [customDataProvidedResource](../resources/customdataprovidedresource.md). Contains the access review definition and instance identifiers that link the uploaded data to a specific review. This is an abstract type from which the following types are derived. + +- [accessReviewContextData](../resources/customdataprovidedresourcepayloads-accessreviewcontextdata.md) +- [applyDecisionContextData](../resources/customdataprovidedresourcepayloads-applydecisioncontextdata.md) + +Inherits from [microsoft.graph.customDataProvidedResourcePayloads.data](../resources/customdataprovidedresourcepayloads-data.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|reviewDefinitionId|String|The unique identifier of the access review definition that this data is associated with.| +|reviewInstanceId|String|The unique identifier of the access review instance that this data is associated with.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextDataBase", + "reviewDefinitionId": "String", + "reviewInstanceId": "String" +} +``` + diff --git a/api-reference/beta/resources/customdataprovidedresourcepayloads-applydecisioncontextdata.md b/api-reference/beta/resources/customdataprovidedresourcepayloads-applydecisioncontextdata.md new file mode 100644 index 00000000000..89736c78c0c --- /dev/null +++ b/api-reference/beta/resources/customdataprovidedresourcepayloads-applydecisioncontextdata.md @@ -0,0 +1,46 @@ +--- +title: "applyDecisionContextData resource type" +description: "Represents context data for applying access review decisions associated with a custom data provided resource." +author: "jaylenemartinez0" +ms.date: 05/18/2026 +ms.localizationpriority: medium +ms.subservice: "entra-id-governance" +doc_type: resourcePageType +--- + +# applyDecisionContextData resource type + +Namespace: microsoft.graph.customDataProvidedResourcePayloads + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents context data for the callback sent when batch apply decisions are triggered for a [customDataProvidedResource](../resources/customdataprovidedresource.md) in an access review. Contains the access review definition and instance identifiers so the callback receiver can correlate the batch apply result back to the specific review that initiated the operation. + +Inherits from [microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextDataBase](../resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase.md). + + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|reviewDefinitionId|String|The unique identifier of the access review definition that this data is associated with. Inherited from [microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextDataBase](../resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase.md).| +|reviewInstanceId|String|The unique identifier of the access review instance that this data is associated with. Inherited from [microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextDataBase](../resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase.md).| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.customDataProvidedResourcePayloads.applyDecisionContextData", + "reviewDefinitionId": "String", + "reviewInstanceId": "String" +} +``` + + diff --git a/api-reference/beta/resources/customdataprovidedresourcepayloads-calloutrequest.md b/api-reference/beta/resources/customdataprovidedresourcepayloads-calloutrequest.md new file mode 100644 index 00000000000..4efe9aeb1c8 --- /dev/null +++ b/api-reference/beta/resources/customdataprovidedresourcepayloads-calloutrequest.md @@ -0,0 +1,51 @@ +--- +title: "calloutRequest resource type" +description: "Represents the payload sent to a Logic App workflow when triggering a custom data provided resource upload." +author: "jaylenemartinez0" +ms.date: 05/12/2026 +ms.localizationpriority: medium +ms.subservice: "entra-id-governance" +doc_type: resourcePageType +--- + +# calloutRequest resource type + +Namespace: microsoft.graph.customDataProvidedResourcePayloads + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents the payload sent to a customer-managed Logic App workflow when a [customDataProvidedResource](../resources/customdataprovidedresource.md) upload is triggered. The envelope includes identifiers for the source, catalog, and resource, along with a data payload that provides the context for the callout. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|catalogId|String|The unique identifier of the catalog that contains the custom data provided resource.| +|data|[microsoft.graph.customDataProvidedResourcePayloads.data](../resources/customdataprovidedresourcepayloads-data.md)|An object containing the context data for the callout, such as access review identifiers.| +|resourceId|String|The unique identifier of the custom data provided resource that the callout is for.| +|source|String|The source of the callout request, for example, `/identityGovernance/accessReviews`.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.customDataProvidedResourcePayloads.calloutRequest", + "source": "String", + "catalogId": "String", + "resourceId": "String", + "data": { + "@odata.type": "microsoft.graph.customDataProvidedResourcePayloads.data" + } +} +``` + diff --git a/api-reference/beta/resources/customdataprovidedresourcepayloads-data.md b/api-reference/beta/resources/customdataprovidedresourcepayloads-data.md new file mode 100644 index 00000000000..52a077c7349 --- /dev/null +++ b/api-reference/beta/resources/customdataprovidedresourcepayloads-data.md @@ -0,0 +1,42 @@ +--- +title: "data resource type" +description: "Represents the abstract base for data payloads associated with a custom data provided resource." +author: "jaylenemartinez0" +ms.date: 05/12/2026 +ms.localizationpriority: medium +ms.subservice: "entra-id-governance" +doc_type: resourcePageType +--- + +# data resource type + +Namespace: microsoft.graph.customDataProvidedResourcePayloads + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents the abstract base for data payloads associated with a [customDataProvidedResource](../resources/customdataprovidedresource.md). This is an abstract type from which the following type is derived. + +- [accessReviewContextDataBase](../resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase.md) + + +## Properties +None. + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.customDataProvidedResourcePayloads.data" +} +``` + + diff --git a/api-reference/beta/resources/customdataprovidedresourceuploadsession.md b/api-reference/beta/resources/customdataprovidedresourceuploadsession.md index a53248b56e9..ec49e89896f 100644 --- a/api-reference/beta/resources/customdataprovidedresourceuploadsession.md +++ b/api-reference/beta/resources/customdataprovidedresourceuploadsession.md @@ -14,35 +14,36 @@ Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Represents a [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md) created on a [customDataProvidedResource](../resources/customdataprovidedresource.md). For more information, see [Include custom data provided resource in the catalog for catalog user Access Reviews (Preview)](/entra/id-governance/custom-data-resource-access-reviews). +Represents an upload session created on a [customDataProvidedResource](../resources/customdataprovidedresource.md). This is an abstract type from which the following type is derived. +- [customDataProvidedResourceAccessReviewUploadSession](../resources/customdataprovidedresourceaccessreviewuploadsession.md) -Inherits from [entity](../resources/entity.md). +For more information, see [Include custom data provided resource in the catalog for catalog user Access Reviews (Preview)](/entra/id-governance/custom-data-resource-access-reviews). +Inherits from [entity](../resources/entity.md). ## Methods + |Method|Return type|Description| |:---|:---|:---| -|[Create](../api/customdataprovidedresource-post-uploadsessions.md)|[customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md)|Create a new customDataProvidedResourceUploadSession object.| -|[List](../api/accesspackageresource-list-uploadsessions.md)|[customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md) collection|Get a list of the customDataProvidedResourceUploadSession objects and their properties.| -|[Get](../api/customdataprovidedresourceuploadsession-get.md)|[customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md)|Read the properties and relationships of [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md) object.| -|[Upload file](../api/customdataprovidedresourceuploadsession-uploadfile.md)|[customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md)|Upload a file to a customDataProvidedResourceUploadSession object.| -|[Update](../api/customdataprovidedresourceuploadsession-update.md)|[customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md)|Update the properties of a customDataProvidedResourceUploadSession object.| -|[Delete](../api/accesspackageresource-delete-uploadsessions.md)|None|Delete a customDataProvidedResourceUploadSession object.| +|[Create](../api/customdataprovidedresource-post-uploadsessions.md)|[customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md)|Create a new object type that is derived from **customDataProvidedResourceUploadSession**.| +|[List](../api/accesspackageresource-list-uploadsessions.md)|[customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md) collection|Get a list of objects that are derived from **customDataProvidedResourceUploadSession** and their properties.| +|[Get](../api/customdataprovidedresourceuploadsession-get.md)|[customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md)|Read the properties and relationships of an object type that is derived from **customDataProvidedResourceUploadSession**.| +|[Upload file](../api/customdataprovidedresourceuploadsession-uploadfile.md)|[customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md)|Upload a file to an object that is derived from **customDataProvidedResourceUploadSession**.| +|[Update](../api/customdataprovidedresourceuploadsession-update.md)|[customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md)|Update the properties of an object type that is derived from **customDataProvidedResourceUploadSession**.| +|[Delete](../api/accesspackageresource-delete-uploadsessions.md)|None|Delete an object type that is derived from **customDataProvidedResourceUploadSession**.| ## Properties |Property|Type|Description| |:---|:---|:---| |createdDateTime|DateTimeOffset|DateTime when the upload session was created. Read-only. Supports `$orderby`.| -|data|[customExtensionData](../resources/customextensiondata.md)|An object containing the context for which this data is being uploaded. Currently the only possible concrete type is [accessReviewResourceDataUploadSessionContextData](../resources/accessreviewresourcedatauploadsessioncontextdata.md)| -|id|String| Unique identifier of the upload session. Read-only.| -|isUploadDone|Boolean| Indicates if all the necessary files have been uploaded to this session.| -|referenceId|String|The ID of the context for which data is being uploaded, for example, the Access Review instance ID. Supports `$filter (`eq`)`.| -|source|String| The source of the access data. This should be set to the customdataprovidedresource's name when creating the session.| -|stats|[customDataProvidedResourceUploadStats](../resources/customdataprovidedresourceuploadstats.md)| Metadata about the files uploaded in this upload session thus far.| -|status|customDataProvidedResourceUploadStatus| Status of the upload session. The possible values are: `active`, `complete`, `expired`, `unknownFutureValue`. Supports `$filter (`eq`)`.| -|type|String| Schematized form of the expected CSV columns in the uploaded file. The only possible value currently is: `accessReviewDataUploadTriggerCallbackData`| +|data|[microsoft.graph.customDataProvidedResourcePayloads.data](../resources/customdataprovidedresourcepayloads-data.md)|An object containing the context for which this data is being uploaded.| +|id|String|Unique identifier of the upload session. Read-only.| +|isUploadDone|Boolean|Indicates if all the necessary files have been uploaded to this session.| +|referenceId|String|The ID of the context for which data is being uploaded, for example, the Access Review instance ID. Supports `$filter (eq)`.| +|stats|[customDataProvidedResourceUploadStats](../resources/customdataprovidedresourceuploadstats.md)|Metadata about the files uploaded in this upload session thus far.| +|status|microsoft.graph.identityGovernance.customDataProvidedResourceUploadStatus|Status of the upload session. The possible values are: `active`, `complete`, `expired`, `unknownFutureValue`. Supports `$filter (eq)`.| ## Relationships @@ -51,13 +52,15 @@ Inherits from [entity](../resources/entity.md). |files|[customDataProvidedResourceFile](../resources/customdataprovidedresourcefile.md) collection|The files uploaded during this upload session. Supports `$expand` and `$expand` with nested `$filter` and `$orderby`.| ## JSON representation + The following JSON representation shows the resource type. ``` json @@ -70,10 +73,9 @@ The following JSON representation shows the resource type. "@odata.type": "microsoft.graph.customDataProvidedResourceUploadStats" }, "createdDateTime": "String (timestamp)", - "source": "String", - "type": "String", "referenceId": "String", "data": { - "@odata.type": "microsoft.graph.customExtensionData" + "@odata.type": "microsoft.graph.customDataProvidedResourcePayloads.data" + } } ``` diff --git a/api-reference/beta/resources/customdataprovidedresourceuploadsessionrequest.md b/api-reference/beta/resources/customdataprovidedresourceuploadsessionrequest.md index a0c3eb2a6f4..c73dbc8208b 100644 --- a/api-reference/beta/resources/customdataprovidedresourceuploadsessionrequest.md +++ b/api-reference/beta/resources/customdataprovidedresourceuploadsessionrequest.md @@ -20,9 +20,7 @@ The request object used to create a [customDataProvidedResourceUploadSession](.. ## Properties |Property|Type|Description| |:---|:---|:---| -|data|[customExtensionData](./customExtensionData.md)|An object containing the context for which this data is being uploaded. Currently the only allowed value is [accessReviewResourceDataUploadSessionContextData](../resources/accessreviewresourcedatauploadsessioncontextdata.md)| -|source|String| The name of the CustomDataProvidedResource| -|type|String| The schema of the data that is expected in the CSV uploads in this session. The only currently supported value is `#microsoft.graph.accessReviewDataUploadTriggerCallbackData`| +|data|[microsoft.graph.customDataProvidedResourcePayloads.data](../resources/customdataprovidedresourcepayloads-data.md)|An object containing the context for which this data is being uploaded. For access review upload sessions, use [microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextData](../resources/customdataprovidedresourcepayloads-accessreviewcontextdata.md). Required.| ## Relationships None. @@ -37,10 +35,8 @@ The following JSON representation shows the resource type. ``` json { "@odata.type": "#microsoft.graph.customDataProvidedResourceUploadSessionRequest", - "source": "String", - "type": "String", "data": { - "@odata.type": "microsoft.graph.accessReviewResourceDataUploadSessionContextData" + "@odata.type": "microsoft.graph.customDataProvidedResourcePayloads.data" } } ``` diff --git a/api-reference/beta/resources/customextensiondata.md b/api-reference/beta/resources/customextensiondata.md index e1e7876bd5f..106e7cddd08 100644 --- a/api-reference/beta/resources/customextensiondata.md +++ b/api-reference/beta/resources/customextensiondata.md @@ -41,3 +41,4 @@ The following JSON representation shows the resource type. } ``` + diff --git a/api-reference/beta/resources/enums-identitygovernance.md b/api-reference/beta/resources/enums-identitygovernance.md index 4015d120ff7..0ee93b2cee6 100644 --- a/api-reference/beta/resources/enums-identitygovernance.md +++ b/api-reference/beta/resources/enums-identitygovernance.md @@ -36,6 +36,15 @@ Namespace: microsoft.graph.identityGovernance |failed| |unknownFutureValue| +### customDataProvidedResourceUploadStatus values + +|Member| +|:---| +|active| +|complete| +|expired| +|unknownFutureValue| + ### customTaskExtensionReplyMode values |Member| @@ -115,6 +124,15 @@ Namespace: microsoft.graph.identityGovernance |remove| |unknownFutureValue| +### principalType values + +|Member| +|:---| +|user| +|group| +|servicePrincipal| +|unknownFutureValue| + diff --git a/api-reference/beta/resources/enums-windowsupdates.md b/api-reference/beta/resources/enums-windowsupdates.md index a1b3ca39e7e..0cf1d678ee5 100644 --- a/api-reference/beta/resources/enums-windowsupdates.md +++ b/api-reference/beta/resources/enums-windowsupdates.md @@ -44,6 +44,17 @@ Namespace: microsoft.graph.windowsUpdates |archived| |unknownFutureValue| +### enrollmentState values + +|Member| +|:---| +|notEnrolled| +|enrolled| +|enrolledWithPolicy| +|enrolling| +|unenrolling| +|unknownFutureValue| + ### monitoringAction values |Member| diff --git a/api-reference/beta/resources/granularrestoreitems.md b/api-reference/beta/resources/granularrestoreitems.md new file mode 100644 index 00000000000..b9a22a6c485 --- /dev/null +++ b/api-reference/beta/resources/granularrestoreitems.md @@ -0,0 +1,46 @@ +--- +title: "granularRestoreItems enum type" +description: "Indicates the type of granular restore items that can be searched and restored." +author: "schapagain" +ms.date: 06/05/2026 +ms.localizationpriority: medium +ms.subservice: "m365-backup-storage" +doc_type: enumPageType +--- + +# granularRestoreItems enum type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Indicates the type of granular restore items that can be searched and restored from backup. + +## Members + +The following table lists the members of an [evolvable enumeration](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations). + +| Member | Description | +|:---|:---| +| email | Email message item. | +| note | Note item. | +| contact | Contact item. | +| task | Task item. | +| calendar | Calendar item. | +| unknownFutureValue | Evolvable enumeration sentinel value. Don't use. | + +## JSON representation + +The following JSON representation shows the resource type. + + + +```json +{ + "@odata.type": "#microsoft.graph.granularRestoreItems" +} +``` diff --git a/api-reference/beta/resources/groupanalytics.md b/api-reference/beta/resources/groupanalytics.md new file mode 100644 index 00000000000..ba36169a14e --- /dev/null +++ b/api-reference/beta/resources/groupanalytics.md @@ -0,0 +1,131 @@ +--- +title: "groupAnalytics resource type" +description: "Represents point-in-time analytics for a group in a Microsoft Entra tenant." +ms.localizationpriority: medium +author: "Licantrop0" +ms.subservice: "reports" +doc_type: "resourcePageType" +ms.date: 06/09/2026 +--- + +# groupAnalytics resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents point-in-time analytics for a group in a Microsoft Entra tenant, including its membership, ownership, and type. This resource is part of [identity analytics](../resources/identityanalyticsroot.md), at the `/reports/identityAnalytics/groups` path. + +Each object reflects the data as of its **calculatedDateTime** value. + +## Methods + +| Method | Return type | Description | +| :----------------------------------------------------------- | :--------------------------------------------------------- | :----------------------------------------------------------------------------------------- | +| [List](../api/identityanalyticsroot-list-groups.md) | [groupAnalytics](../resources/groupanalytics.md) collection | Get a list of the [groupAnalytics](../resources/groupanalytics.md) objects and their properties for the tenant. | +| [Get](../api/groupanalytics-get.md) | [groupAnalytics](../resources/groupanalytics.md) | Read the properties of a [groupAnalytics](../resources/groupanalytics.md) object. | + +## Properties + +| Property | Type | Description | +| :------- | :--- | :---------- | +| assignedRoleCount | Int64 | The number of directory roles assigned to the group. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| calculatedDateTime | DateTimeOffset | The date and time when the analytics for the group were last calculated. The timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| createdDateTime | DateTimeOffset | The date and time when the group was created. The timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| directGroupMemberCount | Int64 | The number of direct members of the group that are themselves groups. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| displayName | String | The display name of the group. Supports `$filter` (`eq`, `ne`, `startsWith`, `endsWith`, `contains`) and `$orderby`. | +| dynamicMembershipType | String | The dynamic membership classification of the group, derived from its membership rule. Supports `$filter` (`eq`, `ne`, `startsWith`, `endsWith`, `contains`) and `$orderby`. | +| groupExpirationDateTime | DateTimeOffset | The date and time when the group expires. The timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| groupType | [groupTypeEnum](#grouptypeenum-values) | The type of the group. The possible values are mutually exclusive. For more information, see the [groupTypeEnum values](#grouptypeenum-values) section. Supports `$orderby`. | +| guestOwnerCount | Int64 | The number of owners of the group that are guest users. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| guestTransitiveUserCount | Int64 | The number of transitive user members of the group that are guest users. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| id | String | The unique identifier of the group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isCloudDistributionListGroup | Boolean | Indicates whether the group is a non-soft-deleted cloud distribution list group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isCloudM365Group | Boolean | Indicates whether the group is a non-soft-deleted cloud Microsoft 365 group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isCloudMailEnabledSecurityGroup | Boolean | Indicates whether the group is a non-soft-deleted cloud mail-enabled security group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isCloudSecurityGroup | Boolean | Indicates whether the group is a non-soft-deleted cloud security group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isDynamicGroup | Boolean | Indicates whether the group is a dynamic group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isOnPremiseDistributionListGroup | Boolean | Indicates whether the group is a non-soft-deleted on-premises distribution list group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isOnPremiseMailEnabledSecurityGroup | Boolean | Indicates whether the group is a non-soft-deleted on-premises mail-enabled security group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isOnPremiseSecurityGroup | Boolean | Indicates whether the group is a non-soft-deleted on-premises security group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isValidGroup | Boolean | Indicates whether the group is a valid (non-soft-deleted) group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| lastRestorationDateTime | DateTimeOffset | The date and time when the group was last restored from a soft-deleted state. The timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| memberOwnerCount | Int64 | The number of owners of the group that are member (non-guest) users. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| memberTransitiveUserCount | Int64 | The number of transitive user members of the group that are member (non-guest) users. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| membershipRuleContainsCount | Int64 | The number of `contains` expressions in the membership rule of the group. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| membershipRuleExpressionCount | Int64 | The number of expressions in the membership rule of the group. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| membershipRuleMatchCount | Int64 | The number of `match` expressions in the membership rule of the group. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| membershipRuleMemberOfCount | Int64 | The number of `memberOf` expressions in the membership rule of the group. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| membershipRuleProcessingState | String | The processing state of the membership rule of the group. Supports `$filter` (`eq`, `ne`, `startsWith`, `endsWith`, `contains`) and `$orderby`. | +| preferredDataLocation | String | The preferred data location of the group. Supports `$filter` (`eq`, `ne`, `startsWith`, `endsWith`, `contains`) and `$orderby`. | +| sensitivityLabelCount | Int64 | The number of sensitivity labels applied to the group. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| servicePrincipalOwnerCount | Int64 | The number of owners of the group that are service principals. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| softDeletionDateTime | DateTimeOffset | The date and time when the group was soft-deleted. If this property is empty, the group isn't soft-deleted. The timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| tenantId | String | The unique identifier of the tenant that the group belongs to. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| transitiveServicePrincipalCount | Int64 | The number of transitive members of the group that are service principals. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| transitiveUserCount | Int64 | The total number of transitive user members of the group. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | + +### groupTypeEnum values + +| Member | Description | +| :----------------- | :--------------------------------- | +| isCloudGroup | The group is a cloud group. | +| isOnPremiseGroup | The group is an on-premises group. | +| isSoftDeletedGroup | The group is a soft-deleted group. | + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +```json +{ + "@odata.type": "#microsoft.graph.groupAnalytics", + "assignedRoleCount": "Integer", + "calculatedDateTime": "String (timestamp)", + "createdDateTime": "String (timestamp)", + "directGroupMemberCount": "Integer", + "displayName": "String", + "dynamicMembershipType": "String", + "groupExpirationDateTime": "String (timestamp)", + "groupType": "String", + "guestOwnerCount": "Integer", + "guestTransitiveUserCount": "Integer", + "id": "String (identifier)", + "isCloudDistributionListGroup": "Boolean", + "isCloudM365Group": "Boolean", + "isCloudMailEnabledSecurityGroup": "Boolean", + "isCloudSecurityGroup": "Boolean", + "isDynamicGroup": "Boolean", + "isOnPremiseDistributionListGroup": "Boolean", + "isOnPremiseMailEnabledSecurityGroup": "Boolean", + "isOnPremiseSecurityGroup": "Boolean", + "isValidGroup": "Boolean", + "lastRestorationDateTime": "String (timestamp)", + "memberOwnerCount": "Integer", + "memberTransitiveUserCount": "Integer", + "membershipRuleContainsCount": "Integer", + "membershipRuleExpressionCount": "Integer", + "membershipRuleMatchCount": "Integer", + "membershipRuleMemberOfCount": "Integer", + "membershipRuleProcessingState": "String", + "preferredDataLocation": "String", + "sensitivityLabelCount": "Integer", + "servicePrincipalOwnerCount": "Integer", + "softDeletionDateTime": "String (timestamp)", + "tenantId": "String", + "transitiveServicePrincipalCount": "Integer", + "transitiveUserCount": "Integer" +} +``` diff --git a/api-reference/beta/resources/identityanalyticsroot.md b/api-reference/beta/resources/identityanalyticsroot.md new file mode 100644 index 00000000000..08bcb655a4b --- /dev/null +++ b/api-reference/beta/resources/identityanalyticsroot.md @@ -0,0 +1,50 @@ +--- +title: "identityAnalyticsRoot resource type" +description: "Represents a container for Microsoft Entra identity analytics reports in a tenant." +ms.localizationpriority: medium +author: "Licantrop0" +ms.subservice: "reports" +doc_type: "resourcePageType" +ms.date: 06/09/2026 +--- + +# identityAnalyticsRoot resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a container for Microsoft Entra identity analytics in a tenant. Identity analytics reports point-in-time data about your directory objects, and currently covers the [groups](../resources/groupanalytics.md) in the tenant. + +Access this resource through the [reportRoot](../resources/reportroot.md) resource, at the `/reports/identityAnalytics` path. + +## Methods + +None. + +## Properties + +None. + +## Relationships + +| Relationship | Type | Description | +| :----------- | :--------------------------------------------------------- | :----------------------------------------- | +| groups | [groupAnalytics](../resources/groupanalytics.md) collection | The analytics for the groups in the tenant. | + +## JSON representation + +The following JSON representation shows the resource type. + + +```json +{ + "@odata.type": "#microsoft.graph.identityAnalyticsRoot" +} +``` diff --git a/api-reference/beta/resources/reportroot.md b/api-reference/beta/resources/reportroot.md index d381c800310..9061a1a4de1 100644 --- a/api-reference/beta/resources/reportroot.md +++ b/api-reference/beta/resources/reportroot.md @@ -214,6 +214,12 @@ For details about report views and names, see [Microsoft 365 reports - SharePoin | [Get storage](../api/reportroot-getsharepointsiteusagestorage.md) | Stream | Get the trend of storage allocated and consumed during the reporting period. | | [Get pages](../api/reportroot-getsharepointsiteusagepages.md) | Stream | Get the number of pages viewed across all sites. | +### SharePoint API usage + +| Method | Return type | Description | +| :----------------------------------------------------------------------------------------- | :---------- | :------------------------------------------------------------------------------------ | +| [Get SharePoint API usage](../api/reportroot-getsharepointapiusage.md) | Stream | Get aggregated OneDrive and SharePoint API usage metrics for a tenant. | + ### Skype for Business activity For details about report views and names, see [Skype for Business activity](/skypeforbusiness/skype-for-business-online-reporting/activity-report). @@ -311,6 +317,7 @@ None. | dailyPrintUsageByPrinter | [printUsageByPrinter](printusagebyprinter.md) collection | Retrieve a list of daily print usage summaries, grouped by printer. | | dailyPrintUsageByUser | [printUsageByUser](printusagebyuser.md) collection | Retrieve a list of daily print usage summaries, grouped by user. | | healthMonitoring | [microsoft.graph.healthMonitoring.healthMonitoringRoot](healthmonitoring-healthmonitoringroot.md) collection | Reports for Microsoft Entra Health Monitoring. | +| identityAnalytics | [identityAnalyticsRoot](../resources/identityanalyticsroot.md) | Microsoft Entra identity analytics for the tenant, including its groups. | | monthlyPrintUsageByPrinter | [printUsageByPrinter](printusagebyprinter.md) collection | Retrieve a list of monthly print usage summaries, grouped by printer. | | monthlyPrintUsageByUser | [printUsageByUser](printusagebyuser.md) collection | Retrieve a list of monthly print usage summaries, grouped by user. | | partners | [partners](partners.md) | Represents billing details for a Microsoft direct partner. | diff --git a/api-reference/beta/resources/restoresearchartifactqueryexpression.md b/api-reference/beta/resources/restoresearchartifactqueryexpression.md new file mode 100644 index 00000000000..a23a731f0e6 --- /dev/null +++ b/api-reference/beta/resources/restoresearchartifactqueryexpression.md @@ -0,0 +1,57 @@ +--- +title: "restoreSearchArtifactQueryExpression resource type" +description: "Represents a structured query expression for searching artifacts in restore operations." +author: "schapagain" +ms.date: 06/05/2026 +ms.localizationpriority: medium +ms.subservice: "m365-backup-storage" +doc_type: resourcePageType +--- + +# restoreSearchArtifactQueryExpression resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a structured query expression for searching artifacts in restore operations. This resource provides a type-safe way to construct search queries for backup artifacts. + +All properties are optional and can be combined to create more specific search queries. + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|hasAttachment|Boolean|Indicates whether the artifact has an attachment. Optional.| +|items|[granularRestoreItems](../resources/granularrestoreitems.md) collection|The types of items to include in the search. Optional.| +|recipients|String collection|The recipient email addresses to filter by. Optional.| +|senders|String collection|The sender email addresses to filter by. Optional.| +|subjects|String collection|The subject lines to filter by. Optional.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.restoreSearchArtifactQueryExpression", + "recipients": [ + "String" + ], + "senders": [ + "String" + ], + "subjects": [ + "String" + ], + "items": [ + "String" + ], + "hasAttachment": "Boolean" +} +``` diff --git a/api-reference/beta/resources/security-ediscoveryaddtoreviewsetoperation.md b/api-reference/beta/resources/security-ediscoveryaddtoreviewsetoperation.md index b4bfb7d9664..f075ed4de03 100644 --- a/api-reference/beta/resources/security-ediscoveryaddtoreviewsetoperation.md +++ b/api-reference/beta/resources/security-ediscoveryaddtoreviewsetoperation.md @@ -25,7 +25,7 @@ None. |Property|Type|Description| |:---|:---|:---| |action|[microsoft.graph.security.caseAction](../resources/security-caseoperation.md#caseaction-values)| The type of action the operation represents. The possible values are: `contentExport`, `applyTags`, `convertToPdf`, `index`, `estimateStatistics`, `addToReviewSet`, `holdUpdate`, `unknownFutureValue`, `purgeData`, `exportReport`, `exportResult`, `holdPolicySync`. Use the `Prefer: include-unknown-enum-members` request header to get the following values from this [evolvable enum](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations): `purgeData`, `exportReport`, `exportResult`, `holdPolicySync`. Inherited from [caseOperation](../resources/security-caseoperation.md).| -|additionalDataOptions|[microsoft.graph.security.additionalDataOptions](#additionaldataoptions-values)| The options to add items to the review set. The possible values are: `allVersions`, `linkedFiles`, `unknownFutureValue`, `advancedIndexing`, `listAttachments`, `htmlTranscripts`, `messageConversationExpansion`, `locationsWithoutHits`, `allItemsInFolder`. Use the `Prefer: include-unknown-enum-members` request header to get the following values from this [evolvable enum](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations): `advancedIndexing`, `listAttachments`, `htmlTranscripts`, `messageConversationExpansion`, `locationsWithoutHits`, `allItemsInFolder`.| +|additionalDataOptions|[microsoft.graph.security.additionalDataOptions](#additionaldataoptions-values)| The options to add items to the review set. The possible values are: `allVersions`, `linkedFiles`, `unknownFutureValue`, `advancedIndexing`, `listAttachments`, `htmlTranscripts`, `messageConversationExpansion`, `locationsWithoutHits`, `allItemsInFolder`, `cloudNativeHtmlConversion`. Use the `Prefer: include-unknown-enum-members` request header to get the following values from this [evolvable enum](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations): `advancedIndexing`, `listAttachments`, `htmlTranscripts`, `messageConversationExpansion`, `locationsWithoutHits`, `allItemsInFolder`, `cloudNativeHtmlConversion`.| |cloudAttachmentVersion|microsoft.graph.security.cloudAttachmentVersion| Specifies the number of most recent versions of cloud attachments to collect. The possible values are: `latest`, `recent10`, `recent100`, `all`, `unknownFutureValue`. | |completedDateTime|DateTimeOffset| The date and time the operation was completed. Inherited from [caseOperation](../resources/security-caseoperation.md).| |createdBy|[identitySet](../resources/identityset.md)| The user that created the operation. Inherited from [caseOperation](../resources/security-caseoperation.md).| @@ -51,6 +51,7 @@ None. |messageConversationExpansion| Include conversation context around a hit.| |locationsWithoutHits| Look for unindexed items even in locations without hits.| |allItemsInFolder| Include all content in the folder if the folder itself matches a query.| +|cloudNativeHtmlConversion| Convert items to cloud-native HTML format during review set collection.| ### itemsToInclude values diff --git a/api-reference/beta/resources/security-huntingschemabuiltinfunction.md b/api-reference/beta/resources/security-huntingschemabuiltinfunction.md new file mode 100644 index 00000000000..4d6b1639374 --- /dev/null +++ b/api-reference/beta/resources/security-huntingschemabuiltinfunction.md @@ -0,0 +1,51 @@ +--- +title: "huntingSchemaBuiltInFunction resource type" +description: "Represents a prebuilt function included with Microsoft Defender XDR advanced hunting." +author: "nitzanfrogel" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/13/2026 +--- + +# huntingSchemaBuiltInFunction resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a prebuilt function included with Microsoft Defender XDR advanced hunting. Built-in functions are available to all advanced hunting instances and can't be modified by users. Part of the [huntingSchemaFunctions](../resources/security-huntingschemafunctions.md) returned by the [getHuntingSchema](../api/security-security-gethuntingschema.md) function. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|documentation|String|Description of the function and its usage.| +|huntingFunctionId|Int64|Unique identifier for the function. Required.| +|inputParameters|[microsoft.graph.security.huntingSchemaFunctionParameter](../resources/security-huntingschemafunctionparameter.md) collection|Collection of input parameters accepted by the function.| +|name|String|Name of the function. Required.| +|outputColumns|[microsoft.graph.security.huntingSchemaTableColumn](../resources/security-huntingschematablecolumn.md) collection|Collection of columns returned by the function.| +|path|String|Folder path of the function.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "documentation": "String", + "huntingFunctionId": "Int64", + "inputParameters": [{"@odata.type": "microsoft.graph.security.huntingSchemaFunctionParameter"}], + "name": "String", + "outputColumns": [{"@odata.type": "microsoft.graph.security.huntingSchemaTableColumn"}], + "path": "String" +} +``` diff --git a/api-reference/beta/resources/security-huntingschemafunctionparameter.md b/api-reference/beta/resources/security-huntingschemafunctionparameter.md new file mode 100644 index 00000000000..ec647632414 --- /dev/null +++ b/api-reference/beta/resources/security-huntingschemafunctionparameter.md @@ -0,0 +1,45 @@ +--- +title: "huntingSchemaFunctionParameter resource type" +description: "Represents an input parameter for an advanced hunting function." +author: "nitzanfrogel" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/13/2026 +--- + +# huntingSchemaFunctionParameter resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents an input parameter for an advanced hunting function. Parameters allow callers to provide arguments when invoking a function. Used by both [huntingSchemaBuiltInFunction](../resources/security-huntingschemabuiltinfunction.md) and [huntingSchemaSavedFunction](../resources/security-huntingschemasavedfunction.md) resource types. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|cslType|String|Data type of the parameter in Kusto Query Language (KQL) CSL format. Required.| +|defaultValue|String|Default value used when the caller doesn't provide a value for this parameter.| +|name|String|Name of the parameter. Required.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "cslType": "String", + "defaultValue": "String", + "name": "String" +} +``` diff --git a/api-reference/beta/resources/security-huntingschemafunctions.md b/api-reference/beta/resources/security-huntingschemafunctions.md new file mode 100644 index 00000000000..c85c694c193 --- /dev/null +++ b/api-reference/beta/resources/security-huntingschemafunctions.md @@ -0,0 +1,43 @@ +--- +title: "huntingSchemaFunctions resource type" +description: "Contains the two categories of advanced hunting functions accessible to the user: built-in functions and saved functions." +author: "nitzanfrogel" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/13/2026 +--- + +# huntingSchemaFunctions resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Contains the two categories of advanced hunting functions accessible to the user: built-in functions and saved functions. Part of the [huntingSchemaResult](../resources/security-huntingschemaresult.md) returned by the [getHuntingSchema](../api/security-security-gethuntingschema.md) function. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|builtInFunctions|[microsoft.graph.security.huntingSchemaBuiltInFunction](../resources/security-huntingschemabuiltinfunction.md) collection|Prebuilt functions included with Microsoft Defender XDR advanced hunting.| +|savedFunctions|[microsoft.graph.security.huntingSchemaSavedFunction](../resources/security-huntingschemasavedfunction.md) collection|Custom functions created by users, including shared functions accessible to all tenant users and personal functions visible only to their creator.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "builtInFunctions": [{"@odata.type": "microsoft.graph.security.huntingSchemaBuiltInFunction"}], + "savedFunctions": [{"@odata.type": "microsoft.graph.security.huntingSchemaSavedFunction"}] +} +``` diff --git a/api-reference/beta/resources/security-huntingschemaresult.md b/api-reference/beta/resources/security-huntingschemaresult.md new file mode 100644 index 00000000000..3cb4ebd00fc --- /dev/null +++ b/api-reference/beta/resources/security-huntingschemaresult.md @@ -0,0 +1,43 @@ +--- +title: "huntingSchemaResult resource type" +description: "Contains the advanced hunting schema accessible to the signed-in user, including tables and functions." +author: "nitzanfrogel" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/13/2026 +--- + +# huntingSchemaResult resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Contains the advanced hunting schema accessible to the signed-in user, including tables and functions. Returned by the [getHuntingSchema](../api/security-security-gethuntingschema.md) function. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|functions|[microsoft.graph.security.huntingSchemaFunctions](../resources/security-huntingschemafunctions.md)|Object containing the built-in functions and saved functions available to the user.| +|tables|[microsoft.graph.security.huntingSchemaTable](../resources/security-huntingschematable.md) collection|Collection of advanced hunting tables the user is authorized to query.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "tables": [{"@odata.type": "microsoft.graph.security.huntingSchemaTable"}], + "functions": {"@odata.type": "microsoft.graph.security.huntingSchemaFunctions"} +} +``` diff --git a/api-reference/beta/resources/security-huntingschemasavedfunction.md b/api-reference/beta/resources/security-huntingschemasavedfunction.md new file mode 100644 index 00000000000..592715a394d --- /dev/null +++ b/api-reference/beta/resources/security-huntingschemasavedfunction.md @@ -0,0 +1,57 @@ +--- +title: "huntingSchemaSavedFunction resource type" +description: "Represents a custom function created by a user in advanced hunting." +author: "nitzanfrogel" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/13/2026 +--- + +# huntingSchemaSavedFunction resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a custom function created by a user in advanced hunting. Custom functions allow users to save reusable query logic that can be invoked in other queries. Includes both shared functions accessible to all tenant users and personal functions visible only to their creator. Part of the [huntingSchemaFunctions](../resources/security-huntingschemafunctions.md) returned by the [getHuntingSchema](../api/security-security-gethuntingschema.md) function. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|createdBy|String|Identity of the user who created the function.| +|description|String|Description of the function purpose and usage.| +|huntingFunctionId|Int64|Unique identifier for the function. Required.| +|inputParameters|[microsoft.graph.security.huntingSchemaFunctionParameter](../resources/security-huntingschemafunctionparameter.md) collection|Collection of input parameters accepted by the function.| +|lastModifiedBy|String|Identity of the user who last modified the function.| +|lastModifiedDateTime|DateTimeOffset|Date and time when the function was last modified.| +|name|String|Name of the function. Required.| +|outputColumns|[microsoft.graph.security.huntingSchemaTableColumn](../resources/security-huntingschematablecolumn.md) collection|Collection of columns returned by the function.| +|path|String|Folder path where the function is saved.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "createdBy": "String", + "description": "String", + "huntingFunctionId": "Int64", + "inputParameters": [{"@odata.type": "microsoft.graph.security.huntingSchemaFunctionParameter"}], + "lastModifiedBy": "String", + "lastModifiedDateTime": "String (timestamp)", + "name": "String", + "outputColumns": [{"@odata.type": "microsoft.graph.security.huntingSchemaTableColumn"}], + "path": "String" +} +``` diff --git a/api-reference/beta/resources/security-huntingschematable.md b/api-reference/beta/resources/security-huntingschematable.md new file mode 100644 index 00000000000..a6a09188ece --- /dev/null +++ b/api-reference/beta/resources/security-huntingschematable.md @@ -0,0 +1,45 @@ +--- +title: "huntingSchemaTable resource type" +description: "Represents an advanced hunting table accessible to the user." +author: "nitzanfrogel" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/13/2026 +--- + +# huntingSchemaTable resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents an advanced hunting table accessible to the user. Part of the [huntingSchemaResult](../resources/security-huntingschemaresult.md) returned by the [getHuntingSchema](../api/security-security-gethuntingschema.md) function. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|columns|[microsoft.graph.security.huntingSchemaTableColumn](../resources/security-huntingschematablecolumn.md) collection|Collection of columns in the table with their data types.| +|description|String|Description of what data the table contains.| +|name|String|Name of the table. Required.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "name": "String", + "description": "String", + "columns": [{"@odata.type": "microsoft.graph.security.huntingSchemaTableColumn"}] +} +``` diff --git a/api-reference/beta/resources/security-huntingschematablecolumn.md b/api-reference/beta/resources/security-huntingschematablecolumn.md new file mode 100644 index 00000000000..fec535a9794 --- /dev/null +++ b/api-reference/beta/resources/security-huntingschematablecolumn.md @@ -0,0 +1,45 @@ +--- +title: "huntingSchemaTableColumn resource type" +description: "Represents a column in an advanced hunting table." +author: "nitzanfrogel" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/13/2026 +--- + +# huntingSchemaTableColumn resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a column in an advanced hunting table. Part of the [huntingSchemaTable](../resources/security-huntingschematable.md) returned by the [getHuntingSchema](../api/security-security-gethuntingschema.md) function. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|dataType|String|Data type of the column (for example, `DateTime`, `String`). Required.| +|description|String|Description of the column.| +|name|String|Name of the column. Required.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "dataType": "String", + "description": "String", + "name": "String" +} +``` diff --git a/api-reference/beta/resources/security.md b/api-reference/beta/resources/security.md index dcfe88765c9..f3838755992 100644 --- a/api-reference/beta/resources/security.md +++ b/api-reference/beta/resources/security.md @@ -20,6 +20,7 @@ Connects Microsoft security products, services, and partners to streamline secur |Method|Return type|Description| |:---|:---|:---| |[Run hunting query](../api/security-security-runhuntingquery.md)|[microsoft.graph.security.huntingQueryResults](../resources/security-huntingqueryresults.md)|Queries a specified set of event, activity, or entity data supported by Microsoft 365 Defender to proactively look for specific threats in your environment.| +|[Get hunting schema](../api/security-security-gethuntingschema.md)|[microsoft.graph.security.huntingSchemaResult](../resources/security-huntingschemaresult.md)|Retrieves the advanced hunting schema accessible to the signed-in user, including the tables and functions the user is authorized to query and invoke.| ## Properties None. diff --git a/api-reference/beta/resources/sharepointapiusagedatapoint.md b/api-reference/beta/resources/sharepointapiusagedatapoint.md new file mode 100644 index 00000000000..03a36ab6edd --- /dev/null +++ b/api-reference/beta/resources/sharepointapiusagedatapoint.md @@ -0,0 +1,61 @@ +--- +title: "sharePointApiUsageDataPoint resource type" +description: "Represents a single data point in a SharePoint Online API usage report." +author: "ireneren" +ms.localizationpriority: medium +ms.subservice: "reports" +doc_type: resourcePageType +ms.date: 03/16/2026 +--- + +# sharePointApiUsageDataPoint resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a single data point in a OneDrive and SharePoint API usage report. Each data point can be either a summary row or a detail row: + +- **Summary row**: Aggregated usage across all applications for a date or period. The **appId** is `null` and **activeApps** is populated. +- **Detail row**: Usage for a specific application on a specific date. The **appId** is populated and **activeApps** is `null`. + +Data points in detail rows are ordered by **usageDateTime** descending (most recent first). + +## Properties + +| Property | Type | Description | +|:--------------|:---------------|:-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| +| activeApps | Int32 | The number of distinct applications with usage during the reporting period. Summary rows: populated with the count of active applications. Detail rows: `null`. Read-only. | +| appId | String | The unique identifier (GUID) for the application. Summary rows: `null`. Detail rows: the application GUID. Read-only. | +| serviceArea | String | The service area name. Always `OneDrive and SharePoint` for SharePoint API usage reports. Read-only. | +| tenantId | String | The unique identifier (GUID) for the tenant. Read-only. | +| usageDateTime | DateTimeOffset | The date and time for this data point in ISO 8601 format. For summary rows, this is the most recent date in the reporting period. For detail rows, this is the specific date for the usage data. Read-only. | +| usageMB | Int64 | Total usage in megabytes (MB) for this data point. Summary rows: total aggregated usage across all applications for the reporting period. Detail rows: usage for the specific application on the specific date. Read-only. | +| usageRequests | Int64 | The number of API requests. Summary rows: total requests across all applications. Detail rows: requests for the specific application on the specific date. Read-only. | + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.sharePointApiUsageDataPoint", + "activeApps": "Int32", + "appId": "String", + "serviceArea": "String", + "tenantId": "String", + "usageDateTime": "String (timestamp)", + "usageMB": "Int64", + "usageRequests": "Int64" +} +``` diff --git a/api-reference/beta/resources/sharepointapiusagereport.md b/api-reference/beta/resources/sharepointapiusagereport.md new file mode 100644 index 00000000000..a6118e0a08c --- /dev/null +++ b/api-reference/beta/resources/sharepointapiusagereport.md @@ -0,0 +1,52 @@ +--- +title: "sharePointApiUsageReport resource type" +description: "Represents aggregated SharePoint Online tenant usage data containing a collection of usage data points." +author: "ireneren" +ms.localizationpriority: medium +ms.subservice: "reports" +doc_type: resourcePageType +ms.date: 03/16/2026 +--- + +# sharePointApiUsageReport resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents aggregated OneDrive and SharePoint API usage data for a tenant. The report contains a summary aggregating usage across all applications and details showing per-application usage. + +## Properties + +| Property | Type | Description | +|:---------|:----------------------------------------------------------------------------------------|:---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| +| details | [sharePointApiUsageDataPoint](../resources/sharepointapiusagedatapoint.md) collection | The collection of per-application, per-date usage data points. Each item represents usage for a specific application on a specific date. | +| summary | [sharePointApiUsageDataPoint](../resources/sharepointapiusagedatapoint.md) | The aggregated summary of usage across all applications for the specified period or date. The **appId** is `null` and **activeApps** contains the count of distinct applications. | + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.sharePointApiUsageReport", + "summary": { + "@odata.type": "microsoft.graph.sharePointApiUsageDataPoint" + }, + "details": [ + { + "@odata.type": "microsoft.graph.sharePointApiUsageDataPoint" + } + ] +} +``` diff --git a/api-reference/beta/resources/windowsupdates-azureaddevice.md b/api-reference/beta/resources/windowsupdates-azureaddevice.md index c3576444faf..2ddf6b309d2 100644 --- a/api-reference/beta/resources/windowsupdates-azureaddevice.md +++ b/api-reference/beta/resources/windowsupdates-azureaddevice.md @@ -17,6 +17,7 @@ Namespace: microsoft.graph.windowsUpdates Represents a device in Microsoft Entra ID that is registered with Windows Autopatch. A Microsoft Entra device is automatically created through one of the following methods: + * [updatableAsset: enrollAssets](../api/windowsupdates-updatableasset-enrollassets.md) * [updatableAsset: enrollAssetsById](../api/windowsupdates-updatableasset-enrollassetsbyid.md) * [deploymentAudience: updateAudience](../api/windowsupdates-deploymentaudience-updateaudience.md) @@ -27,6 +28,7 @@ A Microsoft Entra device is automatically created through one of the following m Inherits from [updatableAsset](../resources/windowsupdates-updatableasset.md). ## Methods + |Method|Return type|Description| |:---|:---|:---| |[List Microsoft Entra devices](../api/adminwindowsupdates-list-updatableassets-azureaddevice.md)|[microsoft.graph.windowsUpdates.azureADDevice](../resources/windowsupdates-azureaddevice.md) collection|Get a list of the [azureADDevice](../resources/windowsupdates-azureaddevice.md) objects and their properties.| @@ -38,16 +40,19 @@ Inherits from [updatableAsset](../resources/windowsupdates-updatableasset.md). |[Unenroll by ID](../api/windowsupdates-updatableasset-unenrollassetsbyid.md)|None|Unenroll [azureADDevice](../resources/windowsupdates-azureaddevice.md) resources of the same type from update management by Windows Autopatch.| ## Properties + |Property|Type|Description| |:---|:---|:---| -|enrollments|[microsoft.graph.windowsUpdates.updatableAssetEnrollment](../resources/windowsupdates-updatableassetenrollment.md) collection|Specifies areas in which the device is enrolled. Read-only. Returned by default.| -|errors|[microsoft.graph.windowsUpdates.updatableAssetError](../resources/windowsupdates-updatableasseterror.md) collection|Specifies any errors that prevent the device from being enrolled in update management or receving deployed content. Read-only. Returned by default.| +|enrollment|[microsoft.graph.windowsUpdates.updateManagementEnrollment](../resources/windowsupdates-updatemanagementenrollment.md)|Specifies the update management enrollment for the device. Read-only. Returned by default.| +|errors|[microsoft.graph.windowsUpdates.updatableAssetError](../resources/windowsupdates-updatableasseterror.md) collection|Specifies any errors that prevent the device from being enrolled in update management or receiving deployed content. Read-only. Returned by default.| |id|String|An identifier for the device. Key. Not nullable. Read-only. Returned by default. Inherited from [updatableAsset](../resources/windowsupdates-updatableasset.md)| ## Relationships + None. ## JSON representation + The following JSON representation shows the resource type. +``` json +{ + "@odata.type": "#microsoft.graph.windowsUpdates.updateCategoryEnrollmentInformation", + "enrollmentState": "String", + "lastModifiedDateTime": "String (timestamp)" +} +``` diff --git a/api-reference/beta/resources/windowsupdates-updatemanagementenrollment.md b/api-reference/beta/resources/windowsupdates-updatemanagementenrollment.md index 11fb604ff73..323ad52c6fc 100644 --- a/api-reference/beta/resources/windowsupdates-updatemanagementenrollment.md +++ b/api-reference/beta/resources/windowsupdates-updatemanagementenrollment.md @@ -1,6 +1,6 @@ --- title: "updateManagementEnrollment resource type" -description: "Represents enrollment into management by Windows Autopatch of a certain update category." +description: "Represents per-category enrollment information for Windows Updates across supported update categories." author: "andredm7" ms.localizationpriority: medium ms.subservice: windows-autopatch @@ -14,14 +14,15 @@ Namespace: microsoft.graph.windowsUpdates [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Represents enrollment into management by Windows Autopatch of a certain update category. +Represents per-category enrollment information for Windows Updates across supported update categories. Inherits from [updatableAssetEnrollment](../resources/windowsupdates-updatableassetenrollment.md). - ## Properties |Property|Type|Description| |:---|:---|:---| -|updateCategory|microsoft.graph.windowsUpdates.updateCategory|The category of updates that Windows Autopatch manages. Supports a subset of the values for **updateCategory**. The possible values are: `driver`, `feature`, `quality`, `unknownFutureValue`.| +|driver|[microsoft.graph.windowsUpdates.updateCategoryEnrollmentInformation](../resources/windowsupdates-updatecategoryenrollmentinformation.md)|Information about the enrollment state of the device in driver update management.| +|feature|[microsoft.graph.windowsUpdates.updateCategoryEnrollmentInformation](../resources/windowsupdates-updatecategoryenrollmentinformation.md)|Information about the enrollment state of the device in feature update management.| +|quality|[microsoft.graph.windowsUpdates.updateCategoryEnrollmentInformation](../resources/windowsupdates-updatecategoryenrollmentinformation.md)|Information about the enrollment state of the device in quality update management.| ## Relationships None. @@ -36,6 +37,14 @@ The following JSON representation shows the resource type. ``` json { "@odata.type": "#microsoft.graph.windowsUpdates.updateManagementEnrollment", - "updateCategory": "String" + "driver": { + "@odata.type": "microsoft.graph.windowsUpdates.updateCategoryEnrollmentInformation" + }, + "feature": { + "@odata.type": "microsoft.graph.windowsUpdates.updateCategoryEnrollmentInformation" + }, + "quality": { + "@odata.type": "microsoft.graph.windowsUpdates.updateCategoryEnrollmentInformation" + } } ``` diff --git a/api-reference/beta/toc/backup-and-recovery/toc.yml b/api-reference/beta/toc/backup-and-recovery/toc.yml index 9aa81420327..37777b9972d 100644 --- a/api-reference/beta/toc/backup-and-recovery/toc.yml +++ b/api-reference/beta/toc/backup-and-recovery/toc.yml @@ -502,6 +502,8 @@ items: href: ../../resources/restorepointsearchresponse.md - name: Restore point search result href: ../../resources/restorepointsearchresult.md + - name: Restore search artifact query expression + href: ../../resources/restoresearchartifactqueryexpression.md - name: Retention setting href: ../../resources/retentionsetting.md - name: Service status diff --git a/api-reference/beta/toc/device-and-app-management/toc.yml b/api-reference/beta/toc/device-and-app-management/toc.yml index 334c636823a..a1282128953 100644 --- a/api-reference/beta/toc/device-and-app-management/toc.yml +++ b/api-reference/beta/toc/device-and-app-management/toc.yml @@ -432,6 +432,8 @@ items: href: ../../api/cloudpcprovisioningpolicy-retrievepolicyapplyactionresult.md - name: Retrieve policy apply schedule href: ../../api/cloudpcprovisioningpolicy-retrievepolicyapplyschedule.md + - name: Retrieve policy update status result + href: ../../api/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult.md - name: Cloud PC report items: - name: Cloud PC report @@ -733,6 +735,8 @@ items: href: ../../resources/cloudpconpremisesconnectionsubnetIpdetail.md - name: Cloud PC partner agent install result href: ../../resources/cloudpcpartneragentinstallresult.md + - name: Cloud PC policy pending apply status result + href: ../../resources/cloudpcpolicypendingapplystatusresult.md - name: Cloud PC pool capability configuration href: ../../resources/cloudpcpoolcapabilityconfiguration.md - name: Cloud PC provisioning policy assignment @@ -8934,10 +8938,12 @@ items: href: ../../resources/windowsupdates-softwareupdatecatalogentry.md - name: Software update filter href: ../../resources/windowsupdates-softwareupdatefilter.md - - name: Updatable asset enrollment + - name: Updatable asset enrollment (deprecated) href: ../../resources/windowsupdates-updatableassetenrollment.md - name: Updatable asset error href: ../../resources/windowsupdates-updatableasseterror.md + - name: Update category enrollment information + href: ../../resources/windowsupdates-updatecategoryenrollmentinformation.md - name: Update management enrollment href: ../../resources/windowsupdates-updatemanagementenrollment.md - name: User experience settings diff --git a/api-reference/beta/toc/identity-and-access/toc.yml b/api-reference/beta/toc/identity-and-access/toc.yml index cbadf43ca0d..fdb9e43aac5 100644 --- a/api-reference/beta/toc/identity-and-access/toc.yml +++ b/api-reference/beta/toc/identity-and-access/toc.yml @@ -1377,8 +1377,12 @@ items: href: ../../resources/accesspackagetextinputquestion.md - name: Access package user directory attribute store href: ../../resources/accesspackageuserdirectoryattributestore.md - - name: Access review data upload trigger callback data - href: ../../resources/accessreviewdatauploadtriggercallbackdata.md + - name: Access review context data + href: ../../resources/customdataprovidedresourcepayloads-accessreviewcontextdata.md + - name: Access review context data base + href: ../../resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase.md + - name: Apply decision context data + href: ../../resources/customdataprovidedresourcepayloads-applydecisioncontextdata.md - name: Approval settings href: ../../resources/approvalsettings.md - name: Approval stage @@ -1387,6 +1391,8 @@ items: href: ../../resources/assignmentreviewsettings.md - name: Azure active directory tenant href: ../../resources/azureactivedirectorytenant.md + - name: Callout request + href: ../../resources/customdataprovidedresourcepayloads-calloutrequest.md - name: Connected organization members href: ../../resources/connectedorganizationmembers.md - name: Connection info @@ -1417,6 +1423,8 @@ items: href: ../../resources/customextensionhandlerinstance.md - name: Custom extension stage setting href: ../../resources/customextensionstagesetting.md + - name: Data + href: ../../resources/customdataprovidedresourcepayloads-data.md - name: Domain identity source href: ../../resources/domainidentitysource.md - name: Entitlement management diff --git a/api-reference/beta/toc/reports/toc.yml b/api-reference/beta/toc/reports/toc.yml index c0ca2c3631c..0f008efea1c 100644 --- a/api-reference/beta/toc/reports/toc.yml +++ b/api-reference/beta/toc/reports/toc.yml @@ -752,6 +752,10 @@ items: href: ../../api/reportroot-getsharepointsiteusagestorage.md - name: Get pages href: ../../api/reportroot-getsharepointsiteusagepages.md + - name: SharePoint API usage + items: + - name: Get SharePoint API usage + href: ../../api/reportroot-getsharepointapiusage.md - name: Skype for Business activity items: - name: Get user detail @@ -836,6 +840,10 @@ items: href: ../../resources/office365groupsactivitystorage.md - name: Office 365 services user counts href: ../../resources/office365servicesusercounts.md + - name: Share point API usage data point + href: ../../resources/sharepointapiusagedatapoint.md + - name: Share point API usage report + href: ../../resources/sharepointapiusagereport.md - name: Microsoft Defender for Office 365 security reports items: - name: Overview diff --git a/api-reference/beta/toc/security/toc.yml b/api-reference/beta/toc/security/toc.yml index e3bdfacb7b0..aa7e5e53d1b 100644 --- a/api-reference/beta/toc/security/toc.yml +++ b/api-reference/beta/toc/security/toc.yml @@ -14,6 +14,8 @@ items: href: ../../resources/security.md - name: Run hunting query href: ../../api/security-security-runhuntingquery.md + - name: Get hunting schema + href: ../../api/security-security-gethuntingschema.md - name: Hunting query results href: ../../resources/security-huntingqueryresults.md - name: Hunting row result diff --git a/api-reference/beta/toc/teamwork-and-communications/toc.yml b/api-reference/beta/toc/teamwork-and-communications/toc.yml index 67aff909836..445b8394856 100644 --- a/api-reference/beta/toc/teamwork-and-communications/toc.yml +++ b/api-reference/beta/toc/teamwork-and-communications/toc.yml @@ -620,6 +620,8 @@ items: href: ../../api/virtualappointment-sendvirtualappointmentsms.md - name: Complex types items: + - name: Cloud video interop info + href: ../../resources/cloudvideointeropinfo.md - name: Identity set href: ../../resources/identityset.md - name: Virtual events diff --git a/api-reference/beta/toc/toc.mapping.json b/api-reference/beta/toc/toc.mapping.json index 6aa64610749..5337aa5352b 100644 --- a/api-reference/beta/toc/toc.mapping.json +++ b/api-reference/beta/toc/toc.mapping.json @@ -306,9 +306,10 @@ "browseQueryResponseItem", "notificationRecipients", "protectionPolicyArtifactCount", + "retentionSetting", "restorePointSearchResponse", "restorePointSearchResult", - "retentionSetting", + "restoreSearchArtifactQueryExpression", "serviceStatus", "timePeriod" ] @@ -695,6 +696,7 @@ "cloudPcOnPremisesConnectionStatusDetails", "cloudPcOnPremisesConnectionSubnetIpDetail", "cloudPcPartnerAgentInstallResult", + "cloudPcPolicyPendingApplyStatusResult", "cloudPcPoolCapabilityConfiguration", "cloudPcProvisioningPolicyAssignment", "cloudPcProvisioningPolicyAutopatch", @@ -905,6 +907,7 @@ "microsoft.graph.windowsUpdates.softwareUpdateFilter", "microsoft.graph.windowsUpdates.updatableAssetEnrollment", "microsoft.graph.windowsUpdates.updatableAssetError", + "microsoft.graph.windowsUpdates.updateCategoryEnrollmentInformation", "microsoft.graph.windowsUpdates.updateManagementEnrollment", "microsoft.graph.windowsUpdates.userExperienceSettings", "microsoft.graph.windowsUpdates.windowsUpdateFilter" @@ -1464,6 +1467,7 @@ "accessPackageResourceRole", "accessPackageResource", "customDataProvidedResource", + "customDataProvidedResourceAccessReviewUploadSession", "accessPackageResourceEnvironment", "accessPackageResourceRequest", "accessPackageAssignmentRequestWorkflowExtension", @@ -1548,8 +1552,12 @@ "verifiedCredentialClaims", "verifiedCredentialData", "customDataProvidedResourceUploadSessionRequest", - "accessReviewDataUploadTriggerCallbackData", - "customDataProvidedResourceFile" + "customDataProvidedResourceFile", + "microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextData", + "microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextDataBase", + "microsoft.graph.customDataProvidedResourcePayloads.applyDecisionContextData", + "microsoft.graph.customDataProvidedResourcePayloads.calloutRequest", + "microsoft.graph.customDataProvidedResourcePayloads.data" ] }, { @@ -2787,6 +2795,13 @@ "correlationError", "identityInfo" ] + }, + { + "name": "Identity analytics (preview)", + "resources": [ + "groupAnalytics", + "identityAnalyticsRoot" + ] } ] }, @@ -2813,7 +2828,9 @@ "office365GroupsActivityFileCounts", "office365GroupsActivityGroupCounts", "office365GroupsActivityStorage", - "office365ServicesUserCounts" + "office365ServicesUserCounts", + "sharePointApiUsageDataPoint", + "sharePointApiUsageReport" ] }, { diff --git a/api-reference/v1.0/api/accesspackagesubject-get.md b/api-reference/v1.0/api/accesspackagesubject-get.md new file mode 100644 index 00000000000..df9ce6655cd --- /dev/null +++ b/api-reference/v1.0/api/accesspackagesubject-get.md @@ -0,0 +1,91 @@ +--- +title: "Get accessPackageSubject" +description: "Get the properties of an accessPackageSubject object." +author: "markwahl-msft" +ms.localizationpriority: medium +ms.subservice: "entra-id-governance" +doc_type: apiPageType +ms.date: 06/11/2026 +--- + +# Get accessPackageSubject + +Namespace: microsoft.graph + +Get the properties of an external directory user represented by an existing [accessPackageSubject](../resources/accesspackagesubject.md) object. + +[!INCLUDE [national-cloud-support](../../includes/global-us.md)] + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/accesspackagesubject-get-permissions.md)] + +[!INCLUDE [rbac-entitlement-catalog-reader](../includes/rbac-for-apis/rbac-entitlement-management-catalog-reader-apis-read.md)] + +## HTTP request + +```http +GET /identityGovernance/entitlementManagement/subjects(objectId='{objectIdOfExternalDirectoryUser}') +``` + +## Request headers + +| Name |Description| +|:----------|:----------| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and the requested [accessPackageSubject](../resources/accesspackagesubject.md) object in the response body. + +## Examples + +### Request + + +```msgraph-interactive +GET https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/subjects(objectId='{objectIdOfExternalDirectoryUser}') +``` + +### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#identityGovernance/entitlementManagement/subjects/$entity", + "id": "120fd4a0-95a7-49d2-9389-ed6f3c025c74", + "objectId": "a382de66-b7bb-4c30-82b7-306c6ae6a4ae", + "displayName": "Accessibility Test", + "principalName": "accessibility@contoso.com", + "email": "accessibility@contoso.com", + "onPremisesSecurityIdentifier": null, + "subjectType": "user", + "subjectLifecycle": "governed" +} +``` diff --git a/api-reference/v1.0/api/accesspackagesubject-update.md b/api-reference/v1.0/api/accesspackagesubject-update.md new file mode 100644 index 00000000000..b6839d0143f --- /dev/null +++ b/api-reference/v1.0/api/accesspackagesubject-update.md @@ -0,0 +1,83 @@ +--- +title: "Update accessPackageSubject" +description: "Update the properties of an accessPackageSubject object." +author: "markwahl-msft" +ms.localizationpriority: medium +ms.subservice: "entra-id-governance" +doc_type: apiPageType +ms.date: 06/11/2026 +--- + +# Update accessPackageSubject + +Namespace: microsoft.graph + +Update an external directory user represented by an existing [accessPackageSubject](../resources/accesspackagesubject.md) object to change the subject lifecycle. + +[!INCLUDE [national-cloud-support](../../includes/global-us.md)] + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/accesspackagesubject-update-permissions.md)] + +[!INCLUDE [rbac-entitlement-catalog-owner-write](../includes/rbac-for-apis/rbac-entitlement-management-catalog-owner-apis-write.md)] + +## HTTP request + +```http +PATCH /identityGovernance/entitlementManagement/subjects(objectId='{objectIdOfExternalDirectoryUser}') +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| +|Content-Type|application/json. Required.| + +## Request body + +[!INCLUDE [table-intro](../../includes/update-property-table-intro.md)] + +|Property|Type|Description| +|:---|:---|:---| +|subjectLifecycle|accessPackageSubjectLifecycle|The lifecycle of the subject user, if a guest. The possible values are: `notDefined`, `notGoverned`, `governed`.| + +## Response + +If successful, this method returns a `204 No Content` response code. + +## Examples + +### Request + + +```http +PATCH https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/subjects(objectId='{objectIdOfExternalDirectoryUser}') +Content-Type: application/json + +{ + "subjectLifecycle":"governed" +} +``` + +### Response + + +```http +HTTP/1.1 204 No Content +``` diff --git a/api-reference/v1.0/api/security-analyzedemail-get.md b/api-reference/v1.0/api/security-analyzedemail-get.md new file mode 100644 index 00000000000..c6de5622a45 --- /dev/null +++ b/api-reference/v1.0/api/security-analyzedemail-get.md @@ -0,0 +1,259 @@ +--- +title: "Get analyzedEmail" +description: "Read the properties and relationships of an analyzedEmail object." +author: "malvika-balaraj" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: apiPageType +ms.date: 05/27/2026 +--- + +# Get analyzedEmail + +Namespace: microsoft.graph.security + + +Read the properties and relationships of an [analyzedEmail](../resources/security-analyzedemail.md) object. + + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/security-analyzedemail-get-permissions.md)] + +## HTTP request + + +```http +GET /security/collaboration/analyzedEmails/{analyzedEmailId} +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a [microsoft.graph.security.analyzedEmail](../resources/security-analyzedemail.md) object in the response body. + +## Examples + +### Example 1: Get an analyzedEmail + +#### Request + + + +```msgraph-interactive +GET https://graph.microsoft.com/v1.0/security/collaboration/analyzedEmails/{analyzedEmailId} +``` + + +#### Response + +The following example shows the response. +>**Note:** The response object shown here might be shortened for readability. + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.type": "#microsoft.graph.security.analyzedEmail", + "id": "String", + "loggedDateTime": "Datetime", + "networkMessageId": "String", + "internetMessageId": "String", + "senderDetail": { + "@odata.type": "microsoft.graph.security.analyzedEmailSenderDetail" + }, + "recipientEmailAddress": "String", + "distributionList": "String", + "subject": "String", + "returnPath": "String", + "directionality": "microsoft.graph.security.antispamDirectionality", + "originalDelivery": { + "@odata.type": "microsoft.graph.security.analyzedEmailDeliveryDetail" + }, + "latestDelivery": { + "@odata.type": "microsoft.graph.security.analyzedEmailDeliveryDetail" + }, + "attachments": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailAttachment" + } + ], + "urls": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailUrl" + } + ], + "language": "String", + "sizeInBytes": "Integer", + "alertIds": [ + "String" + ], + "exchangeTransportRules": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailExchangeTransportRuleInfo" + } + ], + "overrideSources": [ + "String" + ], + "threatTypes": [ + "microsoft.graph.security.threatType" + ], + "detectionMethods": [ + "String" + ], + "contexts": [ + "String" + ], + "authenticationDetails": { + "@odata.type": "microsoft.graph.security.analyzedEmailAuthenticationDetail" + }, + "phishConfidenceLevel": "String", + "spamConfidenceLevel": "String", + "bulkComplaintLevel": "String", + "emailClusterId": "String", + "policyAction": "String", + "policy": "String", + "timelineEvents": [ + { + "@odata.type": "microsoft.graph.security.timelineEvent" + } + ], + "threatDetectionDetails": [ + { + "@odata.type": "microsoft.graph.security.threatDetectionDetail" + } + ], + "primaryOverrideSource": "String", + "inboundConnectorFormattedName": "String", + "policyType": "String", + "clientType": "String", + "dlpRules": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailDlpRuleInfo" + } + ], + "forwardingDetail": "String", + "recipientDetail": { + "@odata.type": "microsoft.graph.security.analyzedEmailRecipientDetail" + } +} +``` + +### Example 2: Get the URLs from an analyzedEmail + +#### Request + + +```msgraph-interactive +GET https://graph.microsoft.com/v1.0/security/collaboration/analyzedEmails/{analyzedEmailId}/urls +``` + + +#### Response + +The following example shows the response. +>**Note:** The response object shown here might be shortened for readability. + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value": [ + { + "@odata.type": "#microsoft.graph.security.analyzedEmailUrl", + "url": "String", + "threatType": "String", + "detectionMethod": "String", + "tenantAllowBlockListDetailInfo": "String", + "detonationDetails": { + "@odata.type": "microsoft.graph.security.detonationDetails" + } + } + ] +} +``` + +### Example 3: Get the attachments of an analyzedEmail + +#### Request + + +```msgraph-interactive +GET https://graph.microsoft.com/v1.0/security/collaboration/analyzedEmails/{analyzedEmailId}/attachments +``` +### Response + +The following example shows the response. +>**Note:** The response object shown here might be shortened for readability. + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value": [ + { + "@odata.type": "#microsoft.graph.security.analyzedEmailAttachment", + "fileName": "String", + "fileType": "String", + "fileSize": "Integer", + "fileExtension": "String", + "threatType": "String", + "malwareFamily": "String", + "tenantAllowBlockListDetailInfo": "String", + "sha256": "String", + "detonationDetails": { + "@odata.type": "microsoft.graph.security.detonationDetails" + } + } + ] +} +``` diff --git a/api-reference/v1.0/api/security-analyzedemail-remediate.md b/api-reference/v1.0/api/security-analyzedemail-remediate.md new file mode 100644 index 00000000000..ae3077d4b6b --- /dev/null +++ b/api-reference/v1.0/api/security-analyzedemail-remediate.md @@ -0,0 +1,114 @@ +--- +title: "analyzedEmail: remediate " +description: "Remove a potential threat from end users' mailboxes." +author: MishraSoumyaMS +ms.localizationpriority: medium +ms.subservice: security +doc_type: apiPageType +ms.date: 05/27/2026 +--- + +# analyzedEmail: remediate + +Namespace: microsoft.graph.security + + +Remove a potential threat from end users' mailboxes. + +Remediation means to take prescribed action against a threat. This API can trigger email purge actions like move to junk, move to deleted items, soft delete, hard delete, or move to Inbox. This API enables scenarios and use cases such as SOAR integration, playbooks, and automations. For more information read [email remediation, trigger action and track actions](/microsoft-365/security/office-365-security/remediate-malicious-email-delivered-office-365?view=o365-worldwide&preserve-view=true). If there is false positives admins can take move to inbox action. + + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/security-analyzedemail-remediate-permissions.md)] + +## HTTP request + + +```http +POST /security/collaboration/analyzedEmails/remediate +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| +|Content-Type|application/json. Required.| + +## Request body + +In the request body, supply a JSON representation of the parameters. + +The following table lists the parameters that are required when you call this action. + +|Parameter|Type|Description| +|:---|:---|:---| +|displayName|String| The name of the remediation that is used as a reference in the action center. | +|description|String| The description of the remediation. | +|severity|microsoft.graph.security.remediationSeverity| The severity of the remediation. The possible values are: `low`, `medium`, `high`, `unknownFutureValue`.| +|action|microsoft.graph.security.remediationAction|The types of move and delete actions that are supported. The possible values are: `moveToJunk`, `moveToInbox`, `hardDelete`, `softDelete`, `moveToDeletedItems`, `unknownFutureValue`, `moveToQuarantine`. Use the `Prefer: include-unknown-enum-members` request header to get the following members from this [evolvable enum](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations): `moveToQuarantine`. | +|remediateSendersCopy|Boolean| For internal or outbound email, indicates whether to remediate the sender's copy of an email. | +|analyzedEmails|[microsoft.graph.security.analyzedEmail](../resources/security-analyzedemail.md) collection| Contains the **networkMessageId** and **recipientEmailAddress** values of the analyzed emails. | + +## Response + +If successful, this action returns a `202 Accepted` response code and a `Location` header with a link to the tracking information. + +>**Note:** The response to the action can be tracked in https://security.microsoft.com/action-center/history. To learn more, see [Use the Action center](/microsoft-365/security/defender/m365d-action-center?view=o365-worldwide&preserve-view=true). + +## Examples + +### Request + +The following example shows a request. + +```http +POST https://graph.microsoft.com/v1.0/security/collaboration/analyzedEmails/remediate +Content-Type: application/json + +{ + "displayName": "Clean up Phish email", + "description": "Delete email", + "severity": "medium", + "action": "softDelete", + "remediateSendersCopy": "false", + "analyzedEmails": [ + { + "networkMessageId": "73ca4154-58d8-43d0-a890-08dc18c52e6d", + "recipientEmailAddress": "hannah.jarvis@contoso.com" + }, + { + "networkMessageId": "73ca4154-58d8-43d0-a890-08dc18c52e6d", + "recipientEmailAddress": "preston.morales@contoso.com" + } + ] +} +``` + + +### Response + +The following example shows the response. +>**Note:** The response object shown here might be shortened for readability. + +```http +HTTP/1.1 202 Accepted +Location: https://security.microsoft.com/action-center/history?filters={"bulkId":["{bulkId}"]}&tid={tid} +Content-Type: application/json;text/plain +Content-Length: 0 +``` diff --git a/api-reference/v1.0/api/security-collaborationroot-list-analyzedemails.md b/api-reference/v1.0/api/security-collaborationroot-list-analyzedemails.md new file mode 100644 index 00000000000..4df7a62bd10 --- /dev/null +++ b/api-reference/v1.0/api/security-collaborationroot-list-analyzedemails.md @@ -0,0 +1,192 @@ +--- +title: "List analyzedEmails " +description: "Get a list of analyzedEmail objects and their properties." +author: "ajaj-shaikh" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: apiPageType +ms.date: 05/27/2026 +--- + +# List analyzedEmails + +Namespace: microsoft.graph.security + + +Get a list of [analyzedEmail](../resources/security-analyzedemail.md) objects and their properties. + +This API allows Security Operations teams to have direct access to hunt (query) for threats, IOCs, attack vectors, and evidences for a tenant. It is a powerful, near real-time tool to help Security Operations teams investigate and respond to threats. It consists of email metadata, verdict information, related underlying entities (attachments/URL), filters, and more. + + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/security-collaborationroot-list-analyzedemails-permissions.md)] + +## HTTP request + + +```http +GET /security/collaboration/analyzedEmails +``` + +## Query parameters + +In the request URL, you can optionally provide the following query parameters with values to narrow the search window. + +|Parameter|Type|Description| +|:---|:---|:---| +|startTime|DateTime|Optional. The start time of the email search.| +|endTime|DateTime|Optional. The end time of the email search.| + +### OData query parameters + +This method supports the following OData query parameters to help customize the response: `$count`, `$filter`, `$skiptoken`, `$top`. For general information, see [OData query parameters](/graph/query-parameters). + +The following example shows how to use the `$filter` parameter to customize the response. + +```http +GET /security/collaboration/analyzedEmails?startTime=2024-02-18&endTime=2024-02-20&$filter=networkMessageId eq 'bde1f764-bbf4-5673-fbba-0asdhsgfhf1' +GET /security/collaboration/analyzedEmails?startTime=2024-02-18&endTime=2024-02-20&$filter=networkMessageId eq 'bde1f764-bbf4-5673-fbba-0asdhsgfhf1' and recipientEmailAddress eq 'tomas.richardson@contoso.com' +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a collection of [microsoft.graph.security.analyzedEmail](../resources/security-analyzedemail.md) objects in the response body. + +## Examples + +### Request + +The following example shows a request. + +```http +GET https://graph.microsoft.com/v1.0/security/collaboration/analyzedEmails?startTime=2024-02-18&endTime=2024-02-20 +``` + +### Response + +The following example shows the response. +>**Note:** The response object shown here might be shortened for readability. + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value": [ + { + "@odata.type": "#microsoft.graph.security.analyzedEmail", + "id": "String", + "loggedDateTime": "Datetime", + "networkMessageId": "String", + "internetMessageId": "String", + "senderDetail": { + "@odata.type": "microsoft.graph.security.analyzedEmailSenderDetail" + }, + "recipientEmailAddress": "String", + "distributionList": "String", + "subject": "String", + "returnPath": "String", + "directionality": "microsoft.graph.security.antispamDirectionality", + "originalDelivery": { + "@odata.type": "microsoft.graph.security.analyzedEmailDeliveryDetail" + }, + "latestDelivery": { + "@odata.type": "microsoft.graph.security.analyzedEmailDeliveryDetail" + }, + "attachments": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailAttachment" + } + ], + "urls": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailUrl" + } + ], + "language": "String", + "sizeInBytes": "Integer", + "alertIds": [ + "String" + ], + "exchangeTransportRules": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailExchangeTransportRuleInfo" + } + ], + "overrideSources": [ + "String" + ], + "threatTypes": [ + "microsoft.graph.security.threatType" + ], + "detectionMethods": [ + "String" + ], + "contexts": [ + "String" + ], + "authenticationDetails": { + "@odata.type": "microsoft.graph.security.analyzedEmailAuthenticationDetail" + }, + "phishConfidenceLevel": "String", + "spamConfidenceLevel": "String", + "bulkComplaintLevel": "String", + "emailClusterId": "String", + "policyAction": "String", + "policy": "String", + "timelineEvents": [ + { + "@odata.type": "microsoft.graph.security.timelineEvent" + } + ], + "threatDetectionDetails": [ + { + "@odata.type": "microsoft.graph.security.threatDetectionDetail" + } + ], + "primaryOverrideSource": "String", + "inboundConnectorFormattedName": "String", + "policyType": "String", + "clientType": "String", + "dlpRules": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailDlpRuleInfo" + } + ], + "forwardingDetail": "String", + "recipientDetail": { + "@odata.type": "microsoft.graph.security.analyzedEmailRecipientDetail" + } + } + ] +} +``` diff --git a/api-reference/v1.0/api/sharepointgroup-list-members.md b/api-reference/v1.0/api/sharepointgroup-list-members.md index 84174ba43d9..976d47d441a 100644 --- a/api-reference/v1.0/api/sharepointgroup-list-members.md +++ b/api-reference/v1.0/api/sharepointgroup-list-members.md @@ -145,8 +145,5 @@ Content-Type: application/json "description": "List members", "keywords": "", "section": "documentation", - "tocPath": "", - "suppressions": [ - "Error: /api/sharepointgroup-list-members.md: Failed to parse enumeration values for type microsoft.graph.list. Table requires a column header named one of the following: Member, Name, Value" - ] + "tocPath": "" }--> diff --git a/api-reference/v1.0/includes/permissions/accesspackage-filterbycurrentuser-permissions.md b/api-reference/v1.0/includes/permissions/accesspackage-filterbycurrentuser-permissions.md index f0e3cbfe177..d22738396a4 100644 --- a/api-reference/v1.0/includes/permissions/accesspackage-filterbycurrentuser-permissions.md +++ b/api-reference/v1.0/includes/permissions/accesspackage-filterbycurrentuser-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|Not supported.|Not supported.| diff --git a/api-reference/v1.0/includes/permissions/accesspackage-getapplicablepolicyrequirements-permissions.md b/api-reference/v1.0/includes/permissions/accesspackage-getapplicablepolicyrequirements-permissions.md index f0e3cbfe177..d22738396a4 100644 --- a/api-reference/v1.0/includes/permissions/accesspackage-getapplicablepolicyrequirements-permissions.md +++ b/api-reference/v1.0/includes/permissions/accesspackage-getapplicablepolicyrequirements-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|Not supported.|Not supported.| diff --git a/api-reference/v1.0/includes/permissions/accesspackageassignment-filterbycurrentuser-permissions.md b/api-reference/v1.0/includes/permissions/accesspackageassignment-filterbycurrentuser-permissions.md index f0e3cbfe177..d22738396a4 100644 --- a/api-reference/v1.0/includes/permissions/accesspackageassignment-filterbycurrentuser-permissions.md +++ b/api-reference/v1.0/includes/permissions/accesspackageassignment-filterbycurrentuser-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|Not supported.|Not supported.| diff --git a/api-reference/v1.0/includes/permissions/accesspackageassignmentrequest-cancel-permissions.md b/api-reference/v1.0/includes/permissions/accesspackageassignmentrequest-cancel-permissions.md index 6a67754258a..6a68941027d 100644 --- a/api-reference/v1.0/includes/permissions/accesspackageassignmentrequest-cancel-permissions.md +++ b/api-reference/v1.0/includes/permissions/accesspackageassignmentrequest-cancel-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.ReadWrite.All|Not available.| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|Not supported.|Not supported.| diff --git a/api-reference/v1.0/includes/permissions/accesspackageassignmentrequest-filterbycurrentuser-permissions.md b/api-reference/v1.0/includes/permissions/accesspackageassignmentrequest-filterbycurrentuser-permissions.md index f0e3cbfe177..d22738396a4 100644 --- a/api-reference/v1.0/includes/permissions/accesspackageassignmentrequest-filterbycurrentuser-permissions.md +++ b/api-reference/v1.0/includes/permissions/accesspackageassignmentrequest-filterbycurrentuser-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|Not supported.|Not supported.| diff --git a/api-reference/v1.0/includes/permissions/accesspackagesubject-get-permissions.md b/api-reference/v1.0/includes/permissions/accesspackagesubject-get-permissions.md new file mode 100644 index 00000000000..08570fd0ab9 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/accesspackagesubject-get-permissions.md @@ -0,0 +1,5 @@ +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|EntitlementManagement.ReadWrite.All|Not available.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|EntitlementManagement.ReadWrite.All|Not available.| \ No newline at end of file diff --git a/api-reference/v1.0/includes/permissions/accesspackagesubject-update-permissions.md b/api-reference/v1.0/includes/permissions/accesspackagesubject-update-permissions.md new file mode 100644 index 00000000000..08570fd0ab9 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/accesspackagesubject-update-permissions.md @@ -0,0 +1,5 @@ +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|EntitlementManagement.ReadWrite.All|Not available.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|EntitlementManagement.ReadWrite.All|Not available.| \ No newline at end of file diff --git a/api-reference/v1.0/includes/permissions/entitlementmanagement-post-assignmentrequests-permissions.md b/api-reference/v1.0/includes/permissions/entitlementmanagement-post-assignmentrequests-permissions.md index 606bd07c2fb..98fc3d9ed71 100644 --- a/api-reference/v1.0/includes/permissions/entitlementmanagement-post-assignmentrequests-permissions.md +++ b/api-reference/v1.0/includes/permissions/entitlementmanagement-post-assignmentrequests-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.ReadWrite.All|Not available.| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|EntitlementManagement.ReadWrite.All|Not available.| diff --git a/api-reference/beta/includes/permissions/security-detectionrule-list-permissions.md b/api-reference/v1.0/includes/permissions/security-analyzedemail-get-permissions.md similarity index 63% rename from api-reference/beta/includes/permissions/security-detectionrule-list-permissions.md rename to api-reference/v1.0/includes/permissions/security-analyzedemail-get-permissions.md index 7e882632185..9232a8e04dc 100644 --- a/api-reference/beta/includes/permissions/security-detectionrule-list-permissions.md +++ b/api-reference/v1.0/includes/permissions/security-analyzedemail-get-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|CustomDetection.Read.All|CustomDetection.ReadWrite.All| +|Delegated (work or school account)|Not supported.|Not supported.| |Delegated (personal Microsoft account)|Not supported.|Not supported.| -|Application|CustomDetection.Read.All|CustomDetection.ReadWrite.All| +|Application|SecurityAnalyzedMessage.Read.All|SecurityAnalyzedMessage.ReadWrite.All| diff --git a/api-reference/beta/includes/permissions/security-detectionrule-post-detectionrules-permissions.md b/api-reference/v1.0/includes/permissions/security-analyzedemail-remediate-permissions.md similarity index 66% rename from api-reference/beta/includes/permissions/security-detectionrule-post-detectionrules-permissions.md rename to api-reference/v1.0/includes/permissions/security-analyzedemail-remediate-permissions.md index 9a1a69542be..e2d0caf161d 100644 --- a/api-reference/beta/includes/permissions/security-detectionrule-post-detectionrules-permissions.md +++ b/api-reference/v1.0/includes/permissions/security-analyzedemail-remediate-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|CustomDetection.ReadWrite.All|Not available.| +|Delegated (work or school account)|Not supported.|Not supported.| |Delegated (personal Microsoft account)|Not supported.|Not supported.| -|Application|CustomDetection.ReadWrite.All|Not available.| +|Application|SecurityAnalyzedMessage.ReadWrite.All|Not available.| diff --git a/api-reference/v1.0/includes/permissions/security-collaborationroot-list-analyzedemails-permissions.md b/api-reference/v1.0/includes/permissions/security-collaborationroot-list-analyzedemails-permissions.md new file mode 100644 index 00000000000..9232a8e04dc --- /dev/null +++ b/api-reference/v1.0/includes/permissions/security-collaborationroot-list-analyzedemails-permissions.md @@ -0,0 +1,12 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|Not supported.|Not supported.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|SecurityAnalyzedMessage.Read.All|SecurityAnalyzedMessage.ReadWrite.All| + diff --git a/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-csharp-snippets.md b/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-csharp-snippets.md new file mode 100644 index 00000000000..212be3ed206 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-csharp-snippets.md @@ -0,0 +1,38 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```csharp + +// Code snippets are only available for the latest version. Current version is 5.x + +// Dependencies +using Microsoft.Graph.Models; + +var requestBody = new AccessPackageResourceRequest +{ + RequestType = AccessPackageRequestType.AdminAdd, + Resource = new AccessPackageResource + { + DisplayName = "test-mgmtgroup", + Description = "test-mgmtgroup", + OriginId = "/providers/Microsoft.Management/managementGroups/test-mgmtgroup", + OriginSystem = "AzureResources", + AdditionalData = new Dictionary + { + { + "resourceType" , "ManagementGroup" + }, + }, + }, + Catalog = new AccessPackageCatalog + { + Id = "e8368470-afaf-44da-ba86-13a7318f1995", + }, +}; + +// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=csharp +var result = await graphClient.IdentityGovernance.EntitlementManagement.ResourceRequests.PostAsync(requestBody); + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-csharp-snippets.md b/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-csharp-snippets.md new file mode 100644 index 00000000000..d86ce7e8d3f --- /dev/null +++ b/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-csharp-snippets.md @@ -0,0 +1,38 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```csharp + +// Code snippets are only available for the latest version. Current version is 5.x + +// Dependencies +using Microsoft.Graph.Models; + +var requestBody = new AccessPackageResourceRequest +{ + RequestType = AccessPackageRequestType.AdminAdd, + Resource = new AccessPackageResource + { + DisplayName = "Dev", + Description = "Dev", + OriginId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978", + OriginSystem = "AzureResources", + AdditionalData = new Dictionary + { + { + "resourceType" , "Subscription" + }, + }, + }, + Catalog = new AccessPackageCatalog + { + Id = "e8368470-afaf-44da-ba86-13a7318f1995", + }, +}; + +// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=csharp +var result = await graphClient.IdentityGovernance.EntitlementManagement.ResourceRequests.PostAsync(requestBody); + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerolescope-from-accesspackage-subscription-csharp-snippets.md b/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerolescope-from-accesspackage-subscription-csharp-snippets.md new file mode 100644 index 00000000000..1fed55af6d3 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerolescope-from-accesspackage-subscription-csharp-snippets.md @@ -0,0 +1,56 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```csharp + +// Code snippets are only available for the latest version. Current version is 5.x + +// Dependencies +using Microsoft.Graph.Models; + +var requestBody = new AccessPackageResourceRoleScope +{ + Role = new AccessPackageResourceRole + { + OriginId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475", + DisplayName = "Access Review Operator Service Role", + Description = "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.", + Resource = new AccessPackageResource + { + Id = "b09a0288-a83e-4ae6-8a53-bc09aeb966ea", + Description = "Dev", + DisplayName = "Dev", + OriginId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978", + OriginSystem = "AzureResources", + AdditionalData = new Dictionary + { + { + "resourceType" , "Subscription" + }, + }, + }, + OriginSystem = "AzureResources", + AdditionalData = new Dictionary + { + { + "type" , "active" + }, + }, + }, + Scope = new AccessPackageResourceScope + { + Id = "e1e0ec8c-472d-4ec5-a8f9-29e0bc275640", + Description = "/resourceGroups/rg", + DisplayName = "/resourceGroups/rg", + IsRootScope = false, + OriginSystem = "AzureResources", + OriginId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/resourceGroups/rg", + }, +}; + +// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=csharp +var result = await graphClient.IdentityGovernance.EntitlementManagement.AccessPackages["{accessPackage-id}"].ResourceRoleScopes.PostAsync(requestBody); + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-csharp-snippets.md b/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-csharp-snippets.md new file mode 100644 index 00000000000..9f1ecb282ba --- /dev/null +++ b/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-csharp-snippets.md @@ -0,0 +1,56 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```csharp + +// Code snippets are only available for the latest version. Current version is 5.x + +// Dependencies +using Microsoft.Graph.Models; + +var requestBody = new AccessPackageResourceRoleScope +{ + Role = new AccessPackageResourceRole + { + OriginId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475", + DisplayName = "Access Review Operator Service Role", + Description = "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.", + Resource = new AccessPackageResource + { + Id = "b09a0288-a83e-4ae6-8a53-bc09aeb966ea", + Description = "Dev", + DisplayName = "Dev", + OriginId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978", + OriginSystem = "AzureResources", + AdditionalData = new Dictionary + { + { + "resourceType" , "Subscription" + }, + }, + }, + OriginSystem = "AzureResources", + AdditionalData = new Dictionary + { + { + "type" , "active" + }, + }, + }, + Scope = new AccessPackageResourceScope + { + Id = "c66c1e22-1093-46fb-a8a8-c0e334113ca4", + Description = "Root", + DisplayName = "Root", + IsRootScope = true, + OriginSystem = "AzureResources", + OriginId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978", + }, +}; + +// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=csharp +var result = await graphClient.IdentityGovernance.EntitlementManagement.AccessPackages["{accessPackage-id}"].ResourceRoleScopes.PostAsync(requestBody); + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-csharp-snippets.md b/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-csharp-snippets.md new file mode 100644 index 00000000000..ed79bfbebf0 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-csharp-snippets.md @@ -0,0 +1,57 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```csharp + +// Code snippets are only available for the latest version. Current version is 5.x + +// Dependencies +using Microsoft.Graph.Models; + +var requestBody = new AccessPackageResourceRoleScope +{ + Role = new AccessPackageResourceRole + { + Id = "055c76c1-a466-4f1a-9279-4a2ccaa7ac3e", + OriginId = "/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475", + DisplayName = "Access Review Operator Service Role", + Description = "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.", + Resource = new AccessPackageResource + { + Id = "c347ca9b-a9cc-4df9-bc3c-00c8e0297692", + Description = "test-mgmtgroup", + DisplayName = "test-mgmtgroup", + OriginId = "/providers/Microsoft.Management/managementGroups/test-mgmtgroup", + OriginSystem = "AzureResources", + AdditionalData = new Dictionary + { + { + "resourceType" , "ManagementGroup" + }, + }, + }, + OriginSystem = "AzureResources", + AdditionalData = new Dictionary + { + { + "type" , "eligible" + }, + }, + }, + Scope = new AccessPackageResourceScope + { + Id = "338613b3-b410-4c6d-b5e9-45590bc8a357", + DisplayName = "Root", + Description = "Root Scope", + IsRootScope = true, + OriginId = "/providers/Microsoft.Management/managementGroups/test-mgmtgroup", + OriginSystem = "AzureResources", + }, +}; + +// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=csharp +var result = await graphClient.IdentityGovernance.EntitlementManagement.AccessPackages["{accessPackage-id}"].ResourceRoleScopes.PostAsync(requestBody); + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-go-snippets.md b/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-go-snippets.md new file mode 100644 index 00000000000..680c20791f8 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-go-snippets.md @@ -0,0 +1,44 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```go + + +// Code snippets are only available for the latest major version. Current major version is $v1.* + +// Dependencies +import ( + "context" + msgraphsdk "github.com/microsoftgraph/msgraph-sdk-go" + graphmodels "github.com/microsoftgraph/msgraph-sdk-go/models" + //other-imports +) + +requestBody := graphmodels.NewAccessPackageResourceRequest() +requestType := graphmodels.ADMINADD_ACCESSPACKAGEREQUESTTYPE +requestBody.SetRequestType(&requestType) +resource := graphmodels.NewAccessPackageResource() +displayName := "test-mgmtgroup" +resource.SetDisplayName(&displayName) +description := "test-mgmtgroup" +resource.SetDescription(&description) +originId := "/providers/Microsoft.Management/managementGroups/test-mgmtgroup" +resource.SetOriginId(&originId) +originSystem := "AzureResources" +resource.SetOriginSystem(&originSystem) +additionalData := map[string]interface{}{ + "resourceType" : "ManagementGroup", +} +resource.SetAdditionalData(additionalData) +requestBody.SetResource(resource) +catalog := graphmodels.NewAccessPackageCatalog() +id := "e8368470-afaf-44da-ba86-13a7318f1995" +catalog.SetId(&id) +requestBody.SetCatalog(catalog) + +// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=go +resourceRequests, err := graphClient.IdentityGovernance().EntitlementManagement().ResourceRequests().Post(context.Background(), requestBody, nil) + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-go-snippets.md b/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-go-snippets.md new file mode 100644 index 00000000000..f0422a039a2 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-go-snippets.md @@ -0,0 +1,44 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```go + + +// Code snippets are only available for the latest major version. Current major version is $v1.* + +// Dependencies +import ( + "context" + msgraphsdk "github.com/microsoftgraph/msgraph-sdk-go" + graphmodels "github.com/microsoftgraph/msgraph-sdk-go/models" + //other-imports +) + +requestBody := graphmodels.NewAccessPackageResourceRequest() +requestType := graphmodels.ADMINADD_ACCESSPACKAGEREQUESTTYPE +requestBody.SetRequestType(&requestType) +resource := graphmodels.NewAccessPackageResource() +displayName := "Dev" +resource.SetDisplayName(&displayName) +description := "Dev" +resource.SetDescription(&description) +originId := "/subscriptions/828b526f-c769-4b19-9797-734b4843b978" +resource.SetOriginId(&originId) +originSystem := "AzureResources" +resource.SetOriginSystem(&originSystem) +additionalData := map[string]interface{}{ + "resourceType" : "Subscription", +} +resource.SetAdditionalData(additionalData) +requestBody.SetResource(resource) +catalog := graphmodels.NewAccessPackageCatalog() +id := "e8368470-afaf-44da-ba86-13a7318f1995" +catalog.SetId(&id) +requestBody.SetCatalog(catalog) + +// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=go +resourceRequests, err := graphClient.IdentityGovernance().EntitlementManagement().ResourceRequests().Post(context.Background(), requestBody, nil) + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerolescope-from-accesspackage-subscription-go-snippets.md b/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerolescope-from-accesspackage-subscription-go-snippets.md new file mode 100644 index 00000000000..3733a42edbd --- /dev/null +++ b/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerolescope-from-accesspackage-subscription-go-snippets.md @@ -0,0 +1,68 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```go + + +// Code snippets are only available for the latest major version. Current major version is $v1.* + +// Dependencies +import ( + "context" + msgraphsdk "github.com/microsoftgraph/msgraph-sdk-go" + graphmodels "github.com/microsoftgraph/msgraph-sdk-go/models" + //other-imports +) + +requestBody := graphmodels.NewAccessPackageResourceRoleScope() +role := graphmodels.NewAccessPackageResourceRole() +originId := "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475" +role.SetOriginId(&originId) +displayName := "Access Review Operator Service Role" +role.SetDisplayName(&displayName) +description := "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process." +role.SetDescription(&description) +resource := graphmodels.NewAccessPackageResource() +id := "b09a0288-a83e-4ae6-8a53-bc09aeb966ea" +resource.SetId(&id) +description := "Dev" +resource.SetDescription(&description) +displayName := "Dev" +resource.SetDisplayName(&displayName) +originId := "/subscriptions/828b526f-c769-4b19-9797-734b4843b978" +resource.SetOriginId(&originId) +originSystem := "AzureResources" +resource.SetOriginSystem(&originSystem) +additionalData := map[string]interface{}{ + "resourceType" : "Subscription", +} +resource.SetAdditionalData(additionalData) +role.SetResource(resource) +originSystem := "AzureResources" +role.SetOriginSystem(&originSystem) +additionalData := map[string]interface{}{ + "type" : "active", +} +role.SetAdditionalData(additionalData) +requestBody.SetRole(role) +scope := graphmodels.NewAccessPackageResourceScope() +id := "e1e0ec8c-472d-4ec5-a8f9-29e0bc275640" +scope.SetId(&id) +description := "/resourceGroups/rg" +scope.SetDescription(&description) +displayName := "/resourceGroups/rg" +scope.SetDisplayName(&displayName) +isRootScope := false +scope.SetIsRootScope(&isRootScope) +originSystem := "AzureResources" +scope.SetOriginSystem(&originSystem) +originId := "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/resourceGroups/rg" +scope.SetOriginId(&originId) +requestBody.SetScope(scope) + +// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=go +resourceRoleScopes, err := graphClient.IdentityGovernance().EntitlementManagement().AccessPackages().ByAccessPackageId("accessPackage-id").ResourceRoleScopes().Post(context.Background(), requestBody, nil) + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-go-snippets.md b/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-go-snippets.md new file mode 100644 index 00000000000..0ab935047b4 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-go-snippets.md @@ -0,0 +1,68 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```go + + +// Code snippets are only available for the latest major version. Current major version is $v1.* + +// Dependencies +import ( + "context" + msgraphsdk "github.com/microsoftgraph/msgraph-sdk-go" + graphmodels "github.com/microsoftgraph/msgraph-sdk-go/models" + //other-imports +) + +requestBody := graphmodels.NewAccessPackageResourceRoleScope() +role := graphmodels.NewAccessPackageResourceRole() +originId := "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475" +role.SetOriginId(&originId) +displayName := "Access Review Operator Service Role" +role.SetDisplayName(&displayName) +description := "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process." +role.SetDescription(&description) +resource := graphmodels.NewAccessPackageResource() +id := "b09a0288-a83e-4ae6-8a53-bc09aeb966ea" +resource.SetId(&id) +description := "Dev" +resource.SetDescription(&description) +displayName := "Dev" +resource.SetDisplayName(&displayName) +originId := "/subscriptions/828b526f-c769-4b19-9797-734b4843b978" +resource.SetOriginId(&originId) +originSystem := "AzureResources" +resource.SetOriginSystem(&originSystem) +additionalData := map[string]interface{}{ + "resourceType" : "Subscription", +} +resource.SetAdditionalData(additionalData) +role.SetResource(resource) +originSystem := "AzureResources" +role.SetOriginSystem(&originSystem) +additionalData := map[string]interface{}{ + "type" : "active", +} +role.SetAdditionalData(additionalData) +requestBody.SetRole(role) +scope := graphmodels.NewAccessPackageResourceScope() +id := "c66c1e22-1093-46fb-a8a8-c0e334113ca4" +scope.SetId(&id) +description := "Root" +scope.SetDescription(&description) +displayName := "Root" +scope.SetDisplayName(&displayName) +isRootScope := true +scope.SetIsRootScope(&isRootScope) +originSystem := "AzureResources" +scope.SetOriginSystem(&originSystem) +originId := "/subscriptions/828b526f-c769-4b19-9797-734b4843b978" +scope.SetOriginId(&originId) +requestBody.SetScope(scope) + +// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=go +resourceRoleScopes, err := graphClient.IdentityGovernance().EntitlementManagement().AccessPackages().ByAccessPackageId("accessPackage-id").ResourceRoleScopes().Post(context.Background(), requestBody, nil) + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-go-snippets.md b/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-go-snippets.md new file mode 100644 index 00000000000..9cc1aa38862 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-go-snippets.md @@ -0,0 +1,70 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```go + + +// Code snippets are only available for the latest major version. Current major version is $v1.* + +// Dependencies +import ( + "context" + msgraphsdk "github.com/microsoftgraph/msgraph-sdk-go" + graphmodels "github.com/microsoftgraph/msgraph-sdk-go/models" + //other-imports +) + +requestBody := graphmodels.NewAccessPackageResourceRoleScope() +role := graphmodels.NewAccessPackageResourceRole() +id := "055c76c1-a466-4f1a-9279-4a2ccaa7ac3e" +role.SetId(&id) +originId := "/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475" +role.SetOriginId(&originId) +displayName := "Access Review Operator Service Role" +role.SetDisplayName(&displayName) +description := "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process." +role.SetDescription(&description) +resource := graphmodels.NewAccessPackageResource() +id := "c347ca9b-a9cc-4df9-bc3c-00c8e0297692" +resource.SetId(&id) +description := "test-mgmtgroup" +resource.SetDescription(&description) +displayName := "test-mgmtgroup" +resource.SetDisplayName(&displayName) +originId := "/providers/Microsoft.Management/managementGroups/test-mgmtgroup" +resource.SetOriginId(&originId) +originSystem := "AzureResources" +resource.SetOriginSystem(&originSystem) +additionalData := map[string]interface{}{ + "resourceType" : "ManagementGroup", +} +resource.SetAdditionalData(additionalData) +role.SetResource(resource) +originSystem := "AzureResources" +role.SetOriginSystem(&originSystem) +additionalData := map[string]interface{}{ + "type" : "eligible", +} +role.SetAdditionalData(additionalData) +requestBody.SetRole(role) +scope := graphmodels.NewAccessPackageResourceScope() +id := "338613b3-b410-4c6d-b5e9-45590bc8a357" +scope.SetId(&id) +displayName := "Root" +scope.SetDisplayName(&displayName) +description := "Root Scope" +scope.SetDescription(&description) +isRootScope := true +scope.SetIsRootScope(&isRootScope) +originId := "/providers/Microsoft.Management/managementGroups/test-mgmtgroup" +scope.SetOriginId(&originId) +originSystem := "AzureResources" +scope.SetOriginSystem(&originSystem) +requestBody.SetScope(scope) + +// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=go +resourceRoleScopes, err := graphClient.IdentityGovernance().EntitlementManagement().AccessPackages().ByAccessPackageId("accessPackage-id").ResourceRoleScopes().Post(context.Background(), requestBody, nil) + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-java-snippets.md b/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-java-snippets.md new file mode 100644 index 00000000000..23e56da60e7 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-java-snippets.md @@ -0,0 +1,28 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```java + +// Code snippets are only available for the latest version. Current version is 6.x + +GraphServiceClient graphClient = new GraphServiceClient(requestAdapter); + +AccessPackageResourceRequest accessPackageResourceRequest = new AccessPackageResourceRequest(); +accessPackageResourceRequest.setRequestType(AccessPackageRequestType.AdminAdd); +AccessPackageResource resource = new AccessPackageResource(); +resource.setDisplayName("test-mgmtgroup"); +resource.setDescription("test-mgmtgroup"); +resource.setOriginId("/providers/Microsoft.Management/managementGroups/test-mgmtgroup"); +resource.setOriginSystem("AzureResources"); +HashMap additionalData = new HashMap(); +additionalData.put("resourceType", "ManagementGroup"); +resource.setAdditionalData(additionalData); +accessPackageResourceRequest.setResource(resource); +AccessPackageCatalog catalog = new AccessPackageCatalog(); +catalog.setId("e8368470-afaf-44da-ba86-13a7318f1995"); +accessPackageResourceRequest.setCatalog(catalog); +AccessPackageResourceRequest result = graphClient.identityGovernance().entitlementManagement().resourceRequests().post(accessPackageResourceRequest); + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-java-snippets.md b/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-java-snippets.md new file mode 100644 index 00000000000..71c17cf40ae --- /dev/null +++ b/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-java-snippets.md @@ -0,0 +1,28 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```java + +// Code snippets are only available for the latest version. Current version is 6.x + +GraphServiceClient graphClient = new GraphServiceClient(requestAdapter); + +AccessPackageResourceRequest accessPackageResourceRequest = new AccessPackageResourceRequest(); +accessPackageResourceRequest.setRequestType(AccessPackageRequestType.AdminAdd); +AccessPackageResource resource = new AccessPackageResource(); +resource.setDisplayName("Dev"); +resource.setDescription("Dev"); +resource.setOriginId("/subscriptions/828b526f-c769-4b19-9797-734b4843b978"); +resource.setOriginSystem("AzureResources"); +HashMap additionalData = new HashMap(); +additionalData.put("resourceType", "Subscription"); +resource.setAdditionalData(additionalData); +accessPackageResourceRequest.setResource(resource); +AccessPackageCatalog catalog = new AccessPackageCatalog(); +catalog.setId("e8368470-afaf-44da-ba86-13a7318f1995"); +accessPackageResourceRequest.setCatalog(catalog); +AccessPackageResourceRequest result = graphClient.identityGovernance().entitlementManagement().resourceRequests().post(accessPackageResourceRequest); + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerolescope-from-accesspackage-subscription-java-snippets.md b/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerolescope-from-accesspackage-subscription-java-snippets.md new file mode 100644 index 00000000000..fd3289e0c33 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerolescope-from-accesspackage-subscription-java-snippets.md @@ -0,0 +1,42 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```java + +// Code snippets are only available for the latest version. Current version is 6.x + +GraphServiceClient graphClient = new GraphServiceClient(requestAdapter); + +AccessPackageResourceRoleScope accessPackageResourceRoleScope = new AccessPackageResourceRoleScope(); +AccessPackageResourceRole role = new AccessPackageResourceRole(); +role.setOriginId("/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475"); +role.setDisplayName("Access Review Operator Service Role"); +role.setDescription("Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process."); +AccessPackageResource resource = new AccessPackageResource(); +resource.setId("b09a0288-a83e-4ae6-8a53-bc09aeb966ea"); +resource.setDescription("Dev"); +resource.setDisplayName("Dev"); +resource.setOriginId("/subscriptions/828b526f-c769-4b19-9797-734b4843b978"); +resource.setOriginSystem("AzureResources"); +HashMap additionalData = new HashMap(); +additionalData.put("resourceType", "Subscription"); +resource.setAdditionalData(additionalData); +role.setResource(resource); +role.setOriginSystem("AzureResources"); +HashMap additionalData1 = new HashMap(); +additionalData1.put("type", "active"); +role.setAdditionalData(additionalData1); +accessPackageResourceRoleScope.setRole(role); +AccessPackageResourceScope scope = new AccessPackageResourceScope(); +scope.setId("e1e0ec8c-472d-4ec5-a8f9-29e0bc275640"); +scope.setDescription("/resourceGroups/rg"); +scope.setDisplayName("/resourceGroups/rg"); +scope.setIsRootScope(false); +scope.setOriginSystem("AzureResources"); +scope.setOriginId("/subscriptions/828b526f-c769-4b19-9797-734b4843b978/resourceGroups/rg"); +accessPackageResourceRoleScope.setScope(scope); +AccessPackageResourceRoleScope result = graphClient.identityGovernance().entitlementManagement().accessPackages().byAccessPackageId("{accessPackage-id}").resourceRoleScopes().post(accessPackageResourceRoleScope); + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-java-snippets.md b/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-java-snippets.md new file mode 100644 index 00000000000..a964cce8920 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-java-snippets.md @@ -0,0 +1,42 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```java + +// Code snippets are only available for the latest version. Current version is 6.x + +GraphServiceClient graphClient = new GraphServiceClient(requestAdapter); + +AccessPackageResourceRoleScope accessPackageResourceRoleScope = new AccessPackageResourceRoleScope(); +AccessPackageResourceRole role = new AccessPackageResourceRole(); +role.setOriginId("/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475"); +role.setDisplayName("Access Review Operator Service Role"); +role.setDescription("Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process."); +AccessPackageResource resource = new AccessPackageResource(); +resource.setId("b09a0288-a83e-4ae6-8a53-bc09aeb966ea"); +resource.setDescription("Dev"); +resource.setDisplayName("Dev"); +resource.setOriginId("/subscriptions/828b526f-c769-4b19-9797-734b4843b978"); +resource.setOriginSystem("AzureResources"); +HashMap additionalData = new HashMap(); +additionalData.put("resourceType", "Subscription"); +resource.setAdditionalData(additionalData); +role.setResource(resource); +role.setOriginSystem("AzureResources"); +HashMap additionalData1 = new HashMap(); +additionalData1.put("type", "active"); +role.setAdditionalData(additionalData1); +accessPackageResourceRoleScope.setRole(role); +AccessPackageResourceScope scope = new AccessPackageResourceScope(); +scope.setId("c66c1e22-1093-46fb-a8a8-c0e334113ca4"); +scope.setDescription("Root"); +scope.setDisplayName("Root"); +scope.setIsRootScope(true); +scope.setOriginSystem("AzureResources"); +scope.setOriginId("/subscriptions/828b526f-c769-4b19-9797-734b4843b978"); +accessPackageResourceRoleScope.setScope(scope); +AccessPackageResourceRoleScope result = graphClient.identityGovernance().entitlementManagement().accessPackages().byAccessPackageId("{accessPackage-id}").resourceRoleScopes().post(accessPackageResourceRoleScope); + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-java-snippets.md b/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-java-snippets.md new file mode 100644 index 00000000000..b7be5afe8ac --- /dev/null +++ b/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-java-snippets.md @@ -0,0 +1,43 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```java + +// Code snippets are only available for the latest version. Current version is 6.x + +GraphServiceClient graphClient = new GraphServiceClient(requestAdapter); + +AccessPackageResourceRoleScope accessPackageResourceRoleScope = new AccessPackageResourceRoleScope(); +AccessPackageResourceRole role = new AccessPackageResourceRole(); +role.setId("055c76c1-a466-4f1a-9279-4a2ccaa7ac3e"); +role.setOriginId("/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475"); +role.setDisplayName("Access Review Operator Service Role"); +role.setDescription("Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process."); +AccessPackageResource resource = new AccessPackageResource(); +resource.setId("c347ca9b-a9cc-4df9-bc3c-00c8e0297692"); +resource.setDescription("test-mgmtgroup"); +resource.setDisplayName("test-mgmtgroup"); +resource.setOriginId("/providers/Microsoft.Management/managementGroups/test-mgmtgroup"); +resource.setOriginSystem("AzureResources"); +HashMap additionalData = new HashMap(); +additionalData.put("resourceType", "ManagementGroup"); +resource.setAdditionalData(additionalData); +role.setResource(resource); +role.setOriginSystem("AzureResources"); +HashMap additionalData1 = new HashMap(); +additionalData1.put("type", "eligible"); +role.setAdditionalData(additionalData1); +accessPackageResourceRoleScope.setRole(role); +AccessPackageResourceScope scope = new AccessPackageResourceScope(); +scope.setId("338613b3-b410-4c6d-b5e9-45590bc8a357"); +scope.setDisplayName("Root"); +scope.setDescription("Root Scope"); +scope.setIsRootScope(true); +scope.setOriginId("/providers/Microsoft.Management/managementGroups/test-mgmtgroup"); +scope.setOriginSystem("AzureResources"); +accessPackageResourceRoleScope.setScope(scope); +AccessPackageResourceRoleScope result = graphClient.identityGovernance().entitlementManagement().accessPackages().byAccessPackageId("{accessPackage-id}").resourceRoleScopes().post(accessPackageResourceRoleScope); + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-javascript-snippets.md b/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-javascript-snippets.md new file mode 100644 index 00000000000..7194b1563a5 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-javascript-snippets.md @@ -0,0 +1,30 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```javascript + +const options = { + authProvider, +}; + +const client = Client.init(options); + +const accessPackageResourceRequest = { + requestType: 'adminAdd', + resource: { + displayName: 'test-mgmtgroup', + description: 'test-mgmtgroup', + resourceType: 'ManagementGroup', + originId: '/providers/Microsoft.Management/managementGroups/test-mgmtgroup', + originSystem: 'AzureResources' + }, + catalog: { + id: 'e8368470-afaf-44da-ba86-13a7318f1995' + } +}; + +await client.api('/identityGovernance/entitlementManagement/resourceRequests') + .post(accessPackageResourceRequest); + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-javascript-snippets.md b/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-javascript-snippets.md new file mode 100644 index 00000000000..bfadc00a55d --- /dev/null +++ b/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-javascript-snippets.md @@ -0,0 +1,30 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```javascript + +const options = { + authProvider, +}; + +const client = Client.init(options); + +const accessPackageResourceRequest = { + requestType: 'adminAdd', + resource: { + displayName: 'Dev', + description: 'Dev', + resourceType: 'Subscription', + originId: '/subscriptions/828b526f-c769-4b19-9797-734b4843b978', + originSystem: 'AzureResources' + }, + catalog: { + id: 'e8368470-afaf-44da-ba86-13a7318f1995' + } +}; + +await client.api('/identityGovernance/entitlementManagement/resourceRequests') + .post(accessPackageResourceRequest); + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerolescope-from-accesspackage-subscription-javascript-snippets.md b/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerolescope-from-accesspackage-subscription-javascript-snippets.md new file mode 100644 index 00000000000..59ea63dbd2b --- /dev/null +++ b/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerolescope-from-accesspackage-subscription-javascript-snippets.md @@ -0,0 +1,42 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```javascript + +const options = { + authProvider, +}; + +const client = Client.init(options); + +const accessPackageResourceRoleScope = { + role: { + originId: '/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475', + displayName: 'Access Review Operator Service Role', + description: 'Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.', + resource: { + id: 'b09a0288-a83e-4ae6-8a53-bc09aeb966ea', + description: 'Dev', + displayName: 'Dev', + resourceType: 'Subscription', + originId: '/subscriptions/828b526f-c769-4b19-9797-734b4843b978', + originSystem: 'AzureResources' + }, + originSystem: 'AzureResources', + type: 'active' + }, + scope: { + id: 'e1e0ec8c-472d-4ec5-a8f9-29e0bc275640', + description: '/resourceGroups/rg', + displayName: '/resourceGroups/rg', + isRootScope: false, + originSystem: 'AzureResources', + originId: '/subscriptions/828b526f-c769-4b19-9797-734b4843b978/resourceGroups/rg' + } +}; + +await client.api('/identityGovernance/entitlementManagement/accessPackages/5f7f4c7d-b3f5-4988-a17b-3f09b6f5a9ee/resourceRoleScopes') + .post(accessPackageResourceRoleScope); + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-javascript-snippets.md b/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-javascript-snippets.md new file mode 100644 index 00000000000..6f9a597ccb5 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-javascript-snippets.md @@ -0,0 +1,42 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```javascript + +const options = { + authProvider, +}; + +const client = Client.init(options); + +const accessPackageResourceRoleScope = { + role: { + originId: '/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475', + displayName: 'Access Review Operator Service Role', + description: 'Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.', + resource: { + id: 'b09a0288-a83e-4ae6-8a53-bc09aeb966ea', + description: 'Dev', + displayName: 'Dev', + resourceType: 'Subscription', + originId: '/subscriptions/828b526f-c769-4b19-9797-734b4843b978', + originSystem: 'AzureResources' + }, + originSystem: 'AzureResources', + type: 'active' + }, + scope: { + id: 'c66c1e22-1093-46fb-a8a8-c0e334113ca4', + description: 'Root', + displayName: 'Root', + isRootScope: true, + originSystem: 'AzureResources', + originId: '/subscriptions/828b526f-c769-4b19-9797-734b4843b978' + } +}; + +await client.api('/identityGovernance/entitlementManagement/accessPackages/5f7f4c7d-b3f5-4988-a17b-3f09b6f5a9ee/resourceRoleScopes') + .post(accessPackageResourceRoleScope); + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-javascript-snippets.md b/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-javascript-snippets.md new file mode 100644 index 00000000000..770e42935ac --- /dev/null +++ b/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-javascript-snippets.md @@ -0,0 +1,43 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```javascript + +const options = { + authProvider, +}; + +const client = Client.init(options); + +const accessPackageResourceRoleScope = { + role: { + id: '055c76c1-a466-4f1a-9279-4a2ccaa7ac3e', + originId: '/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475', + displayName: 'Access Review Operator Service Role', + description: 'Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.', + resource: { + id: 'c347ca9b-a9cc-4df9-bc3c-00c8e0297692', + description: 'test-mgmtgroup', + displayName: 'test-mgmtgroup', + resourceType: 'ManagementGroup', + originId: '/providers/Microsoft.Management/managementGroups/test-mgmtgroup', + originSystem: 'AzureResources' + }, + originSystem: 'AzureResources', + type: 'eligible' + }, + scope: { + id: '338613b3-b410-4c6d-b5e9-45590bc8a357', + displayName: 'Root', + description: 'Root Scope', + isRootScope: true, + originId: '/providers/Microsoft.Management/managementGroups/test-mgmtgroup', + originSystem: 'AzureResources' + } +}; + +await client.api('/identityGovernance/entitlementManagement/accessPackages/5f7f4c7d-b3f5-4988-a17b-3f09b6f5a9ee/resourceRoleScopes') + .post(accessPackageResourceRoleScope); + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/javascript/post-chatmessage-5-javascript-snippets.md b/api-reference/v1.0/includes/snippets/javascript/post-chatmessage-5-javascript-snippets.md index cbda614862d..5956a348a90 100644 --- a/api-reference/v1.0/includes/snippets/javascript/post-chatmessage-5-javascript-snippets.md +++ b/api-reference/v1.0/includes/snippets/javascript/post-chatmessage-5-javascript-snippets.md @@ -11,17 +11,17 @@ const options = { const client = Client.init(options); const chatMessage = { - body: { - contentType: 'html', - content: 'Testing with file share link. ' - }, - attachments: [ - { - id: '668f7fa8-8129-4de7-b32b-fe1b442e6ef1', - contentType: 'reference', - contentUrl: 'https://teamsgraph-my.sharepoint.com/:w:/g/personal/test_teamsgraph_onmicrosoft_com/Eah_j2YpgedNsyv-G0QubvEBma6Sd_76UtYkXwoJ-nYVEg?e=0H2Ibm' - } - ] + body: { + contentType: 'html', + content: 'Testing with file share link. ' + }, + attachments: [ + { + id: '668f7fa8-8129-4de7-b32b-fe1b442e6ef1', + contentType: 'reference', + contentUrl: 'https://teamsgraph-my.sharepoint.com/:w:/g/personal/test_teamsgraph_onmicrosoft_com/Eah_j2YpgedNsyv-G0QubvEBma6Sd_76UtYkXwoJ-nYVEg?e=0H2Ibm' + } + ] }; await client.api('/teams/1e769eab-06a8-4b2e-ac42-1f040a4e52a1/channels/19:e28d1f9b354f4de88d2e9e4d8b983763@thread.tacv2/messages') diff --git a/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-php-snippets.md b/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-php-snippets.md new file mode 100644 index 00000000000..bd9171d1dc6 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-php-snippets.md @@ -0,0 +1,35 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```php + +setRequestType(new AccessPackageRequestType('adminAdd')); +$resource = new AccessPackageResource(); +$resource->setDisplayName('test-mgmtgroup'); +$resource->setDescription('test-mgmtgroup'); +$resource->setOriginId('/providers/Microsoft.Management/managementGroups/test-mgmtgroup'); +$resource->setOriginSystem('AzureResources'); +$additionalData = [ + 'resourceType' => 'ManagementGroup', +]; +$resource->setAdditionalData($additionalData); +$requestBody->setResource($resource); +$catalog = new AccessPackageCatalog(); +$catalog->setId('e8368470-afaf-44da-ba86-13a7318f1995'); +$requestBody->setCatalog($catalog); + +$result = $graphServiceClient->identityGovernance()->entitlementManagement()->resourceRequests()->post($requestBody)->wait(); + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-php-snippets.md b/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-php-snippets.md new file mode 100644 index 00000000000..181803ab6c6 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-php-snippets.md @@ -0,0 +1,35 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```php + +setRequestType(new AccessPackageRequestType('adminAdd')); +$resource = new AccessPackageResource(); +$resource->setDisplayName('Dev'); +$resource->setDescription('Dev'); +$resource->setOriginId('/subscriptions/828b526f-c769-4b19-9797-734b4843b978'); +$resource->setOriginSystem('AzureResources'); +$additionalData = [ + 'resourceType' => 'Subscription', +]; +$resource->setAdditionalData($additionalData); +$requestBody->setResource($resource); +$catalog = new AccessPackageCatalog(); +$catalog->setId('e8368470-afaf-44da-ba86-13a7318f1995'); +$requestBody->setCatalog($catalog); + +$result = $graphServiceClient->identityGovernance()->entitlementManagement()->resourceRequests()->post($requestBody)->wait(); + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-php-snippets.md b/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-php-snippets.md new file mode 100644 index 00000000000..dbdf30637c3 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-php-snippets.md @@ -0,0 +1,50 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```php + +setOriginId('/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475'); +$role->setDisplayName('Access Review Operator Service Role'); +$role->setDescription('Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.'); +$roleResource = new AccessPackageResource(); +$roleResource->setId('b09a0288-a83e-4ae6-8a53-bc09aeb966ea'); +$roleResource->setDescription('Dev'); +$roleResource->setDisplayName('Dev'); +$roleResource->setOriginId('/subscriptions/828b526f-c769-4b19-9797-734b4843b978'); +$roleResource->setOriginSystem('AzureResources'); +$additionalData = [ + 'resourceType' => 'Subscription', +]; +$roleResource->setAdditionalData($additionalData); +$role->setResource($roleResource); +$role->setOriginSystem('AzureResources'); +$additionalData = [ + 'type' => 'active', +]; +$role->setAdditionalData($additionalData); +$requestBody->setRole($role); +$scope = new AccessPackageResourceScope(); +$scope->setId('c66c1e22-1093-46fb-a8a8-c0e334113ca4'); +$scope->setDescription('Root'); +$scope->setDisplayName('Root'); +$scope->setIsRootScope(true); +$scope->setOriginSystem('AzureResources'); +$scope->setOriginId('/subscriptions/828b526f-c769-4b19-9797-734b4843b978'); +$requestBody->setScope($scope); + +$result = $graphServiceClient->identityGovernance()->entitlementManagement()->accessPackages()->byAccessPackageId('accessPackage-id')->resourceRoleScopes()->post($requestBody)->wait(); + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-php-snippets.md b/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-php-snippets.md new file mode 100644 index 00000000000..f72cc7c8a24 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-php-snippets.md @@ -0,0 +1,51 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```php + +setId('055c76c1-a466-4f1a-9279-4a2ccaa7ac3e'); +$role->setOriginId('/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475'); +$role->setDisplayName('Access Review Operator Service Role'); +$role->setDescription('Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.'); +$roleResource = new AccessPackageResource(); +$roleResource->setId('c347ca9b-a9cc-4df9-bc3c-00c8e0297692'); +$roleResource->setDescription('test-mgmtgroup'); +$roleResource->setDisplayName('test-mgmtgroup'); +$roleResource->setOriginId('/providers/Microsoft.Management/managementGroups/test-mgmtgroup'); +$roleResource->setOriginSystem('AzureResources'); +$additionalData = [ + 'resourceType' => 'ManagementGroup', +]; +$roleResource->setAdditionalData($additionalData); +$role->setResource($roleResource); +$role->setOriginSystem('AzureResources'); +$additionalData = [ + 'type' => 'eligible', +]; +$role->setAdditionalData($additionalData); +$requestBody->setRole($role); +$scope = new AccessPackageResourceScope(); +$scope->setId('338613b3-b410-4c6d-b5e9-45590bc8a357'); +$scope->setDisplayName('Root'); +$scope->setDescription('Root Scope'); +$scope->setIsRootScope(true); +$scope->setOriginId('/providers/Microsoft.Management/managementGroups/test-mgmtgroup'); +$scope->setOriginSystem('AzureResources'); +$requestBody->setScope($scope); + +$result = $graphServiceClient->identityGovernance()->entitlementManagement()->accessPackages()->byAccessPackageId('accessPackage-id')->resourceRoleScopes()->post($requestBody)->wait(); + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerolescope-from-accesspackage-subscription-php-snippets.md b/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerolescope-from-accesspackage-subscription-php-snippets.md new file mode 100644 index 00000000000..4f18e9ddc3f --- /dev/null +++ b/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerolescope-from-accesspackage-subscription-php-snippets.md @@ -0,0 +1,50 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```php + +setOriginId('/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475'); +$role->setDisplayName('Access Review Operator Service Role'); +$role->setDescription('Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.'); +$roleResource = new AccessPackageResource(); +$roleResource->setId('b09a0288-a83e-4ae6-8a53-bc09aeb966ea'); +$roleResource->setDescription('Dev'); +$roleResource->setDisplayName('Dev'); +$roleResource->setOriginId('/subscriptions/828b526f-c769-4b19-9797-734b4843b978'); +$roleResource->setOriginSystem('AzureResources'); +$additionalData = [ + 'resourceType' => 'Subscription', +]; +$roleResource->setAdditionalData($additionalData); +$role->setResource($roleResource); +$role->setOriginSystem('AzureResources'); +$additionalData = [ + 'type' => 'active', +]; +$role->setAdditionalData($additionalData); +$requestBody->setRole($role); +$scope = new AccessPackageResourceScope(); +$scope->setId('e1e0ec8c-472d-4ec5-a8f9-29e0bc275640'); +$scope->setDescription('/resourceGroups/rg'); +$scope->setDisplayName('/resourceGroups/rg'); +$scope->setIsRootScope(false); +$scope->setOriginSystem('AzureResources'); +$scope->setOriginId('/subscriptions/828b526f-c769-4b19-9797-734b4843b978/resourceGroups/rg'); +$requestBody->setScope($scope); + +$result = $graphServiceClient->identityGovernance()->entitlementManagement()->accessPackages()->byAccessPackageId('accessPackage-id')->resourceRoleScopes()->post($requestBody)->wait(); + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-powershell-snippets.md b/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-powershell-snippets.md new file mode 100644 index 00000000000..269e4f5852a --- /dev/null +++ b/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-powershell-snippets.md @@ -0,0 +1,25 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```powershell + +Import-Module Microsoft.Graph.Identity.Governance + +$params = @{ + requestType = "adminAdd" + resource = @{ + displayName = "test-mgmtgroup" + description = "test-mgmtgroup" + resourceType = "ManagementGroup" + originId = "/providers/Microsoft.Management/managementGroups/test-mgmtgroup" + originSystem = "AzureResources" + } + catalog = @{ + id = "e8368470-afaf-44da-ba86-13a7318f1995" + } +} + +New-MgEntitlementManagementResourceRequest -BodyParameter $params + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-powershell-snippets.md b/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-powershell-snippets.md new file mode 100644 index 00000000000..4b7b162509d --- /dev/null +++ b/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-powershell-snippets.md @@ -0,0 +1,25 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```powershell + +Import-Module Microsoft.Graph.Identity.Governance + +$params = @{ + requestType = "adminAdd" + resource = @{ + displayName = "Dev" + description = "Dev" + resourceType = "Subscription" + originId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978" + originSystem = "AzureResources" + } + catalog = @{ + id = "e8368470-afaf-44da-ba86-13a7318f1995" + } +} + +New-MgEntitlementManagementResourceRequest -BodyParameter $params + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-powershell-snippets.md b/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-powershell-snippets.md new file mode 100644 index 00000000000..a375c93d03f --- /dev/null +++ b/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-powershell-snippets.md @@ -0,0 +1,37 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```powershell + +Import-Module Microsoft.Graph.Identity.Governance + +$params = @{ + role = @{ + originId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475" + displayName = "Access Review Operator Service Role" + description = "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process." + resource = @{ + id = "b09a0288-a83e-4ae6-8a53-bc09aeb966ea" + description = "Dev" + displayName = "Dev" + resourceType = "Subscription" + originId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978" + originSystem = "AzureResources" + } + originSystem = "AzureResources" + type = "active" + } + scope = @{ + id = "c66c1e22-1093-46fb-a8a8-c0e334113ca4" + description = "Root" + displayName = "Root" + isRootScope = $true + originSystem = "AzureResources" + originId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978" + } +} + +New-MgEntitlementManagementAccessPackageResourceRoleScope -AccessPackageId $accessPackageId -BodyParameter $params + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-powershell-snippets.md b/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-powershell-snippets.md new file mode 100644 index 00000000000..07fe7ca4381 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-powershell-snippets.md @@ -0,0 +1,38 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```powershell + +Import-Module Microsoft.Graph.Identity.Governance + +$params = @{ + role = @{ + id = "055c76c1-a466-4f1a-9279-4a2ccaa7ac3e" + originId = "/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475" + displayName = "Access Review Operator Service Role" + description = "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process." + resource = @{ + id = "c347ca9b-a9cc-4df9-bc3c-00c8e0297692" + description = "test-mgmtgroup" + displayName = "test-mgmtgroup" + resourceType = "ManagementGroup" + originId = "/providers/Microsoft.Management/managementGroups/test-mgmtgroup" + originSystem = "AzureResources" + } + originSystem = "AzureResources" + type = "eligible" + } + scope = @{ + id = "338613b3-b410-4c6d-b5e9-45590bc8a357" + displayName = "Root" + description = "Root Scope" + isRootScope = $true + originId = "/providers/Microsoft.Management/managementGroups/test-mgmtgroup" + originSystem = "AzureResources" + } +} + +New-MgEntitlementManagementAccessPackageResourceRoleScope -AccessPackageId $accessPackageId -BodyParameter $params + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerolescope-from-accesspackage-subscription-powershell-snippets.md b/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerolescope-from-accesspackage-subscription-powershell-snippets.md new file mode 100644 index 00000000000..a40da50fa1a --- /dev/null +++ b/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerolescope-from-accesspackage-subscription-powershell-snippets.md @@ -0,0 +1,37 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```powershell + +Import-Module Microsoft.Graph.Identity.Governance + +$params = @{ + role = @{ + originId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475" + displayName = "Access Review Operator Service Role" + description = "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process." + resource = @{ + id = "b09a0288-a83e-4ae6-8a53-bc09aeb966ea" + description = "Dev" + displayName = "Dev" + resourceType = "Subscription" + originId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978" + originSystem = "AzureResources" + } + originSystem = "AzureResources" + type = "active" + } + scope = @{ + id = "e1e0ec8c-472d-4ec5-a8f9-29e0bc275640" + description = "/resourceGroups/rg" + displayName = "/resourceGroups/rg" + isRootScope = $false + originSystem = "AzureResources" + originId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/resourceGroups/rg" + } +} + +New-MgEntitlementManagementAccessPackageResourceRoleScope -AccessPackageId $accessPackageId -BodyParameter $params + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-python-snippets.md b/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-python-snippets.md new file mode 100644 index 00000000000..7f5504fc3b7 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-python-snippets.md @@ -0,0 +1,33 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```python + +# Code snippets are only available for the latest version. Current version is 1.x +from msgraph import GraphServiceClient +from msgraph.generated.models.access_package_resource_request import AccessPackageResourceRequest +from msgraph.generated.models.access_package_request_type import AccessPackageRequestType +from msgraph.generated.models.access_package_resource import AccessPackageResource +from msgraph.generated.models.access_package_catalog import AccessPackageCatalog +# To initialize your graph_client, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=python +request_body = AccessPackageResourceRequest( + request_type = AccessPackageRequestType.AdminAdd, + resource = AccessPackageResource( + display_name = "test-mgmtgroup", + description = "test-mgmtgroup", + origin_id = "/providers/Microsoft.Management/managementGroups/test-mgmtgroup", + origin_system = "AzureResources", + additional_data = { + "resource_type" : "ManagementGroup", + } + ), + catalog = AccessPackageCatalog( + id = "e8368470-afaf-44da-ba86-13a7318f1995", + ), +) + +result = await graph_client.identity_governance.entitlement_management.resource_requests.post(request_body) + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-python-snippets.md b/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-python-snippets.md new file mode 100644 index 00000000000..d44a77643fc --- /dev/null +++ b/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-python-snippets.md @@ -0,0 +1,33 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```python + +# Code snippets are only available for the latest version. Current version is 1.x +from msgraph import GraphServiceClient +from msgraph.generated.models.access_package_resource_request import AccessPackageResourceRequest +from msgraph.generated.models.access_package_request_type import AccessPackageRequestType +from msgraph.generated.models.access_package_resource import AccessPackageResource +from msgraph.generated.models.access_package_catalog import AccessPackageCatalog +# To initialize your graph_client, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=python +request_body = AccessPackageResourceRequest( + request_type = AccessPackageRequestType.AdminAdd, + resource = AccessPackageResource( + display_name = "Dev", + description = "Dev", + origin_id = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978", + origin_system = "AzureResources", + additional_data = { + "resource_type" : "Subscription", + } + ), + catalog = AccessPackageCatalog( + id = "e8368470-afaf-44da-ba86-13a7318f1995", + ), +) + +result = await graph_client.identity_governance.entitlement_management.resource_requests.post(request_body) + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-python-snippets.md b/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-python-snippets.md new file mode 100644 index 00000000000..e5d9b9c2d10 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-python-snippets.md @@ -0,0 +1,47 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```python + +# Code snippets are only available for the latest version. Current version is 1.x +from msgraph import GraphServiceClient +from msgraph.generated.models.access_package_resource_role_scope import AccessPackageResourceRoleScope +from msgraph.generated.models.access_package_resource_role import AccessPackageResourceRole +from msgraph.generated.models.access_package_resource import AccessPackageResource +from msgraph.generated.models.access_package_resource_scope import AccessPackageResourceScope +# To initialize your graph_client, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=python +request_body = AccessPackageResourceRoleScope( + role = AccessPackageResourceRole( + origin_id = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475", + display_name = "Access Review Operator Service Role", + description = "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.", + resource = AccessPackageResource( + id = "b09a0288-a83e-4ae6-8a53-bc09aeb966ea", + description = "Dev", + display_name = "Dev", + origin_id = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978", + origin_system = "AzureResources", + additional_data = { + "resource_type" : "Subscription", + } + ), + origin_system = "AzureResources", + additional_data = { + "type" : "active", + } + ), + scope = AccessPackageResourceScope( + id = "c66c1e22-1093-46fb-a8a8-c0e334113ca4", + description = "Root", + display_name = "Root", + is_root_scope = True, + origin_system = "AzureResources", + origin_id = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978", + ), +) + +result = await graph_client.identity_governance.entitlement_management.access_packages.by_access_package_id('accessPackage-id').resource_role_scopes.post(request_body) + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-python-snippets.md b/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-python-snippets.md new file mode 100644 index 00000000000..41f066d60d5 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-python-snippets.md @@ -0,0 +1,48 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```python + +# Code snippets are only available for the latest version. Current version is 1.x +from msgraph import GraphServiceClient +from msgraph.generated.models.access_package_resource_role_scope import AccessPackageResourceRoleScope +from msgraph.generated.models.access_package_resource_role import AccessPackageResourceRole +from msgraph.generated.models.access_package_resource import AccessPackageResource +from msgraph.generated.models.access_package_resource_scope import AccessPackageResourceScope +# To initialize your graph_client, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=python +request_body = AccessPackageResourceRoleScope( + role = AccessPackageResourceRole( + id = "055c76c1-a466-4f1a-9279-4a2ccaa7ac3e", + origin_id = "/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475", + display_name = "Access Review Operator Service Role", + description = "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.", + resource = AccessPackageResource( + id = "c347ca9b-a9cc-4df9-bc3c-00c8e0297692", + description = "test-mgmtgroup", + display_name = "test-mgmtgroup", + origin_id = "/providers/Microsoft.Management/managementGroups/test-mgmtgroup", + origin_system = "AzureResources", + additional_data = { + "resource_type" : "ManagementGroup", + } + ), + origin_system = "AzureResources", + additional_data = { + "type" : "eligible", + } + ), + scope = AccessPackageResourceScope( + id = "338613b3-b410-4c6d-b5e9-45590bc8a357", + display_name = "Root", + description = "Root Scope", + is_root_scope = True, + origin_id = "/providers/Microsoft.Management/managementGroups/test-mgmtgroup", + origin_system = "AzureResources", + ), +) + +result = await graph_client.identity_governance.entitlement_management.access_packages.by_access_package_id('accessPackage-id').resource_role_scopes.post(request_body) + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerolescope-from-accesspackage-subscription-python-snippets.md b/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerolescope-from-accesspackage-subscription-python-snippets.md new file mode 100644 index 00000000000..4cdd3dc77cc --- /dev/null +++ b/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerolescope-from-accesspackage-subscription-python-snippets.md @@ -0,0 +1,47 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```python + +# Code snippets are only available for the latest version. Current version is 1.x +from msgraph import GraphServiceClient +from msgraph.generated.models.access_package_resource_role_scope import AccessPackageResourceRoleScope +from msgraph.generated.models.access_package_resource_role import AccessPackageResourceRole +from msgraph.generated.models.access_package_resource import AccessPackageResource +from msgraph.generated.models.access_package_resource_scope import AccessPackageResourceScope +# To initialize your graph_client, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=python +request_body = AccessPackageResourceRoleScope( + role = AccessPackageResourceRole( + origin_id = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475", + display_name = "Access Review Operator Service Role", + description = "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.", + resource = AccessPackageResource( + id = "b09a0288-a83e-4ae6-8a53-bc09aeb966ea", + description = "Dev", + display_name = "Dev", + origin_id = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978", + origin_system = "AzureResources", + additional_data = { + "resource_type" : "Subscription", + } + ), + origin_system = "AzureResources", + additional_data = { + "type" : "active", + } + ), + scope = AccessPackageResourceScope( + id = "e1e0ec8c-472d-4ec5-a8f9-29e0bc275640", + description = "/resourceGroups/rg", + display_name = "/resourceGroups/rg", + is_root_scope = False, + origin_system = "AzureResources", + origin_id = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/resourceGroups/rg", + ), +) + +result = await graph_client.identity_governance.entitlement_management.access_packages.by_access_package_id('accessPackage-id').resource_role_scopes.post(request_body) + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/resources/accesspackagesubject.md b/api-reference/v1.0/resources/accesspackagesubject.md index 15b285026cb..2b7cfbf7e8d 100644 --- a/api-reference/v1.0/resources/accesspackagesubject.md +++ b/api-reference/v1.0/resources/accesspackagesubject.md @@ -17,15 +17,11 @@ In [Microsoft Entra entitlement management](entitlementmanagement-overview.md), ## Methods - +| [Get](../api/accesspackagesubject-get.md)|[accessPackageSubject](../resources/accesspackagesubject.md) | Get the properties of an **accessPackageSubject** object. | +| [Update](../api/accesspackagesubject-update.md)|None | Update the properties of an **accessPackageSubject** object. | ## Properties |Property|Type|Description| diff --git a/api-reference/v1.0/resources/enums-security.md b/api-reference/v1.0/resources/enums-security.md index 8e4d8ab8c99..bbd050b16d9 100644 --- a/api-reference/v1.0/resources/enums-security.md +++ b/api-reference/v1.0/resources/enums-security.md @@ -828,6 +828,114 @@ Namespace: microsoft.graph.security |unknown| |unknownFutureValue| + +### antispamDirectionality values + +|Member| +|:---| +|unknown| +|inbound| +|outbound| +|intraOrg| +|unknownFutureValue| + +### deliveryAction values + +|Member| +|:---| +|unknown| +|deliveredToJunk| +|delivered| +|blocked| +|replaced| +|unknownFutureValue| + +### deliveryLocation values + +|Member| +|:---| +|unknown| +|inbox_folder| +|junkFolder| +|deletedFolder| +|quarantine| +|onprem_external| +|failed| +|dropped| +|others| +|unknownFutureValue| + +### eventSource values + +|Member| +|:---| +|system| +|admin| +|user| +|unknownFutureValue| + +### remediationAction values + +|Member| +|:---| +|moveToJunk| +|moveToInbox| +|hardDelete| +|softDelete| +|moveToDeletedItems| +|unknownFutureValue| +|moveToQuarantine| + +### remediationSeverity values + +|Member| +|:---| +|low| +|medium| +|high| +|unknownFutureValue| + +### threatType values + +|Member| +|:---| +|unknown| +|spam| +|malware| +|phish| +|none| +|unknownFutureValue| + +### timelineEventType values + +|Member| +|:---| +|originalDelivery| +|systemTimeTravel| +|dynamicDelivery| +|userUrlClick| +|reprocessed| +|zap| +|quarantineRelease| +|air| +|unknown| +|unknownFutureValue| + +### verdictCategory values + +|Member| +|:---| +|none| +|malware| +|phish| +|siteUnavailable| +|spam| +|decryptionFailed| +|unsupportedUriScheme| +|unsupportedFileType| +|undefined| +|unknownFutureValue| + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmail", + "id": "String (identifier)", + "loggedDateTime": "String (timestamp)", + "networkMessageId": "String", + "internetMessageId": "String", + "senderDetail": { + "@odata.type": "microsoft.graph.security.analyzedEmailSenderDetail" + }, + "recipientEmailAddress": "String", + "distributionList": "String", + "subject": "String", + "returnPath": "String", + "directionality": "microsoft.graph.security.antispamDirectionality", + "originalDelivery": { + "@odata.type": "microsoft.graph.security.analyzedEmailDeliveryDetail" + }, + "latestDelivery": { + "@odata.type": "microsoft.graph.security.analyzedEmailDeliveryDetail" + }, + "attachments": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailAttachment" + } + ], + "urls": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailUrl" + } + ], + "language": "String", + "sizeInBytes": "Integer", + "alertIds": [ + "String" + ], + "exchangeTransportRules": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailExchangeTransportRuleInfo" + } + ], + "overrideSources": [ + "String" + ], + "threatTypes": [ + "microsoft.graph.security.threatType" + ], + "detectionMethods": [ + "String" + ], + "contexts": [ + "String" + ], + "authenticationDetails": { + "@odata.type": "microsoft.graph.security.analyzedEmailAuthenticationDetail" + }, + "phishConfidenceLevel": "String", + "spamConfidenceLevel": "String", + "bulkComplaintLevel": "String", + "emailClusterId": "String", + "policyAction": "String", + "policy": "String", + "timelineEvents": [ + { + "@odata.type": "microsoft.graph.security.timelineEvent" + } + ], + "threatDetectionDetails": [ + { + "@odata.type": "microsoft.graph.security.threatDetectionDetail" + } + ], + "primaryOverrideSource": "String", + "inboundConnectorFormattedName": "String", + "policyType": "String", + "clientType": "String", + "dlpRules": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailDlpRuleInfo" + } + ], + "forwardingDetail": "String", + "recipientDetail": { + "@odata.type": "microsoft.graph.security.analyzedEmailRecipientDetail" + } +} +``` diff --git a/api-reference/v1.0/resources/security-analyzedemailattachment.md b/api-reference/v1.0/resources/security-analyzedemailattachment.md new file mode 100644 index 00000000000..eb41df87130 --- /dev/null +++ b/api-reference/v1.0/resources/security-analyzedemailattachment.md @@ -0,0 +1,57 @@ +--- +title: "analyzedEmailAttachment resource type" +description: Represents an attachment to an analyzed email. +author: MishraSoumyaMS +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# analyzedEmailAttachment resource type + +Namespace: microsoft.graph.security + + +Represents an **attachment** to an [analyzed email](../resources/security-analyzedemail.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|detonationDetails|[microsoft.graph.security.detonationDetails](../resources/security-detonationdetails.md)|The detonation details of the attachment.| +|fileName|String|The name of the attachment in the email.| +|fileType|String|The type of the attachment in the email.| +|fileSize|Int32|Size of the file.| +|fileExtension|String|Extension of the file.| +|malwareFamily|String|The threat name associated with the threat type.| +|sha256|String|The SHA256 file hash of the attachment.| +|threatType|microsoft.graph.security.threatType|The threat type associated with the attachment. The possible values are: `unknown`, `spam`, `malware`, `phishing`, `none`, `unknownFutureValue`.| +|tenantAllowBlockListDetailInfo|String|Details of entries in tenant allow/block list configured by tenant.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmailAttachment", + "fileName": "String", + "fileType": "String", + "fileSize": "Integer", + "fileExtension": "String", + "threatType": "String", + "malwareFamily": "String", + "tenantAllowBlockListDetailInfo": "String", + "sha256": "String", + "detonationDetails": { + "@odata.type": "microsoft.graph.security.detonationDetails" + } +} +``` + diff --git a/api-reference/v1.0/resources/security-analyzedemailauthenticationdetail.md b/api-reference/v1.0/resources/security-analyzedemailauthenticationdetail.md new file mode 100644 index 00000000000..811d0887f58 --- /dev/null +++ b/api-reference/v1.0/resources/security-analyzedemailauthenticationdetail.md @@ -0,0 +1,46 @@ +--- +title: "analyzedEmailAuthenticationDetail resource type" +description: Represents a list of pass or fail verdicts by email authentication protocols. +author: MishraSoumyaMS +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# analyzedEmailAuthenticationDetail resource type + +Namespace: microsoft.graph.security + + +Represents a list of pass or fail verdicts by email authentication protocols such as DMARC, DKIM, SPF, or a combination of multiple authentication types (CompAuth). It's returned in the **authenticationDetails** property of [analyzedEmail](../resources/security-analyzedemail.md). + + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|compositeAuthentication|String|A value used by Microsoft 365 to combine email authentication such as SPF, DKIM, and DMARC, to determine whether the message is authentic.| +|dkim|String|DomainKeys identified mail (DKIM). Indicates whether it was pass/fail/soft fail.| +|dmarc|String|Domain-based Message Authentication. Indicates whether it was pass/fail/soft fail.| +|senderPolicyFramework|String|Sender Policy Framework (SPF). Indicates whether it was pass/fail/soft fail.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmailAuthenticationDetail", + "dmarc": "String", + "dkim": "String", + "senderPolicyFramework": "String", + "compositeAuthentication": "String" +} +``` + diff --git a/api-reference/v1.0/resources/security-analyzedemaildeliverydetail.md b/api-reference/v1.0/resources/security-analyzedemaildeliverydetail.md new file mode 100644 index 00000000000..f2833d9ab77 --- /dev/null +++ b/api-reference/v1.0/resources/security-analyzedemaildeliverydetail.md @@ -0,0 +1,71 @@ +--- +title: "analyzedEmailDeliveryDetail resource type" +description: Represents the delivery action and location of an analyzed email. +author: MishraSoumyaMS +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# analyzedEmailDeliveryDetail resource type + +Namespace: microsoft.graph.security + + +Represents the delivery action and location of an [analyzed email](../resources/security-analyzedemail.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|action|[microsoft.graph.security.deliveryAction](#deliveryaction-values)|The delivery action of the email. The possible values are: `unknown`, `deliveredToJunk`, `delivered`, `blocked`, `replaced`, `unknownFutureValue`.| +|location|[microsoft.graph.security.deliveryLocation](#deliverylocation-values)|The delivery location of the email. The possible values are: `unknown`, `inbox_folder`, `junkFolder`, `deletedFolder`, `quarantine`, `onprem_external`, `failed`, `dropped`, `others`, `unknownFutureValue`.| +|latestThreats|String|Latest known threat on the email.| +|originalThreats|String|Threats identified at the time of delivery.| + +### deliveryAction values + +|Member| +|:---| +|unknown| +|deliveredToJunk| +|delivered| +|blocked| +|replaced| +|unknownFutureValue| + +### deliveryLocation values + +|Member| +|:---| +|unknown| +|inbox_folder| +|junkFolder| +|deletedFolder| +|quarantine| +|onprem_external| +|failed| +|dropped| +|others| +|unknownFutureValue| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmailDeliveryDetail", + "action": "String", + "location": "String", + "originalThreats": "String", + "latestThreats": "String" +} +``` + diff --git a/api-reference/v1.0/resources/security-analyzedemaildlpruleinfo.md b/api-reference/v1.0/resources/security-analyzedemaildlpruleinfo.md new file mode 100644 index 00000000000..b8943c1501c --- /dev/null +++ b/api-reference/v1.0/resources/security-analyzedemaildlpruleinfo.md @@ -0,0 +1,42 @@ +--- +title: "analyzedEmailDlpRuleInfo resource type" +description: "Represents data loss prevention rules applied to the email." +author: akgraph +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# analyzedEmailDlpRuleInfo resource type + +Namespace: microsoft.graph.security + + +Represents data loss prevention rules applied to the email. It's returned in the **dlpRules** property of [analyzedEmail](../resources/security-analyzedemail.md). + + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|name|String|Name of the the data loss prevention rule.| +|ruleId|String|Unique identifier of the data loss prevention rule.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmailDlpRuleInfo", + "ruleId": "String", + "name": "String" +} +``` + diff --git a/api-reference/v1.0/resources/security-analyzedemailexchangetransportruleinfo.md b/api-reference/v1.0/resources/security-analyzedemailexchangetransportruleinfo.md new file mode 100644 index 00000000000..aec54bbe848 --- /dev/null +++ b/api-reference/v1.0/resources/security-analyzedemailexchangetransportruleinfo.md @@ -0,0 +1,41 @@ +--- +title: "analyzedEmailExchangeTransportRuleInfo resource type" +description: Represents mail flow rules in Exchange Online. +author: MishraSoumyaMS +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# analyzedEmailExchangeTransportRuleInfo resource type + +Namespace: microsoft.graph.security + + +Represents mail flow rules in Exchange Online. It's returned in the **exchangeTransportRules** property of [analyzedEmail](../resources/security-analyzedemail.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|name|String|Name of the Exchange transport rules (ETRs) that are part of the email.| +|ruleId|String|The ETR rule ID.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmailExchangeTransportRuleInfo", + "ruleId": "String", + "name": "String" +} +``` + diff --git a/api-reference/v1.0/resources/security-analyzedemailrecipientdetail.md b/api-reference/v1.0/resources/security-analyzedemailrecipientdetail.md new file mode 100644 index 00000000000..0fa1aa6a46c --- /dev/null +++ b/api-reference/v1.0/resources/security-analyzedemailrecipientdetail.md @@ -0,0 +1,43 @@ +--- +title: "analyzedEmailRecipientDetail resource type" +description: "Details about the recipient or recipients as mentioned in the email." +author: akgraph +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# analyzedEmailRecipientDetail resource type + +Namespace: microsoft.graph.security + + +Details about the recipient or recipients as mentioned in the email. It's returned in the **recipientDetail** property of [analyzedEmail](../resources/security-analyzedemail.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|ccRecipients|String collection|Recipient address in the cc field.| +|domainName|String|Domain name of the recipient.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmailRecipientDetail", + "domainName": "String", + "ccRecipients": [ + "String" + ] +} +``` + diff --git a/api-reference/v1.0/resources/security-analyzedemailsenderdetail.md b/api-reference/v1.0/resources/security-analyzedemailsenderdetail.md new file mode 100644 index 00000000000..ca3284eb212 --- /dev/null +++ b/api-reference/v1.0/resources/security-analyzedemailsenderdetail.md @@ -0,0 +1,55 @@ +--- +title: "analyzedEmailSenderDetail resource type" +description: Represents the sender details of an email. +author: MishraSoumyaMS +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# analyzedEmailSenderDetail resource type + +Namespace: microsoft.graph.security + + +Represents the sender details of an [analyzedEmail](../resources/security-analyzedemail.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|displayName|String|Display name of sender from address.| +|domainCreationDateTime|DateTimeOffset|Date and time of creation of the sender domain.| +|domainName|String|Registered name of the domain.| +|domainOwner|String|Owner of the domain.| +|fromAddress|String|The sender email address in the mail From header, also known as the envelope sender or the P1 sender.| +|ipv4|String|The IPv4 address of the last detected mail server that relayed the message.| +|location|String|Location of the domain.| +|mailFromAddress|String|The sender email address in the From header, which is visible to email recipients on their email clients. Also known as P2 sender.| +|mailFromDomainName|String|Domain name of sender mail from address.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmailSenderDetail", + "mailFromAddress": "String", + "fromAddress": "String", + "ipv4": "String", + "displayName": "String", + "domainName": "String", + "domainCreationDateTime": "String (timestamp)", + "domainOwner": "String", + "mailFromDomainName": "String", + "location": "String" +} +``` + diff --git a/api-reference/v1.0/resources/security-analyzedemailurl.md b/api-reference/v1.0/resources/security-analyzedemailurl.md new file mode 100644 index 00000000000..7dd08d2337f --- /dev/null +++ b/api-reference/v1.0/resources/security-analyzedemailurl.md @@ -0,0 +1,49 @@ +--- +title: "analyzedEmailUrl resource type" +description: "Represents information about URLs found in an analyzed email." +author: "MishraSoumyaMS" +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# analyzedEmailUrl resource type + +Namespace: microsoft.graph.security + + +Represents information about URLs found in an [analyzed email](../resources/security-analyzedemail.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|detectionMethod|String|The method used to detect threats in the URL.| +|detonationDetails|[microsoft.graph.security.detonationDetails](../resources/security-detonationdetails.md)|Detonation data associated with the URL.| +|tenantAllowBlockListDetailInfo|String|Details of entries in tenant allow/block list configured by tenant.| +|threatType|microsoft.graph.security.threatType|The type of threat associated with the URL. The possible values are: `unknown`, `spam`, `malware`, `phishing`, `none`, `unknownFutureValue`.| +|url|String|The URL that is found in the email. This is full URL string, including query parameters.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmailUrl", + "url": "String", + "threatType": "String", + "detectionMethod": "String", + "tenantAllowBlockListDetailInfo": "String", + "detonationDetails": { + "@odata.type": "microsoft.graph.security.detonationDetails" + } +} +``` + diff --git a/api-reference/v1.0/resources/security-collaborationroot.md b/api-reference/v1.0/resources/security-collaborationroot.md new file mode 100644 index 00000000000..8990536f8a9 --- /dev/null +++ b/api-reference/v1.0/resources/security-collaborationroot.md @@ -0,0 +1,43 @@ +--- +title: "collaborationRoot resource type" +description: "An abstract type that enables read and other actions on collaborative entities in Microsoft Defender." +author: "MishraSoumyaMS" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# collaborationRoot resource type + +Namespace: microsoft.graph.security + + +An abstract type that enables read and other actions on collaborative entities in Microsoft Defender. + +## Methods + +None. + +## Properties +None. +## Relationships +|Relationship|Type|Description| +|:---|:---|:---| +|analyzedEmails|[microsoft.graph.security.analyzedEmail](../resources/security-analyzedemail.md) collection|Contains metadata for analyzed emails.| + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.collaborationRoot" +} +``` + diff --git a/api-reference/v1.0/resources/security-compromiseindicator.md b/api-reference/v1.0/resources/security-compromiseindicator.md new file mode 100644 index 00000000000..41532e09609 --- /dev/null +++ b/api-reference/v1.0/resources/security-compromiseindicator.md @@ -0,0 +1,56 @@ +--- +title: "compromiseIndicator resource type" +description: Represents the indicators that caused the email to be marked as compromised. +author: akgraph +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# compromiseIndicator resource type + +Namespace: microsoft.graph.security + + +Represents an indicator and its associated verdict that suggests whether an email is compromised. The resource combines specific indicators found in the email with categorized verdicts to help identify potential security threats like malware, phishing attempts, or spam. It is returned in the **compromiseIndicators** property of [detonationDetails](../resources/security-detonationdetails.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|value|String|Indicator.| +|verdict|[microsoft.graph.security.verdictCategory](#verdictcategory-values)|The possible values are: `none`, `malware`, `phish`, `siteUnavailable`, `spam`, `decryptionFailed`, `unsupportedUriScheme`, `unsupportedFileType`, `undefined`, `unknownFutureValue`.| + +### verdictCategory values + +|Member| +|:---| +|none| +|malware| +|phish| +|siteUnavailable| +|spam| +|decryptionFailed| +|unsupportedUriScheme| +|unsupportedFileType| +|undefined| +|unknownFutureValue| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.compromiseIndicator", + "verdict": "String", + "value": "String" +} +``` + diff --git a/api-reference/v1.0/resources/security-detonationbehaviourdetails.md b/api-reference/v1.0/resources/security-detonationbehaviourdetails.md new file mode 100644 index 00000000000..5aa0a97d43a --- /dev/null +++ b/api-reference/v1.0/resources/security-detonationbehaviourdetails.md @@ -0,0 +1,57 @@ +--- +title: "detonationBehaviourDetails resource type (deprecated)" +description: "Shows the exact events that took place during detonation." +author: akgraph +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +ROBOTS: NOINDEX +--- + +# detonationBehaviourDetails resource type (deprecated) + +Namespace: microsoft.graph.security + + +Shows the exact events that took place during detonation. It's returned in the **detonationBehaviourDetails** property of [detonationDetails](../resources/security-detonationdetails.md). + + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|actionStatus|String|The status of the action performed during detonation (e.g., "Successful", "Failed", "Blocked").| +|behaviourCapability|String|Categorizes the capability or type of behavior observed.| +|behaviourGroup|String|Groups related behaviors together for classification purposes.| +|details|String|More contextual information about the observed behavior or action.| +|eventDateTime|DateTimeOffset|The date and time when the behavior or action was observed during detonation.| +|operation|String|The specific operation or action that was performed.| +|processId|String|The unique identifier of the process involved in the behavior.| +|processName|String|The name of the process that performed or was involved in the behavior.| +|target|String|The target of the operation.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.detonationBehaviourDetails", + "behaviourCapability": "String", + "behaviourGroup": "String", + "eventDateTime": "String (timestamp)", + "processName": "String", + "processId": "String", + "operation": "String", + "target": "String", + "details": "String", + "actionStatus": "String" +} +``` + diff --git a/api-reference/v1.0/resources/security-detonationchain.md b/api-reference/v1.0/resources/security-detonationchain.md new file mode 100644 index 00000000000..6a1d9f6dc94 --- /dev/null +++ b/api-reference/v1.0/resources/security-detonationchain.md @@ -0,0 +1,45 @@ +--- +title: "detonationChain resource type" +description: Represents a detonation chain in Microsoft Defender for Office 365. +author: MishraSoumyaMS +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# detonationChain resource type + +Namespace: microsoft.graph.security + + +Represents a detonation chain in Microsoft Defender for Office 365. A single file or URL detonation can trigger multiple detonations. The detonation chain tracks the path of detonations, including the original malicious file or URL that caused the verdict, and all other files or URLs that are affected by the detonation. These URLs or attached files might not be directly present in the email, but including that analysis is important in order to determine why the file or URL was found to be malicious. It's returned in the **detonationChain** property of [detonationDetails](../resources/security-detonationdetails.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|childNodes|[microsoft.graph.security.detonationChain](../resources/security-detonationchain.md) collection|A list of all child nodes in the chain.| +|value|String|The value of the chain.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.detonationChain", + "value": "String", + "childNodes": [ + { + "@odata.type": "microsoft.graph.security.detonationChain" + } + ] +} +``` + diff --git a/api-reference/v1.0/resources/security-detonationdetails.md b/api-reference/v1.0/resources/security-detonationdetails.md new file mode 100644 index 00000000000..380cea9bbe0 --- /dev/null +++ b/api-reference/v1.0/resources/security-detonationdetails.md @@ -0,0 +1,73 @@ +--- +title: "detonationDetails resource type" +description: Represents detonation details specific to email attachments and URLs. +author: MishraSoumyaMS +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# detonationDetails resource type + +Namespace: microsoft.graph.security + + +Represents detonation details specific to email attachments and URLs. These details include the detonation chain, detonation summary, and observed behavior details to help customers understand the reason the attachment or URL is deemed malicious and detonated. It's returned in the **detonationDetails** property of [analyzedEmailAttachment](../resources/security-analyzedemailattachment.md) and [analyzedEmailUrl](../resources/security-analyzedemailurl.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|analysisDateTime|DateTimeOffset|The time of detonation.| +|compromiseIndicators|[microsoft.graph.security.compromiseIndicator](../resources/security-compromiseindicator.md) collection|Represents indicators and its associated verdict that suggests whether an email is compromised.| +|detonationChain|[microsoft.graph.security.detonationChain](../resources/security-detonationchain.md)|The chain of detonation.| +|detonationObservables|[microsoft.graph.security.detonationObservables](../resources/security-detonationobservables.md)|All observables in the detonation tree.| +|detonationVerdict|String|The verdict of the detonation.| +|detonationVerdictReason|String|The reason for the verdict of the detonation.| +|detonationBehaviourDetailsV2|String|Shows the exact events that took place during detonation, and problematic or benign observations that contain URLs, IPs, domains, and files that were found during detonation in a JSON format.| +|detonationScreenshotUri|String|Show any screenshots that were captured during detonation. No screenshots are captured if the URL opens into a link that directly downloads a file. However, you see the downloaded file in the detonation chain.| +|entityMetadata|String|Additional metadata about the entity in JSON format.| +|mitreTechniques|String|The attack techniques, as aligned with the MITRE ATT&CK framework.| +|staticAnalysis|String|The results of static analysis performed on the file or URL.| +|submissionSource|String|The source of the submission.| +|detonationBehaviourDetails (deprecated)|[microsoft.graph.security.detonationBehaviourDetails](../resources/security-detonationbehaviourdetails.md)| Shows the exact events that took place during detonation, and problematic or benign observations that contain URLs, IPs, domains, and files that were found during detonation. This property is deprecated and still stop returning data in March 2026. Use the **detonationBehaviourDetailsV2** property instead.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.detonationDetails", + "analysisDateTime": "String (timestamp)", + "detonationVerdict": "String", + "detonationVerdictReason": "String", + "detonationChain": { + "@odata.type": "microsoft.graph.security.detonationChain" + }, + "detonationObservables": { + "@odata.type": "microsoft.graph.security.detonationObservables" + }, + "detonationBehaviourDetailsV2": "String", + "detonationScreenshotUri": "String", + "compromiseIndicators": [ + { + "@odata.type": "microsoft.graph.security.compromiseIndicator" + } + ], + "submissionSource": "String", + "entityMetadata": "String", + "staticAnalysis": "String", + "mitreTechniques": "String", + "detonationBehaviourDetails": { + "@odata.type": "microsoft.graph.security.detonationBehaviourDetails" + } +} +``` + diff --git a/api-reference/v1.0/resources/security-detonationobservables.md b/api-reference/v1.0/resources/security-detonationobservables.md new file mode 100644 index 00000000000..0b075c50342 --- /dev/null +++ b/api-reference/v1.0/resources/security-detonationobservables.md @@ -0,0 +1,49 @@ +--- +title: "detonationObservables resource type" +description: Represents detonation details. +author: malvika-balaraj +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# detonationObservables resource type + +Namespace: microsoft.graph.security + + +Represents the resources that a detonation includes, such as URLs, IPs, domains, and files. These resources can be either problematic or benign. It is returned in the **detonationObservables** property of [detonationDetails](../resources/security-detonationdetails.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|contactedIps|String collection|The list of all contacted IPs in the detonation.| +|contactedUrls|String collection|The list of all URLs found in the detonation.| +|droppedfiles|String collection|The list of all dropped files in the detonation.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.detonationObservables", + "droppedfiles": [ + "String" + ], + "contactedIps": [ + "String" + ], + "contactedUrls": [ + "String" + ] +} +``` + diff --git a/api-reference/v1.0/resources/security-ediscoveryaddtoreviewsetoperation.md b/api-reference/v1.0/resources/security-ediscoveryaddtoreviewsetoperation.md index 6932b196af0..f48590221a3 100644 --- a/api-reference/v1.0/resources/security-ediscoveryaddtoreviewsetoperation.md +++ b/api-reference/v1.0/resources/security-ediscoveryaddtoreviewsetoperation.md @@ -25,7 +25,7 @@ None. |Property|Type|Description| |:---|:---|:---| |action|[microsoft.graph.security.caseAction](../resources/security-caseoperation.md#caseaction-values)| The type of action the operation represents. The possible values are: `contentExport`, `applyTags`, `convertToPdf`, `index`, `estimateStatistics`, `addToReviewSet`, `holdUpdate`, `unknownFutureValue`, `purgeData`, `exportReport`, `exportResult`, `holdPolicySync`. Use the `Prefer: include-unknown-enum-members` request header to get the following values from this [evolvable enum](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations): `purgeData`, `exportReport`, `exportResult`, `holdPolicySync`. Inherited from [caseOperation](../resources/security-caseoperation.md).| -|additionalDataOptions|[microsoft.graph.security.additionalDataOptions](#additionaldataoptions-values)| The options to add items to the review set. The possible values are: `allVersions`, `linkedFiles`, `unknownFutureValue`, `advancedIndexing`, `listAttachments`, `htmlTranscripts`, `messageConversationExpansion`, `locationsWithoutHits`, `allItemsInFolder`. Use the `Prefer: include-unknown-enum-members` request header to get the following values from this [evolvable enum](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations): `advancedIndexing`, `listAttachments`, `htmlTranscripts`, `messageConversationExpansion`, `locationsWithoutHits`, `allItemsInFolder`.| +|additionalDataOptions|[microsoft.graph.security.additionalDataOptions](#additionaldataoptions-values)| The options to add items to the review set. The possible values are: `allVersions`, `linkedFiles`, `unknownFutureValue`, `advancedIndexing`, `listAttachments`, `htmlTranscripts`, `messageConversationExpansion`, `locationsWithoutHits`, `allItemsInFolder`, `cloudNativeHtmlConversion`. Use the `Prefer: include-unknown-enum-members` request header to get the following values from this [evolvable enum](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations): `advancedIndexing`, `listAttachments`, `htmlTranscripts`, `messageConversationExpansion`, `locationsWithoutHits`, `allItemsInFolder`, `cloudNativeHtmlConversion`.| |cloudAttachmentVersion|microsoft.graph.security.cloudAttachmentVersion| Specifies the number of most recent versions of cloud attachments to collect. The possible values are: `latest`, `recent10`, `recent100`, `all`, `unknownFutureValue`. | |completedDateTime|DateTimeOffset| The date and time the operation was completed. Inherited from [caseOperation](../resources/security-caseoperation.md).| |createdBy|[identitySet](../resources/identityset.md)| The user that created the operation. Inherited from [caseOperation](../resources/security-caseoperation.md).| @@ -51,6 +51,7 @@ None. |messageConversationExpansion| Include conversation context around a hit.| |locationsWithoutHits| Look for unindexed items even in locations without hits.| |allItemsInFolder| Include all content in the folder if the folder itself matches a query.| +|cloudNativeHtmlConversion| Convert items to cloud-native HTML format during review set collection.| ### itemsToInclude values diff --git a/api-reference/v1.0/resources/security-threatdetectiondetail.md b/api-reference/v1.0/resources/security-threatdetectiondetail.md new file mode 100644 index 00000000000..0285be14cf8 --- /dev/null +++ b/api-reference/v1.0/resources/security-threatdetectiondetail.md @@ -0,0 +1,44 @@ +--- +title: "threatDetectionDetail resource type" +description: "Represents threat analysis information from Microsoft Defender for Office 365, including threat classification, confidence levels, and priority account protection status." +author: akgraph +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# threatDetectionDetail resource type + +Namespace: microsoft.graph.security + + +Represents threat analysis information from Microsoft Defender for Office 365, including threat classification, confidence levels, and priority account protection status. It's returned in the **threatDetectionDetails** property of [analyzedEmail](../resources/security-analyzedemail.md). + + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|confidenceLevel|String|Indicates the confidence level in the threat detection.| +|priorityAccountProtection|String|Indicates if the account has priority protection enabled.| +|threats|String|Lists the detected threats.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.threatDetectionDetail", + "threats": "String", + "confidenceLevel": "String", + "priorityAccountProtection": "String" +} +``` + diff --git a/api-reference/v1.0/resources/security-timelineevent.md b/api-reference/v1.0/resources/security-timelineevent.md new file mode 100644 index 00000000000..5bb180bd601 --- /dev/null +++ b/api-reference/v1.0/resources/security-timelineevent.md @@ -0,0 +1,76 @@ +--- +title: "timelineEvent resource type" +description: "The timeline of an analyzedEmail entity." +author: akgraph +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# timelineEvent resource type + +Namespace: microsoft.graph.security + + +The timeline of an [analyzedEmail](../resources/security-analyzedemail.md). + + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|eventDateTime|DateTimeOffset|The date and time when the event occurred.| +|eventDetails|String|Additional details or context about the event.| +|eventResult|String|The outcome or result of the event, such as delivery location or action taken.| +|eventSource|[microsoft.graph.security.eventSource](#eventsource-values)|The origin or actor that triggered the event. The possible values are: `system`, `admin`, `user`, `unknownFutureValue`.| +|eventThreats|String collection|Collection of threats identified or associated with this event.| +|eventType|[microsoft.graph.security.timelineEventType](#timelineeventtype-values)|The type of event that occurred. The possible values are: `originalDelivery`, `systemTimeTravel`, `dynamicDelivery`, `userUrlClick`, `reprocessed`, `zap`, `quarantineRelease`, `air`, `unknown`, `unknownFutureValue`.| + +### eventSource values + +|Member| +|:---| +|system| +|admin| +|user| +|unknownFutureValue| + +### timelineEventType values + +|Member| +|:---| +|originalDelivery| +|systemTimeTravel| +|dynamicDelivery| +|userUrlClick| +|reprocessed| +|zap| +|quarantineRelease| +|air| +|unknown| +|unknownFutureValue| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.timelineEvent", + "eventDateTime": "String (timestamp)", + "eventSource": "String", + "eventType": "String", + "eventResult": "String", + "eventThreats": [ + "String" + ], + "eventDetails": "String" +} +``` + diff --git a/api-reference/v1.0/toc/toc.mapping.json b/api-reference/v1.0/toc/toc.mapping.json index 95fcebd97de..d635def489f 100644 --- a/api-reference/v1.0/toc/toc.mapping.json +++ b/api-reference/v1.0/toc/toc.mapping.json @@ -1821,6 +1821,12 @@ } ] }, + { + "name": "Email and collaboration protection", + "resources": [ + "microsoft.graph.security.analyzedEmail" + ] + }, { "name": "Identities", "resources": [ diff --git a/changelog/Microsoft.AAD.Reporting.json b/changelog/Microsoft.AAD.Reporting.json index 2840c3d6c4d..6185125d5b8 100644 --- a/changelog/Microsoft.AAD.Reporting.json +++ b/changelog/Microsoft.AAD.Reporting.json @@ -1,5 +1,71 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "1fa63eb3-bbbb-4cb6-bb79-69f28c34c4ce", + "ApiChange": "Resource", + "ChangedApiName": "identityAnalyticsRoot", + "ChangeType": "Addition", + "Description": "Added the [identityAnalyticsRoot](https://learn.microsoft.com/en-us/graph/api/resources/identityanalyticsroot?view=graph-rest-beta) resource.", + "Target": "identityAnalyticsRoot" + }, + { + "Id": "1fa63eb3-bbbb-4cb6-bb79-69f28c34c4ce", + "ApiChange": "Resource", + "ChangedApiName": "groupAnalytics", + "ChangeType": "Addition", + "Description": "Added the [groupAnalytics](https://learn.microsoft.com/en-us/graph/api/resources/groupanalytics?view=graph-rest-beta) resource.", + "Target": "groupAnalytics" + }, + { + "Id": "1fa63eb3-bbbb-4cb6-bb79-69f28c34c4ce", + "ApiChange": "Enum type", + "ChangedApiName": "groupTypeEnum", + "ChangeType": "Addition", + "Description": "Added the **groupTypeEnum** enumeration type.", + "Target": "groupTypeEnum" + }, + { + "Id": "1fa63eb3-bbbb-4cb6-bb79-69f28c34c4ce", + "ApiChange": "Relationship", + "ChangedApiName": "identityAnalytics", + "ChangeType": "Addition", + "Description": "Added the **identityAnalytics** relationship to the [reportRoot](https://learn.microsoft.com/en-us/graph/api/resources/reportroot?view=graph-rest-beta) resource.", + "Target": "reportRoot" + }, + { + "Id": "1fa63eb3-bbbb-4cb6-bb79-69f28c34c4ce", + "ApiChange": "Relationship", + "ChangedApiName": "groups", + "ChangeType": "Addition", + "Description": "Added the **groups** relationship to the [identityAnalyticsRoot](https://learn.microsoft.com/en-us/graph/api/resources/identityanalyticsroot?view=graph-rest-beta) resource.", + "Target": "identityAnalyticsRoot" + }, + { + "Id": "1fa63eb3-bbbb-4cb6-bb79-69f28c34c4ce", + "ApiChange": "Method", + "ChangedApiName": "List groupAnalytics", + "ChangeType": "Addition", + "Description": "Added the [List groupAnalytics](https://learn.microsoft.com/en-us/graph/api/identityanalyticsroot-list-groups?view=graph-rest-beta) method to the [groupAnalytics](https://learn.microsoft.com/en-us/graph/api/resources/groupanalytics?view=graph-rest-beta) resource.", + "Target": "groupAnalytics" + }, + { + "Id": "1fa63eb3-bbbb-4cb6-bb79-69f28c34c4ce", + "ApiChange": "Method", + "ChangedApiName": "Get groupAnalytics", + "ChangeType": "Addition", + "Description": "Added the [Get groupAnalytics](https://learn.microsoft.com/en-us/graph/api/groupanalytics-get?view=graph-rest-beta) method to the [groupAnalytics](https://learn.microsoft.com/en-us/graph/api/resources/groupanalytics?view=graph-rest-beta) resource.", + "Target": "groupAnalytics" + } + ], + "Id": "1fa63eb3-bbbb-4cb6-bb79-69f28c34c4ce", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-25T22:00:52.5681182Z", + "WorkloadArea": "Reports", + "SubArea": "Identity and access reports" + }, { "ChangeList": [ { @@ -260,7 +326,7 @@ "WorkloadArea": "Reports", "SubArea": "Identity and access reports" }, - { + { "ChangeList": [ { "Id": "e47691c4-0416-4bcd-be07-f706d5d5350d", diff --git a/changelog/Microsoft.CloudManagedDesktop.json b/changelog/Microsoft.CloudManagedDesktop.json index 19fde0c44cd..cdf4699b114 100644 --- a/changelog/Microsoft.CloudManagedDesktop.json +++ b/changelog/Microsoft.CloudManagedDesktop.json @@ -1,5 +1,47 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "ddd9e07d-bacf-449d-86ae-7b4aaeac7358", + "ApiChange": "Property", + "ChangedApiName": "isForceUserLogoffEnabled", + "ChangeType": "Addition", + "Description": "Added the **isForceUserLogoffEnabled** property to the [cloudPcPolicyScheduledApplyActionDetail](https://learn.microsoft.com/en-us/graph/api/resources/cloudpcpolicyscheduledapplyactiondetail?view=graph-rest-beta) resource.", + "Target": "cloudPcPolicyScheduledApplyActionDetail" + }, + { + "Id": "ddd9e07d-bacf-449d-86ae-7b4aaeac7358", + "ApiChange": "Parameter", + "ChangedApiName": "isForceUserLogoffEnabled", + "ChangeType": "Addition", + "Description": "Added the **isForceUserLogoffEnabled** parameter to the [apply](https://learn.microsoft.com/en-us/graph/api/cloudpcprovisioningpolicy-apply?view=graph-rest-beta) method.", + "Target": "apply" + }, + { + "Id": "ddd9e07d-bacf-449d-86ae-7b4aaeac7358", + "ApiChange": "Resource", + "ChangedApiName": "cloudPcPolicyPendingApplyStatusResult", + "ChangeType": "Addition", + "Description": "Added the [cloudPcPolicyPendingApplyStatusResult](https://learn.microsoft.com/en-us/graph/api/resources/cloudpcpolicypendingapplystatusresult?view=graph-rest-beta) resource type.", + "Target": "cloudPcPolicyPendingApplyStatusResult" + }, + { + "Id": "ddd9e07d-bacf-449d-86ae-7b4aaeac7358", + "ApiChange": "Method", + "ChangedApiName": "retrievePolicyUpdateStatusResult", + "ChangeType": "Addition", + "Description": "Added the [retrievePolicyUpdateStatusResult](https://learn.microsoft.com/en-us/graph/api/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult?view=graph-rest-beta) method to the [cloudPcProvisioningPolicy](https://learn.microsoft.com/en-us/graph/api/resources/cloudpcprovisioningpolicy?view=graph-rest-beta) resource.", + "Target": "cloudPcProvisioningPolicy" + } + ], + "Id": "ddd9e07d-bacf-449d-86ae-7b4aaeac7358", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-22T00:00:00.0000000Z", + "WorkloadArea": "Device and app management", + "SubArea": "Cloud PC" + }, { "ChangeList": [ { diff --git a/changelog/Microsoft.Compliance.Ediscovery.json b/changelog/Microsoft.Compliance.Ediscovery.json index b2f28be7762..3a75917a443 100644 --- a/changelog/Microsoft.Compliance.Ediscovery.json +++ b/changelog/Microsoft.Compliance.Ediscovery.json @@ -1,5 +1,41 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "bd38883e-6758-48cb-a74b-2c7ad2ec95c9", + "ApiChange": "Member", + "ChangedApiName": "cloudNativeHtmlConversion", + "ChangeType": "Addition", + "Description": "Added the `cloudNativeHtmlConversion` member to the [additionalDataOptions](https://learn.microsoft.com/graph/api/resources/security-ediscoveryaddtoreviewsetoperation?view=graph-rest-beta#additionaldataoptions-values) enumeration.", + "Target": "additionalDataOptions" + } + ], + "Id": "bd38883e-6758-48cb-a74b-2c7ad2ec95c9", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-24T17:33:16.7805181Z", + "WorkloadArea": "Security", + "SubArea": "eDiscovery" + }, + { + "ChangeList": [ + { + "Id": "bd38883e-6758-48cb-a74b-2c7ad2ec95c9", + "ApiChange": "Member", + "ChangedApiName": "cloudNativeHtmlConversion", + "ChangeType": "Addition", + "Description": "Added the `cloudNativeHtmlConversion` member to the [additionalDataOptions](https://learn.microsoft.com/graph/api/resources/security-ediscoveryaddtoreviewsetoperation#additionaldataoptions-values) enumeration.", + "Target": "additionalDataOptions" + } + ], + "Id": "bd38883e-6758-48cb-a74b-2c7ad2ec95c9", + "Cloud": "Prod", + "Version": "v1.0", + "CreatedDateTime": "2026-06-24T17:33:16.7805181Z", + "WorkloadArea": "Security", + "SubArea": "eDiscovery" + }, { "ChangeList": [ { diff --git a/changelog/Microsoft.DirectoryServices.json b/changelog/Microsoft.DirectoryServices.json index 0581e8855af..24d87245d6e 100644 --- a/changelog/Microsoft.DirectoryServices.json +++ b/changelog/Microsoft.DirectoryServices.json @@ -15891,6 +15891,24 @@ "CreatedDateTime": "2026-03-31T15:28:36.2770719Z", "WorkloadArea": "Identity and access", "SubArea": "Directory management" + }, + { + "ChangeList": [ + { + "Id": "c327d619-2141-4517-b546-a89ffaf3929e", + "ApiChange": "Property", + "ChangedApiName": "appRoleAssignmentRequired", + "ChangeType": "Addition", + "Description": "Added the **appRoleAssignmentRequired** property to the [agentIdentity](https://learn.microsoft.com/en-us/graph/api/resources/agentidentity?view=graph-rest-beta) resource.", + "Target": "agentIdentity" + } + ], + "Id": "c327d619-2141-4517-b546-a89ffaf3929e", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-23T07:49:43.0000000Z", + "WorkloadArea": "Agents", + "SubArea": "Agent identities" } ] } \ No newline at end of file diff --git a/changelog/Microsoft.EnhancedRestore.json b/changelog/Microsoft.EnhancedRestore.json index a9aecf4095a..64c60090c2f 100644 --- a/changelog/Microsoft.EnhancedRestore.json +++ b/changelog/Microsoft.EnhancedRestore.json @@ -1,6 +1,48 @@ { "changelog": [ { + "ChangeList": [ + { + "Id": "42f3dd5e-5a3f-4a28-8b51-f8f49e9018d6", + "ApiChange": "Enumeration", + "ChangedApiName": "granularRestoreItems", + "ChangeType": "Addition", + "Description": "Added the **granularRestoreItems** enumeration type.", + "Target": "granularRestoreItems" + }, + { + "Id": "42f3dd5e-5a3f-4a28-8b51-f8f49e9018d6", + "ApiChange": "Property", + "ChangedApiName": "queryExpression", + "ChangeType": "Deprecation", + "Description": "Deprecated the **queryExpression** property of the [artifactQuery](https://learn.microsoft.com/en-us/graph/api/resources/artifactquery?view=graph-rest-beta) resource. Use the **structuredQueryExpression** property instead.", + "Target": "artifactQuery" + }, + { + "Id": "42f3dd5e-5a3f-4a28-8b51-f8f49e9018d6", + "ApiChange": "Property", + "ChangedApiName": "structuredQueryExpression", + "ChangeType": "Addition", + "Description": "Added the **structuredQueryExpression** property to the [artifactQuery](https://learn.microsoft.com/en-us/graph/api/resources/artifactquery?view=graph-rest-beta) resource.", + "Target": "artifactQuery" + }, + { + "Id": "42f3dd5e-5a3f-4a28-8b51-f8f49e9018d6", + "ApiChange": "Resource", + "ChangedApiName": "restoreSearchArtifactQueryExpression", + "ChangeType": "Addition", + "Description": "Added the [restoreSearchArtifactQueryExpression](https://learn.microsoft.com/en-us/graph/api/resources/restoresearchartifactqueryexpression?view=graph-rest-beta) resource.", + "Target": "restoreSearchArtifactQueryExpression" + } + ], + "Id": "42f3dd5e-5a3f-4a28-8b51-f8f49e9018d6", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-23T09:52:03.5646538Z", + "WorkloadArea": "Backup and recovery", + "SubArea": "Microsoft 365 backup and storage" + }, + { "ChangeList": [ { "Id": "d3dee94f-3c8b-475f-9aaf-b1a94b873b46", diff --git a/changelog/Microsoft.FileServices.json b/changelog/Microsoft.FileServices.json index 10a041e6ebe..f402db0aaf3 100644 --- a/changelog/Microsoft.FileServices.json +++ b/changelog/Microsoft.FileServices.json @@ -1,5 +1,39 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "37d03d43-f372-4979-9a1d-6a56e2d28f84", + "ApiChange": "Resource", + "ChangedApiName": "sharePointApiUsageDataPoint", + "ChangeType": "Addition", + "Description": "Added the [sharePointApiUsageDataPoint](https://learn.microsoft.com/en-us/graph/api/resources/sharepointapiusagedatapoint?view=graph-rest-beta) resource.", + "Target": "sharePointApiUsageDataPoint" + }, + { + "Id": "37d03d43-f372-4979-9a1d-6a56e2d28f84", + "ApiChange": "Resource", + "ChangedApiName": "sharePointApiUsageReport", + "ChangeType": "Addition", + "Description": "Added the [sharePointApiUsageReport](https://learn.microsoft.com/en-us/graph/api/resources/sharepointapiusagereport?view=graph-rest-beta) resource.", + "Target": "sharePointApiUsageReport" + }, + { + "Id": "37d03d43-f372-4979-9a1d-6a56e2d28f84", + "ApiChange": "Method", + "ChangedApiName": "getSharePointApiUsage", + "ChangeType": "Addition", + "Description": "Added the [getSharePointApiUsage](https://learn.microsoft.com/en-us/graph/api/reportroot-getsharepointapiusage?view=graph-rest-beta) method to the **reportRoot** resource.", + "Target": "reportRoot" + } + ], + "Id": "37d03d43-f372-4979-9a1d-6a56e2d28f84", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-23T01:49:53.4116791Z", + "WorkloadArea": "Files", + "SubArea": "" + }, { "ChangeList": [ { diff --git a/changelog/Microsoft.IGAELM.json b/changelog/Microsoft.IGAELM.json index 51a94d18fc8..fd7c557e757 100644 --- a/changelog/Microsoft.IGAELM.json +++ b/changelog/Microsoft.IGAELM.json @@ -1,5 +1,31 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "bbaab297-9f65-4f97-8abb-a67a10d5a6e1", + "ApiChange": "Method", + "ChangedApiName": "Get", + "ChangeType": "Addition", + "Description": "Added the [Get](https://learn.microsoft.com/en-us/graph/api/accesspackagesubject-get?view=graph-rest-1.0) method to the [accessPackageSubject](https://learn.microsoft.com/en-us/graph/api/resources/accesspackagesubject?view=graph-rest-1.0) resource.", + "Target": "accessPackageSubject" + }, + { + "Id": "bbaab297-9f65-4f97-8abb-a67a10d5a6e1", + "ApiChange": "Method", + "ChangedApiName": "Update", + "ChangeType": "Addition", + "Description": "Added the [Update](https://learn.microsoft.com/en-us/graph/api/accesspackagesubject-update?view=graph-rest-1.0) method to the [accessPackageSubject](https://learn.microsoft.com/en-us/graph/api/resources/accesspackagesubject?view=graph-rest-1.0) resource.", + "Target": "accessPackageSubject" + } + ], + "Id": "bbaab297-9f65-4f97-8abb-a67a10d5a6e1", + "Cloud": "Prod", + "Version": "v1.0", + "CreatedDateTime": "2026-06-23T00:00:00Z", + "WorkloadArea": "Identity and access", + "SubArea": "Governance" + }, { "Id": "a7e3b21c-5f0d-4a82-b6c9-1e8d4f7a3b5c", "Cloud": "Prod", diff --git a/changelog/Microsoft.IdentityGovernance.Insights.json b/changelog/Microsoft.IdentityGovernance.Insights.json index d23b84972e6..0a9e6dabc72 100644 --- a/changelog/Microsoft.IdentityGovernance.Insights.json +++ b/changelog/Microsoft.IdentityGovernance.Insights.json @@ -1,4 +1,4 @@ -{ +{ "changelog": [ { "ChangeList": [ @@ -10,7 +10,7 @@ "Description": "Added the **customDataProvidedResourceUploadStatus** enumeration type.", "Target": "customDataProvidedResourceUploadStatus" }, - { + { "Id": "4eed495b-2c70-473d-94bf-54275e48eb5a", "ApiChange": "Enumeration", "ChangedApiName": "principalType", @@ -83,6 +83,218 @@ "CreatedDateTime": "2026-04-29T20:32:18.2409731Z", "WorkloadArea": "Identity and access", "SubArea": "Governance" + }, + { + "ChangeList": [ + { + "Id": "d99d334f-fe03-4aa3-a872-98121ed4c9f9", + "ApiChange": "Resource", + "ChangedApiName": "accessReviewContextData", + "ChangeType": "Addition", + "Description": "Added the [accessReviewContextData](https://learn.microsoft.com/en-us/graph/api/resources/customdataprovidedresourcepayloads-accessreviewcontextdata?view=graph-rest-beta) resource.", + "Target": "accessReviewContextData" + }, + { + "Id": "d99d334f-fe03-4aa3-a872-98121ed4c9f9", + "ApiChange": "Resource", + "ChangedApiName": "calloutRequest", + "ChangeType": "Addition", + "Description": "Added the [calloutRequest](https://learn.microsoft.com/en-us/graph/api/resources/customdataprovidedresourcepayloads-calloutrequest?view=graph-rest-beta) resource.", + "Target": "calloutRequest" + }, + { + "Id": "d99d334f-fe03-4aa3-a872-98121ed4c9f9", + "ApiChange": "Resource", + "ChangedApiName": "data", + "ChangeType": "Addition", + "Description": "Added the [data](https://learn.microsoft.com/en-us/graph/api/resources/customdataprovidedresourcepayloads-data?view=graph-rest-beta) resource.", + "Target": "data" + }, + { + "Id": "d99d334f-fe03-4aa3-a872-98121ed4c9f9", + "ApiChange": "Resource", + "ChangedApiName": "applyDecisionContextData", + "ChangeType": "Addition", + "Description": "Added the [applyDecisionContextData](https://learn.microsoft.com/en-us/graph/api/resources/customdataprovidedresourcepayloads-applydecisioncontextdata?view=graph-rest-beta) resource.", + "Target": "applyDecisionContextData" + }, + { + "Id": "d99d334f-fe03-4aa3-a872-98121ed4c9f9", + "ApiChange": "Resource", + "ChangedApiName": "accessReviewContextDataBase", + "ChangeType": "Addition", + "Description": "Added the [accessReviewContextDataBase](https://learn.microsoft.com/en-us/graph/api/resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase?view=graph-rest-beta) resource.", + "Target": "accessReviewContextDataBase" + }, + { + "Id": "d99d334f-fe03-4aa3-a872-98121ed4c9f9", + "ApiChange": "Property", + "ChangedApiName": "source", + "ChangeType": "Deletion", + "Description": "Removed the **source** property from the [customDataProvidedResourceUploadSessionRequest](https://learn.microsoft.com/en-us/graph/api/resources/customdataprovidedresourceuploadsessionrequest?view=graph-rest-beta) resource.", + "Target": "customDataProvidedResourceUploadSessionRequest" + }, + { + "Id": "d99d334f-fe03-4aa3-a872-98121ed4c9f9", + "ApiChange": "Property", + "ChangedApiName": "type", + "ChangeType": "Deletion", + "Description": "Removed the **type** property from the [customDataProvidedResourceUploadSessionRequest](https://learn.microsoft.com/en-us/graph/api/resources/customdataprovidedresourceuploadsessionrequest?view=graph-rest-beta) resource.", + "Target": "customDataProvidedResourceUploadSessionRequest" + }, + { + "Id": "d99d334f-fe03-4aa3-a872-98121ed4c9f9", + "ApiChange": "Resource", + "ChangedApiName": "customDataProvidedResourceAccessReviewUploadSession", + "ChangeType": "Addition", + "Description": "Added the [customDataProvidedResourceAccessReviewUploadSession](https://learn.microsoft.com/en-us/graph/api/resources/customdataprovidedresourceaccessreviewuploadsession?view=graph-rest-beta) resource.", + "Target": "customDataProvidedResourceAccessReviewUploadSession" + }, + { + "Id": "d99d334f-fe03-4aa3-a872-98121ed4c9f9", + "ApiChange": "Property", + "ChangedApiName": "source", + "ChangeType": "Deletion", + "Description": "Removed the **source** property from the [customDataProvidedResourceUploadSession](https://learn.microsoft.com/en-us/graph/api/resources/customdataprovidedresourceuploadsession?view=graph-rest-beta) resource.", + "Target": "customDataProvidedResourceUploadSession" + }, + { + "Id": "d99d334f-fe03-4aa3-a872-98121ed4c9f9", + "ApiChange": "Property", + "ChangedApiName": "type", + "ChangeType": "Deletion", + "Description": "Removed the **type** property from the [customDataProvidedResourceUploadSession](https://learn.microsoft.com/en-us/graph/api/resources/customdataprovidedresourceuploadsession?view=graph-rest-beta) resource.", + "Target": "customDataProvidedResourceUploadSession" + } + ], + "Id": "d99d334f-fe03-4aa3-a872-98121ed4c9f9", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-24T21:03:00.74585Z", + "WorkloadArea": "Identity and access", + "SubArea": "Governance" + }, + { + "ChangeList": [ + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Resource", + "ChangedApiName": "accessReviewDataUploadTriggerCallbackData", + "ChangeType": "Deletion", + "Description": "Removed the **accessReviewDataUploadTriggerCallbackData** resource.", + "Target": "accessReviewDataUploadTriggerCallbackData" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Resource", + "ChangedApiName": "accessReviewResourceDataUploadSessionContextData", + "ChangeType": "Deletion", + "Description": "Removed the **accessReviewResourceDataUploadSessionContextData** resource.", + "Target": "accessReviewResourceDataUploadSessionContextData" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Property", + "ChangedApiName": "source", + "ChangeType": "Deletion", + "Description": "Removed the **source** property from the [customDataProvidedResourceUploadSessionRequest](https://learn.microsoft.com/en-us/graph/api/resources/customDataProvidedResourceUploadSessionRequest?view=graph-rest-beta) resource.", + "Target": "customDataProvidedResourceUploadSessionRequest" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Property", + "ChangedApiName": "type", + "ChangeType": "Deletion", + "Description": "Removed the **type** property from the [customDataProvidedResourceUploadSessionRequest](https://learn.microsoft.com/en-us/graph/api/resources/customDataProvidedResourceUploadSessionRequest?view=graph-rest-beta) resource.", + "Target": "customDataProvidedResourceUploadSessionRequest" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Resource", + "ChangedApiName": "customExtensionData", + "ChangeType": "Deletion", + "Description": "Removed the **customExtensionData** resource.", + "Target": "customExtensionData" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Resource", + "ChangedApiName": "accessPackageAssignmentResourceRole", + "ChangeType": "Addition", + "Description": "Added the [accessPackageAssignmentResourceRole](https://learn.microsoft.com/en-us/graph/api/resources/accessPackageAssignmentResourceRole?view=graph-rest-beta) resource.", + "Target": "accessPackageAssignmentResourceRole" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Resource", + "ChangedApiName": "customDataProvidedResourceAccessReviewUploadSession", + "ChangeType": "Addition", + "Description": "Added the [customDataProvidedResourceAccessReviewUploadSession](https://learn.microsoft.com/en-us/graph/api/resources/customDataProvidedResourceAccessReviewUploadSession?view=graph-rest-beta) resource.", + "Target": "customDataProvidedResourceAccessReviewUploadSession" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Property", + "ChangedApiName": "source", + "ChangeType": "Deletion", + "Description": "Removed the **source** property from the [customDataProvidedResourceUploadSession](https://learn.microsoft.com/en-us/graph/api/resources/customDataProvidedResourceUploadSession?view=graph-rest-beta) resource.", + "Target": "customDataProvidedResourceUploadSession" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Property", + "ChangedApiName": "type", + "ChangeType": "Deletion", + "Description": "Removed the **type** property from the [customDataProvidedResourceUploadSession](https://learn.microsoft.com/en-us/graph/api/resources/customDataProvidedResourceUploadSession?view=graph-rest-beta) resource.", + "Target": "customDataProvidedResourceUploadSession" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Resource", + "ChangedApiName": "accessReviewContextData", + "ChangeType": "Addition", + "Description": "Added the [accessReviewContextData](https://learn.microsoft.com/en-us/graph/api/resources/customDataProvidedResourcePayloads-accessReviewContextData?view=graph-rest-beta) resource.", + "Target": "accessReviewContextData" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Resource", + "ChangedApiName": "accessReviewContextDataBase", + "ChangeType": "Addition", + "Description": "Added the [accessReviewContextDataBase](https://learn.microsoft.com/en-us/graph/api/resources/customDataProvidedResourcePayloads-accessReviewContextDataBase?view=graph-rest-beta) resource.", + "Target": "accessReviewContextDataBase" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Resource", + "ChangedApiName": "applyDecisionContextData", + "ChangeType": "Addition", + "Description": "Added the [applyDecisionContextData](https://learn.microsoft.com/en-us/graph/api/resources/customDataProvidedResourcePayloads-applyDecisionContextData?view=graph-rest-beta) resource.", + "Target": "applyDecisionContextData" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Resource", + "ChangedApiName": "calloutRequest", + "ChangeType": "Addition", + "Description": "Added the [calloutRequest](https://learn.microsoft.com/en-us/graph/api/resources/customDataProvidedResourcePayloads-calloutRequest?view=graph-rest-beta) resource.", + "Target": "calloutRequest" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Resource", + "ChangedApiName": "data", + "ChangeType": "Addition", + "Description": "Added the [data](https://learn.microsoft.com/en-us/graph/api/resources/customDataProvidedResourcePayloads-data?view=graph-rest-beta) resource.", + "Target": "data" + } + ], + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-24T19:48:46.5063896Z", + "WorkloadArea": "Identity and access", + "SubArea": "Governance" } ] } diff --git a/changelog/Microsoft.M365.Defender.json b/changelog/Microsoft.M365.Defender.json index d1a9b3fffe7..53a34d631eb 100644 --- a/changelog/Microsoft.M365.Defender.json +++ b/changelog/Microsoft.M365.Defender.json @@ -750,6 +750,80 @@ "WorkloadArea": "Security", "SubArea": "Alerts and incidents" }, + { + "ChangeList": [ + { + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "ApiChange": "Method", + "ChangedApiName": "getHuntingSchema", + "ChangeType": "Addition", + "Description": "Added the [getHuntingSchema](https://learn.microsoft.com/en-us/graph/api/security-security-gethuntingschema?view=graph-rest-beta) method to the [security](https://learn.microsoft.com/en-us/graph/api/resources/security?view=graph-rest-beta) resource.", + "Target": "security" + }, + { + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "ApiChange": "Resource", + "ChangedApiName": "huntingSchemaResult", + "ChangeType": "Addition", + "Description": "Added the [huntingSchemaResult](https://learn.microsoft.com/en-us/graph/api/resources/security-huntingschemaresult?view=graph-rest-beta) resource.", + "Target": "huntingSchemaResult" + }, + { + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "ApiChange": "Resource", + "ChangedApiName": "huntingSchemaTable", + "ChangeType": "Addition", + "Description": "Added the [huntingSchemaTable](https://learn.microsoft.com/en-us/graph/api/resources/security-huntingschematable?view=graph-rest-beta) resource.", + "Target": "huntingSchemaTable" + }, + { + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "ApiChange": "Resource", + "ChangedApiName": "huntingSchemaTableColumn", + "ChangeType": "Addition", + "Description": "Added the [huntingSchemaTableColumn](https://learn.microsoft.com/en-us/graph/api/resources/security-huntingschematablecolumn?view=graph-rest-beta) resource.", + "Target": "huntingSchemaTableColumn" + }, + { + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "ApiChange": "Resource", + "ChangedApiName": "huntingSchemaFunctions", + "ChangeType": "Addition", + "Description": "Added the [huntingSchemaFunctions](https://learn.microsoft.com/en-us/graph/api/resources/security-huntingschemafunctions?view=graph-rest-beta) resource.", + "Target": "huntingSchemaFunctions" + }, + { + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "ApiChange": "Resource", + "ChangedApiName": "huntingSchemaBuiltInFunction", + "ChangeType": "Addition", + "Description": "Added the [huntingSchemaBuiltInFunction](https://learn.microsoft.com/en-us/graph/api/resources/security-huntingschemabuiltinfunction?view=graph-rest-beta) resource.", + "Target": "huntingSchemaBuiltInFunction" + }, + { + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "ApiChange": "Resource", + "ChangedApiName": "huntingSchemaSavedFunction", + "ChangeType": "Addition", + "Description": "Added the [huntingSchemaSavedFunction](https://learn.microsoft.com/en-us/graph/api/resources/security-huntingschemasavedfunction?view=graph-rest-beta) resource.", + "Target": "huntingSchemaSavedFunction" + }, + { + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "ApiChange": "Resource", + "ChangedApiName": "huntingSchemaFunctionParameter", + "ChangeType": "Addition", + "Description": "Added the [huntingSchemaFunctionParameter](https://learn.microsoft.com/en-us/graph/api/resources/security-huntingschemafunctionparameter?view=graph-rest-beta) resource.", + "Target": "huntingSchemaFunctionParameter" + } + ], + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-24T11:05:11.5465777Z", + "WorkloadArea": "Security", + "SubArea": "Advanced hunting" + }, { "ChangeList": [ { @@ -4353,7 +4427,7 @@ "ApiChange": "Resource", "ChangedApiName": "sensorCandidate", "ChangeType": "Addition", - "Description": "Added the [sensorCandidate](https://learn.microsoft.com/en-us/graph/api/resources/security-sensorCandidate?view=graph-rest-beta) resource.", + "Description": "Added the [sensorCandidate](https://learn.microsoft.com/en-us/graph/api/resources/security-sensorcandidate?view=graph-rest-beta) resource.", "Target": "sensorCandidate" }, { @@ -4361,7 +4435,7 @@ "ApiChange": "Resource", "ChangedApiName": "sensorCandidateActivationConfiguration", "ChangeType": "Addition", - "Description": "Added the [sensorCandidateActivationConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/security-sensorCandidateActivationConfiguration?view=graph-rest-beta) resource.", + "Description": "Added the [sensorCandidateActivationConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/security-sensorcandidateactivationconfiguration?view=graph-rest-beta) resource.", "Target": "sensorCandidateActivationConfiguration" }, { @@ -4369,7 +4443,7 @@ "ApiChange": "Method", "ChangedApiName": "activate", "ChangeType": "Addition", - "Description": "Added the [activate](https://learn.microsoft.com/en-us/graph/api/security-sensorCandidate-activate?view=graph-rest-beta) method to the [sensorCandidate](https://learn.microsoft.com/en-us/graph/api/resources/security-sensorCandidate?view=graph-rest-beta) resource.", + "Description": "Added the [activate](https://learn.microsoft.com/en-us/graph/api/security-sensorcandidate-activate?view=graph-rest-beta) method to the [sensorCandidate](https://learn.microsoft.com/en-us/graph/api/resources/security-sensorcandidate?view=graph-rest-beta) resource.", "Target": "sensorCandidate" } ], @@ -4447,7 +4521,7 @@ "ApiChange": "Resource", "ChangedApiName": "aiAgentEvidence", "ChangeType": "Addition", - "Description": "Added the [aiAgentEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-aiAgentEvidence?view=graph-rest-beta) resource type.", + "Description": "Added the [aiAgentEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-aiagentevidence?view=graph-rest-beta) resource type.", "Target": "aiAgentEvidence" } ], @@ -4473,7 +4547,7 @@ "ApiChange": "Resource", "ChangedApiName": "aiAgentEvidence", "ChangeType": "Addition", - "Description": "Added the [aiAgentEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-aiAgentEvidence?view=graph-rest-1.0) resource type.", + "Description": "Added the [aiAgentEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-aiagentevidence?view=graph-rest-1.0) resource type.", "Target": "aiAgentEvidence" } ], @@ -4491,7 +4565,7 @@ "ApiChange": "Resource", "ChangedApiName": "activeDirectoryDomainEvidence", "ChangeType": "Addition", - "Description": "Added the [activeDirectoryDomainEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-activeDirectoryDomainEvidence?view=graph-rest-1.0) resource.", + "Description": "Added the [activeDirectoryDomainEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-activedirectorydomainevidence?view=graph-rest-1.0) resource.", "Target": "activeDirectoryDomainEvidence" }, { @@ -4499,7 +4573,7 @@ "ApiChange": "Property", "ChangedApiName": "resourceAccessEvents", "ChangeType": "Addition", - "Description": "Added the **resourceAccessEvents** property to the [deviceEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-deviceEvidence?view=graph-rest-1.0) resource.", + "Description": "Added the **resourceAccessEvents** property to the [deviceEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-deviceevidence?view=graph-rest-1.0) resource.", "Target": "deviceEvidence" }, { @@ -4507,7 +4581,7 @@ "ApiChange": "Resource", "ChangedApiName": "mailboxConfigurationEvidence", "ChangeType": "Addition", - "Description": "Added the [mailboxConfigurationEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-mailboxConfigurationEvidence?view=graph-rest-1.0) resource.", + "Description": "Added the [mailboxConfigurationEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-mailboxconfigurationevidence?view=graph-rest-1.0) resource.", "Target": "mailboxConfigurationEvidence" }, { @@ -4533,7 +4607,7 @@ "ApiChange": "Property", "ChangedApiName": "resourceAccessEvents", "ChangeType": "Addition", - "Description": "Added the **resourceAccessEvents** property to the [deviceEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-deviceEvidence?view=graph-rest-beta) resource.", + "Description": "Added the **resourceAccessEvents** property to the [deviceEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-deviceevidence?view=graph-rest-beta) resource.", "Target": "deviceEvidence" }, { @@ -4541,7 +4615,7 @@ "ApiChange": "Resource", "ChangedApiName": "mailboxConfigurationEvidence", "ChangeType": "Addition", - "Description": "Added the [mailboxConfigurationEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-mailboxConfigurationEvidence?view=graph-rest-beta) resource.", + "Description": "Added the [mailboxConfigurationEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-mailboxconfigurationevidence?view=graph-rest-beta) resource.", "Target": "mailboxConfigurationEvidence" }, { @@ -4549,7 +4623,7 @@ "ApiChange": "Resource", "ChangedApiName": "activeDirectoryDomainEvidence", "ChangeType": "Addition", - "Description": "Added the [activeDirectoryDomainEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-activeDirectoryDomainEvidence?view=graph-rest-beta) resource.", + "Description": "Added the [activeDirectoryDomainEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-activedirectorydomainevidence?view=graph-rest-beta) resource.", "Target": "activeDirectoryDomainEvidence" }, { @@ -4611,7 +4685,7 @@ "ApiChange": "Resource", "ChangedApiName": "autoAuditingConfiguration", "ChangeType": "Addition", - "Description": "Added the [autoAuditingConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/security-autoAuditingConfiguration?view=graph-rest-beta) resource.", + "Description": "Added the [autoAuditingConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/security-autoauditingconfiguration?view=graph-rest-beta) resource.", "Target": "autoAuditingConfiguration" }, { @@ -4619,7 +4693,7 @@ "ApiChange": "Relationship", "ChangedApiName": "autoAuditingConfiguration", "ChangeType": "Addition", - "Description": "Added the **autoAuditingConfiguration** relationship to the [settingsContainer](https://learn.microsoft.com/en-us/graph/api/resources/security-settingsContainer?view=graph-rest-beta) resource.", + "Description": "Added the **autoAuditingConfiguration** relationship to the [settingsContainer](https://learn.microsoft.com/en-us/graph/api/resources/security-settingscontainer?view=graph-rest-beta) resource.", "Target": "settingsContainer" } ], @@ -4637,7 +4711,7 @@ "ApiChange": "Resource", "ChangedApiName": "autoAuditingConfiguration", "ChangeType": "Addition", - "Description": "Added the [autoAuditingConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/security-autoAuditingConfiguration?view=graph-rest-1.0) resource.", + "Description": "Added the [autoAuditingConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/security-autoauditingconfiguration?view=graph-rest-1.0) resource.", "Target": "autoAuditingConfiguration" }, { @@ -4645,7 +4719,7 @@ "ApiChange": "Relationship", "ChangedApiName": "autoAuditingConfiguration", "ChangeType": "Addition", - "Description": "Added the **autoAuditingConfiguration** relationship to the [settingsContainer](https://learn.microsoft.com/en-us/graph/api/resources/security-settingsContainer?view=graph-rest-1.0) resource.", + "Description": "Added the **autoAuditingConfiguration** relationship to the [settingsContainer](https://learn.microsoft.com/en-us/graph/api/resources/security-settingscontainer?view=graph-rest-1.0) resource.", "Target": "settingsContainer" }, { @@ -4653,7 +4727,7 @@ "ApiChange": "Relationship", "ChangedApiName": "settings", "ChangeType": "Addition", - "Description": "Added the **settings** relationship to the [identityContainer](https://learn.microsoft.com/en-us/graph/api/resources/security-identityContainer?view=graph-rest-1.0) resource.", + "Description": "Added the **settings** relationship to the [identityContainer](https://learn.microsoft.com/en-us/graph/api/resources/security-identitycontainer?view=graph-rest-1.0) resource.", "Target": "identityContainer" }, { @@ -4661,7 +4735,7 @@ "ApiChange": "Resource", "ChangedApiName": "settingsContainer", "ChangeType": "Addition", - "Description": "Added the [settingsContainer](https://learn.microsoft.com/en-us/graph/api/resources/security-settingsContainer?view=graph-rest-1.0) resource.", + "Description": "Added the [settingsContainer](https://learn.microsoft.com/en-us/graph/api/resources/security-settingscontainer?view=graph-rest-1.0) resource.", "Target": "settingsContainer" } ], diff --git a/changelog/Microsoft.MDO.AnalyzedMessages.json b/changelog/Microsoft.MDO.AnalyzedMessages.json index c0455a01184..23898533677 100644 --- a/changelog/Microsoft.MDO.AnalyzedMessages.json +++ b/changelog/Microsoft.MDO.AnalyzedMessages.json @@ -1,4 +1,4 @@ -{ +{ "changelog": [ { "ChangeList": [ @@ -654,7 +654,7 @@ "WorkloadArea": "Security", "SubArea": "" }, - { + { "ChangeList": [ { "Id": "434ab3d3-04a9-4ee4-b70d-31e49940e98d", @@ -719,6 +719,240 @@ "CreatedDateTime": "2026-02-05T08:11:41.618548Z", "WorkloadArea": "Security", "SubArea": "" + }, + { + "ChangeList": [ + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "security", + "ChangeType": "Addition", + "Description": "Added the [security](https://learn.microsoft.com/en-us/graph/api/resources/security?view=graph-rest-1.0) resource.", + "Target": "security" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "antispamDirectionality", + "ChangeType": "Addition", + "Description": "Added the **antispamDirectionality** enumeration type.", + "Target": "antispamDirectionality" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "deliveryAction", + "ChangeType": "Addition", + "Description": "Added the **deliveryAction** enumeration type.", + "Target": "deliveryAction" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "deliveryLocation", + "ChangeType": "Addition", + "Description": "Added the **deliveryLocation** enumeration type.", + "Target": "deliveryLocation" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "eventSource", + "ChangeType": "Addition", + "Description": "Added the **eventSource** enumeration type.", + "Target": "eventSource" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "remediationAction", + "ChangeType": "Addition", + "Description": "Added the **remediationAction** enumeration type.", + "Target": "remediationAction" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "remediationSeverity", + "ChangeType": "Addition", + "Description": "Added the **remediationSeverity** enumeration type.", + "Target": "remediationSeverity" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "threatType", + "ChangeType": "Addition", + "Description": "Added the **threatType** enumeration type.", + "Target": "threatType" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "timelineEventType", + "ChangeType": "Addition", + "Description": "Added the **timelineEventType** enumeration type.", + "Target": "timelineEventType" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "verdictCategory", + "ChangeType": "Addition", + "Description": "Added the **verdictCategory** enumeration type.", + "Target": "verdictCategory" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmailAttachment", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmailAttachment](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmailAttachment?view=graph-rest-1.0) resource.", + "Target": "analyzedEmailAttachment" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmailAuthenticationDetail", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmailAuthenticationDetail](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmailAuthenticationDetail?view=graph-rest-1.0) resource.", + "Target": "analyzedEmailAuthenticationDetail" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmailDeliveryDetail", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmailDeliveryDetail](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmailDeliveryDetail?view=graph-rest-1.0) resource.", + "Target": "analyzedEmailDeliveryDetail" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmailDlpRuleInfo", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmailDlpRuleInfo](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmailDlpRuleInfo?view=graph-rest-1.0) resource.", + "Target": "analyzedEmailDlpRuleInfo" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmailExchangeTransportRuleInfo", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmailExchangeTransportRuleInfo](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmailExchangeTransportRuleInfo?view=graph-rest-1.0) resource.", + "Target": "analyzedEmailExchangeTransportRuleInfo" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmailRecipientDetail", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmailRecipientDetail](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmailRecipientDetail?view=graph-rest-1.0) resource.", + "Target": "analyzedEmailRecipientDetail" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmailSenderDetail", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmailSenderDetail](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmailSenderDetail?view=graph-rest-1.0) resource.", + "Target": "analyzedEmailSenderDetail" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmailUrl", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmailUrl](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmailUrl?view=graph-rest-1.0) resource.", + "Target": "analyzedEmailUrl" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "compromiseIndicator", + "ChangeType": "Addition", + "Description": "Added the [compromiseIndicator](https://learn.microsoft.com/en-us/graph/api/resources/security-compromiseIndicator?view=graph-rest-1.0) resource.", + "Target": "compromiseIndicator" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "detonationBehaviourDetails", + "ChangeType": "Addition", + "Description": "Added the [detonationBehaviourDetails](https://learn.microsoft.com/en-us/graph/api/resources/security-detonationBehaviourDetails?view=graph-rest-1.0) resource.", + "Target": "detonationBehaviourDetails" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "detonationChain", + "ChangeType": "Addition", + "Description": "Added the [detonationChain](https://learn.microsoft.com/en-us/graph/api/resources/security-detonationChain?view=graph-rest-1.0) resource.", + "Target": "detonationChain" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "detonationDetails", + "ChangeType": "Addition", + "Description": "Added the [detonationDetails](https://learn.microsoft.com/en-us/graph/api/resources/security-detonationDetails?view=graph-rest-1.0) resource.", + "Target": "detonationDetails" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "detonationObservables", + "ChangeType": "Addition", + "Description": "Added the [detonationObservables](https://learn.microsoft.com/en-us/graph/api/resources/security-detonationObservables?view=graph-rest-1.0) resource.", + "Target": "detonationObservables" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "threatDetectionDetail", + "ChangeType": "Addition", + "Description": "Added the [threatDetectionDetail](https://learn.microsoft.com/en-us/graph/api/resources/security-threatDetectionDetail?view=graph-rest-1.0) resource.", + "Target": "threatDetectionDetail" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "timelineEvent", + "ChangeType": "Addition", + "Description": "Added the [timelineEvent](https://learn.microsoft.com/en-us/graph/api/resources/security-timelineEvent?view=graph-rest-1.0) resource.", + "Target": "timelineEvent" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmail", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmail](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmail?view=graph-rest-1.0) resource.", + "Target": "analyzedEmail" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "collaborationRoot", + "ChangeType": "Addition", + "Description": "Added the [collaborationRoot](https://learn.microsoft.com/en-us/graph/api/resources/security-collaborationRoot?view=graph-rest-1.0) resource.", + "Target": "collaborationRoot" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Method", + "ChangedApiName": "remediate", + "ChangeType": "Addition", + "Description": "Added the [remediate](https://learn.microsoft.com/en-us/graph/api/security-analyzedEmail-remediate?view=graph-rest-1.0) method to the [analyzedEmail](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmail?view=graph-rest-1.0) resource.", + "Target": "analyzedEmail" + } + ], + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "Cloud": "Prod", + "Version": "v1.0", + "CreatedDateTime": "2026-06-24T06:21:42.919633Z", + "WorkloadArea": "Security", + "SubArea": "" } ] } diff --git a/changelog/Microsoft.WindowsUpdates.json b/changelog/Microsoft.WindowsUpdates.json index f984b318702..421525e3381 100644 --- a/changelog/Microsoft.WindowsUpdates.json +++ b/changelog/Microsoft.WindowsUpdates.json @@ -1,5 +1,87 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Enumeration", + "ChangedApiName": "enrollmentState", + "ChangeType": "Addition", + "Description": "Added the **enrollmentState** enumeration type.", + "Target": "enrollmentState" + }, + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Resource", + "ChangedApiName": "updateCategoryEnrollmentInformation", + "ChangeType": "Addition", + "Description": "Added the [updateCategoryEnrollmentInformation](https://learn.microsoft.com/en-us/graph/api/resources/windowsupdates-updatecategoryenrollmentinformation?view=graph-rest-beta) resource type.", + "Target": "updateCategoryEnrollmentInformation" + }, + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Property", + "ChangedApiName": "updateCategory", + "ChangeType": "Deletion", + "Description": "Removed the **updateCategory** property from the [updateManagementEnrollment](https://learn.microsoft.com/en-us/graph/api/resources/windowsupdates-updateManagementEnrollment?view=graph-rest-beta) resource.", + "Target": "updateManagementEnrollment" + }, + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Property", + "ChangedApiName": "feature", + "ChangeType": "Addition", + "Description": "Added the **feature** property to the [updateManagementEnrollment](https://learn.microsoft.com/en-us/graph/api/resources/windowsupdates-updateManagementEnrollment?view=graph-rest-beta) resource.", + "Target": "updateManagementEnrollment" + }, + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Property", + "ChangedApiName": "quality", + "ChangeType": "Addition", + "Description": "Added the **quality** property to the [updateManagementEnrollment](https://learn.microsoft.com/en-us/graph/api/resources/windowsupdates-updateManagementEnrollment?view=graph-rest-beta) resource.", + "Target": "updateManagementEnrollment" + }, + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Property", + "ChangedApiName": "driver", + "ChangeType": "Addition", + "Description": "Added the **driver** property to the [updateManagementEnrollment](https://learn.microsoft.com/en-us/graph/api/resources/windowsupdates-updateManagementEnrollment?view=graph-rest-beta) resource.", + "Target": "updateManagementEnrollment" + }, + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Resource", + "ChangedApiName": "updatableAssetEnrollment", + "ChangeType": "Deprecation", + "Description": "Deprecated the [updatableAssetEnrollment](https://learn.microsoft.com/en-us/graph/api/resources/windowsupdates-updatableAssetEnrollment?view=graph-rest-beta) resource. The **updatableAssetEnrollment** resource is deprecated and stopped returning data on July 1, 2024.", + "Target": "updatableAssetEnrollment" + }, + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Property", + "ChangedApiName": "enrollments", + "ChangeType": "Deletion", + "Description": "Removed the **enrollments** property from the [azureADDevice](https://learn.microsoft.com/en-us/graph/api/resources/windowsupdates-azureADDevice?view=graph-rest-beta) resource.", + "Target": "azureADDevice" + }, + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Property", + "ChangedApiName": "enrollment", + "ChangeType": "Addition", + "Description": "Added the **enrollment** property to the [azureADDevice](https://learn.microsoft.com/en-us/graph/api/resources/windowsupdates-azureADDevice?view=graph-rest-beta) resource.", + "Target": "azureADDevice" + } + ], + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-26T23:34:50.3183446Z", + "WorkloadArea": "Device and app management", + "SubArea": "Device updates" + }, { "ChangeList": [ { diff --git a/concepts/permissions-reference.md b/concepts/permissions-reference.md index f4bf89af16a..f84ef798743 100644 --- a/concepts/permissions-reference.md +++ b/concepts/permissions-reference.md @@ -7,7 +7,7 @@ ms.localizationpriority: high ms.topic: reference ms.subservice: entra-applications ms.custom: graphiamtop20, scenarios:getting-started -ms.date: 06/15/2026 +ms.date: 06/22/2026 #Customer intent: As a developer, I want to learn more about the permissions available in Microsoft Graph, so that I understand the impact of granting specific permissions to my app. --- diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index 635ca82bc9c..ad21dfd8e2e 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -3,7 +3,7 @@ title: "What's new in Microsoft Graph" description: "Find out what's new in Microsoft Graph APIs, SDKs, documentation, and other resources." author: "lauragra" ms.localizationpriority: high -ms.date: 06/15/2026 +ms.date: 06/23/2026 ms.topic: whats-new --- @@ -30,17 +30,23 @@ Evaluate applications in the Microsoft Entra application gallery by using the [a ### Identity and access | Governance -Added the **type** property to the [accessPackageResourceRole](/graph/api/resources/accesspackageresourcerole) resource to indicate whether an Azure resource role is active or eligible, enabling PIM-based role assignments for Azure resources in access packages. +- Added the [Get](/graph/api/accesspackagesubject-get) and [Update](/graph/api/accesspackagesubject-update) methods to the [accessPackageSubject](/graph/api/resources/accesspackagesubject) resource type to manage the subject lifecycle of external directory users in Microsoft Entra entitlement management. +- Added the **type** property to the [accessPackageResourceRole](/graph/api/resources/accesspackageresourcerole) resource to indicate whether an Azure resource role is active or eligible, enabling PIM-based role assignments for Azure resources in access packages. +- Added the [accessPackageSuggestion](/graph/api/resources/accesspackagesuggestion) resource type and related methods for discovering suggested access packages based on related people insights and assignment history. Use the [filterByCurrentUser](/graph/api/accesspackagesuggestions-filterbycurrentuser) function to retrieve personalized suggestions. +- Added the **approverInformationVisibility** property to the [accessPackageApprovalStage](/graph/api/resources/accesspackageapprovalstage) resource to control whether approver information is visible to requestors. +- Added the [endUserSettings](/graph/api/resources/endusersettings) resource type and related methods for configuring access package suggestion behavior, including related people insight levels and approver detail visibility. + +### Files | Reports + +Added the [getSharePointApiUsage](/graph/api/reportroot-getsharepointapiusage?view=graph-rest-beta&preserve-view=true) method to the [reportRoot](/graph/api/resources/reportroot?view=graph-rest-beta&preserve-view=true) resource to retrieve aggregated OneDrive and SharePoint API usage metrics for a tenant. ### Identity and access | Identity and sign-in Added support for programmatic FIDO2 passkey registration. Use the [creationOptions](/graph/api/fido2authenticationmethod-creationoptions) function to get WebAuthn credential creation options, then complete registration by posting the new **publicKeyCredential** property to the [fido2AuthenticationMethod](/graph/api/resources/fido2authenticationmethod) resource. -### Identity and access | Governance +### Security | eDiscovery -- Added the [accessPackageSuggestion](/graph/api/resources/accesspackagesuggestion) resource type and related methods for discovering suggested access packages based on related people insights and assignment history. Use the [filterByCurrentUser](/graph/api/accesspackagesuggestions-filterbycurrentuser) function to retrieve personalized suggestions. -- Added the **approverInformationVisibility** property to the [accessPackageApprovalStage](/graph/api/resources/accesspackageapprovalstage) resource to control whether approver information is visible to requestors. -- Added the [endUserSettings](/graph/api/resources/endusersettings) resource type and related methods for configuring access package suggestion behavior, including related people insight levels and approver detail visibility. +Added the `cloudNativeHtmlConversion` member to the [additionalDataOptions](/graph/api/resources/security-ediscoveryaddtoreviewsetoperation#additionaldataoptions-values) enumeration. ### People and workplace intelligence @@ -67,9 +73,18 @@ Application permissions for the [user: translateExchangeIds](/graph/api/user-tra Added the [policyTipAction](/graph/api/resources/policytipaction?view=graph-rest-beta&preserve-view=true) resource type and the `policyTip` member to the **dlpAction** enumeration. This enables applications to receive policy tip guidance as a standalone action when DLP policies are triggered through the processContent and protectionScopes APIs. +### Agents | Agent identities + +Added the **appRoleAssignmentRequired** property to the [agentIdentity](/graph/api/resources/agentidentity?view=graph-rest-beta&preserve-view=true) resource. This property indicates whether users or service principals must be explicitly granted an app role assignment before they can access the agent identity. + ### Backup storage -Use the new full workload backup APIs to protect entire Microsoft 365 workloads (SharePoint Online, OneDrive for work or school, and Exchange Online) with minimal administrative overhead. Instead of manually selecting each item to protect, you can create a protection policy that backs up all data in a workload and then specify only the items to exclude from backup. For more information, see [exclusionUnitBase](/graph/api/resources/exclusionunitbase?view=graph-rest-beta&preserve-view=true) and [exclusionUnitBulkAdditionJob](/graph/api/resources/exclusionunitbulkadditionjob?view=graph-rest-beta&preserve-view=true). +- Added support for full workload backup APIs to protect entire Microsoft 365 workloads (SharePoint Online, OneDrive for work or school, and Exchange Online) with minimal administrative overhead. Create a protection policy that backs up all data in a workload and specify only the items to exclude from backup. For more information, see [exclusionUnitBase](/graph/api/resources/exclusionunitbase?view=graph-rest-beta&preserve-view=true). +- Deprecated the **queryExpression** property on the [artifactQuery](/graph/api/resources/artifactquery?view=graph-rest-beta&preserve-view=true) resource. Use the **structuredQueryExpression** property instead to create structured search queries. + +### Teamwork and communications | Calls and online meetings + +Use the **isRegistrationRequired** property on the [virtualEventTownhall](/graph/api/resources/virtualeventtownhall?view=graph-rest-beta&preserve-view=true) and [virtualEventWebinar](/graph/api/resources/virtualeventwebinar?view=graph-rest-beta&preserve-view=true) resources to specify if attendees must complete the registration flow before they can attend. ### Teamwork and communications | Calls and online meetings @@ -79,6 +94,10 @@ Use the **isRegistrationRequired** property on the [virtualEventTownhall](/graph Use the [cloudPcProvisioningPolicy: apply](/graph/api/cloudpcprovisioningpolicy-apply?view=graph-rest-beta&preserve-view=true) method to apply policy settings such as `region` and `singleSignOn`. This method also supports reprovisioning for frontline shared mode Cloud PCs by using the **reservePercentage** parameter to control the percentage of Cloud PCs that remain available during the process. +### Device and app management | Device updates + +Added the [updateCategoryEnrollmentInformation](/graph/api/resources/windowsupdates-updatecategoryenrollmentinformation?view=graph-rest-beta&preserve-view=true) resource type to manage per-category enrollment state for Windows Updates. Use it to track enrollment state changes across update categories and access the current enrollment configuration through the [updateManagementEnrollment](/graph/api/resources/windowsupdates-updatemanagementenrollment?view=graph-rest-beta&preserve-view=true) and [azureADDevice](/graph/api/resources/windowsupdates-azureaddevice?view=graph-rest-beta&preserve-view=true) resources. + ### Files [Upsert](/graph/api/filestoragecontainer-patch-permissions?view=graph-rest-beta&preserve-view=true) (create or update) up to 40 permissions on a [fileStorageContainer](/graph/api/resources/filestoragecontainer?view=graph-rest-beta&preserve-view=true) in a single request. The limit increased from 10 to 40 [permission](/graph/api/resources/permission?view=graph-rest-beta&preserve-view=true) objects per request. @@ -104,13 +123,29 @@ Introduced programmatic management of personal distribution lists in user mailbo Personal distribution lists enable users to group email recipients together and send messages to all members at once without entering each address individually. +### Reports | Identity and access reports + +Added the [identityAnalyticsRoot](/graph/api/resources/identityanalyticsroot?view=graph-rest-beta&preserve-view=true) resource type to provide point-in-time identity analytics for your tenant, starting with analytics about your groups such as their membership, ownership, and type. + ### Security +- Added the `cloudNativeHtmlConversion` member to the [additionalDataOptions](/graph/api/resources/security-ediscoveryaddtoreviewsetoperation?view=graph-rest-beta&preserve-view=true#additionaldataoptions-values) enumeration. - Introduced [sensor migration](/graph/api/resources/security-sensormigration?view=graph-rest-beta&preserve-view=true) capabilities to migrate eligible Microsoft Defender for Identity sensors. - Use the [Create manualAlert](/graph/api/security-alert-post-manualalert?view=graph-rest-beta&preserve-view=true) method to create a manual security alert with specified entities and metadata. The new [manualAlert](/graph/api/resources/security-manualalert?view=graph-rest-beta&preserve-view=true) resource type derives from [alert](/graph/api/resources/security-alert?view=graph-rest-beta&preserve-view=true) and uses the [entityDefinitionInput](/graph/api/resources/security-entitydefinitioninput?view=graph-rest-beta&preserve-view=true) complex type to specify associated entities. - Added the **tenantId** property to the [userAccount](/graph/api/resources/security-useraccount?view=graph-rest-beta&preserve-view=true) resource to provide the Entra home tenant ID for the compromised user account indicated in a [security alert](/graph/api/resources/security-alert?view=graph-rest-beta&preserve-view=true) where the alert evidence is related to a [processEvidence](/graph/api/resources/security-processevidence?view=graph-rest-beta&preserve-view=true), [userEvidence](/graph/api/resources/security-userevidence?view=graph-rest-beta&preserve-view=true), or [mailboxEvidence](/graph/api/resources/security-mailboxevidence?view=graph-rest-beta&preserve-view=true). - Updated the [custom detection rules API](/graph/api/resources/security-detectionrule?view=graph-rest-beta&preserve-view=true) in Microsoft 365 Defender with new capabilities, including: Infrastructure-as-code (IaC) support through user-defined IDs, custom run frequency, flexible entity mapping, custom alert details, and configurable response actions. +### Security | Data security and compliance + +Added the [policyTipAction](/graph/api/resources/policytipaction?view=graph-rest-beta&preserve-view=true) resource type and the `policyTip` member to the **dlpAction** enumeration. This enables applications to receive policy tip guidance as a standalone action when DLP policies are triggered through the processContent and protectionScopes APIs. + +### Security | Email and collaboration protection + +- Use the [analyzedEmail](/graph/api/resources/security-analyzedemail?view=graph-rest-beta&preserve-view=true) resource type and its associated methods to give Security Operations teams direct, near real-time access to query email threats, indicators of compromise (IOCs), attack vectors, and evidence in a tenant. Email metadata, verdict information, related underlying entities such as attachments and URLs, filters, and timeline events are returned to support investigation and response. +- [List analyzedEmails](/graph/api/security-collaborationroot-list-analyzedemails?view=graph-rest-beta&preserve-view=true) under the collaboration root to retrieve email records for a time range with support for `$filter`, `$top`, `$count`, and `$skiptoken`. +- [Get analyzedEmail](/graph/api/security-analyzedemail-get?view=graph-rest-beta&preserve-view=true) to read the properties of a specific email, including its attachments, URLs, threat detection details, and timeline events. +- [analyzedEmail: remediate](/graph/api/security-analyzedemail-remediate?view=graph-rest-beta&preserve-view=true) to trigger purge actions (move to junk, move to Inbox, soft delete, hard delete, move to deleted items, move to quarantine) for SOAR integrations, playbooks, and automations. + ### Sites and lists Added the [sharePointReportSettings](/graph/api/resources/sharepointreportsettings?view=graph-rest-beta&preserve-view=true) resource type and related methods for managing SharePoint API usage report metrics. Use the [enableApiUsageReport](/graph/api/sharepointreportsettings-enableapiusagereport?view=graph-rest-beta&preserve-view=true) and [disableApiUsageReport](/graph/api/sharepointreportsettings-disableapiusagereport?view=graph-rest-beta&preserve-view=true) methods to control which metrics are collected and reported for your tenant. @@ -121,12 +156,25 @@ Added support for tracking task history in Planner. Use the [plannerHistoryItem] ### Teamwork and communications | Calls and online meetings +- Use the **isRegistrationRequired** property on the [virtualEventTownhall](/graph/api/resources/virtualeventtownhall?view=graph-rest-beta&preserve-view=true) and [virtualEventWebinar](/graph/api/resources/virtualeventwebinar?view=graph-rest-beta&preserve-view=true) resources to specify if attendees must complete the registration flow before they can attend. - Use the **meetingType** property on [onlineMeeting](/graph/api/resources/onlinemeeting?view=graph-rest-beta&preserve-view=true) and [virtualEventSession](/graph/api/resources/virtualeventsession?view=graph-rest-beta&preserve-view=true) to determine whether a meeting is ad hoc, scheduled, recurring, a broadcast, or a *Meet now* session. The property is defined on the [onlineMeetingBase](/graph/api/resources/onlinemeetingbase?view=graph-rest-beta&preserve-view=true) resource and uses the [onlineMeetingType](/graph/api/resources/onlinemeetingbase?view=graph-rest-beta&preserve-view=true#onlinemeetingtype-values) enumeration. - Use the **cloudVideoInteropInfo** property on [onlineMeeting](/graph/api/resources/onlinemeeting?view=graph-rest-beta&preserve-view=true) and [virtualEventSession](/graph/api/resources/virtualeventsession?view=graph-rest-beta&preserve-view=true) to get the conferencing device integration settings for [Cloud Video Interop](/microsoftteams/cloud-video-interop). +### Teamwork and communications | Messaging + +[Add](/graph/api/teamworksection-post-items?view=graph-rest-beta&preserve-view=true#example-2-add-a-community-to-a-section) a Viva Engage community to a [section](/graph/api/resources/teamworksection?view=graph-rest-beta&preserve-view=true). You can provide either the bare community ID returned when you [list communities](/graph/api/employeeexperience-list-communities?view=graph-rest-beta&preserve-view=true) (for example, `eyJfdHlwZSI6Ikdyb3VwIiwiaWQiOiIxOTAzMzYyMTIyMTAifQ`) or the full `19:{communityId}@EngageCommunity` thread ID. When you provide a bare community ID, the service automatically normalizes it to the `19:{communityId}@EngageCommunity` format; an ID that already includes the thread prefix is used as-is. + ### Teamwork and communications | Shift management -The **timeZone** property of the [schedule](/graph/api/resources/schedule?view=graph-rest-beta&preserve-view=true) resource must be set to an IANA time zone name, such as `America/Chicago` or `Europe/London`. For more information, see [Create or replace schedule](/graph/api/team-put-schedule?view=graph-rest-beta&preserve-view=true).‎ +The **timeZone** property of the [schedule](/graph/api/resources/schedule?view=graph-rest-beta&preserve-view=true) resource must be set to an IANA time zone name, such as `America/Chicago` or `Europe/London`. For more information, see [Create or replace schedule](/graph/api/team-put-schedule?view=graph-rest-beta&preserve-view=true). + +### Tenants | Cross-tenant migration + +[Validate](/graph/api/crosstenantmigrationjob-validate?view=graph-rest-beta&preserve-view=true) and [migrate](/graph/api/crosstenantmigrationjob-migrate?view=graph-rest-beta&preserve-view=true) a [cross-tenant migration job](/graph/api/resources/crosstenantmigrationjob?view=graph-rest-beta&preserve-view=true) asynchronously. A previously created job must pass validation before migration can start. + +### Tenants | Cross-tenant migration + +[Validate](/graph/api/crosstenantmigrationjob-validate?view=graph-rest-beta&preserve-view=true) and [migrate](/graph/api/crosstenantmigrationjob-migrate?view=graph-rest-beta&preserve-view=true) a [cross-tenant migration job](/graph/api/resources/crosstenantmigrationjob?view=graph-rest-beta&preserve-view=true) asynchronously. A previously created job must pass validation before migration can start. ### Tenants | Cross-tenant migration @@ -139,6 +187,8 @@ Added the **groupDisplayName** property to the [delegatedAdministrationRoleAssig ### Users Application permissions for the [user: translateExchangeIds](/graph/api/user-translateexchangeids?view=graph-rest-beta&preserve-view=true) API are supported only for request URLs that identify a user in the path. +- [Retrieve](/graph/api/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult?view=graph-rest-beta&preserve-view=true) the pending apply status of a [provisioning policy](/graph/api/resources/cloudpcprovisioningpolicy?view=graph-rest-beta&preserve-view=true) to determine whether unapplied changes exist for Cloud PCs. +- Use the **isForceUserLogoffEnabled** parameter and property on [cloudPcProvisioningPolicy: apply](/graph/api/cloudpcprovisioningpolicy-apply?view=graph-rest-beta&preserve-view=true) and [cloudPcPolicyScheduledApplyActionDetail](/graph/api/resources/cloudpcpolicyscheduledapplyactiondetail?view=graph-rest-beta&preserve-view=true) to indicate whether active Cloud PC sessions are forcibly signed out when reprovisioning begins. ## May 2026: New and generally available @@ -181,7 +231,7 @@ Use the mailbox import and export APIs in Microsoft Graph to build solutions tha ### People and workplace intelligence | People admin settings -Use the **isVisible** property on [profileCardProperty](/graph/api/resources/profilecardproperty) to indicate whether the given directory property should be shown on a user’s profile card. +Use the **isVisible** property on [profileCardProperty](/graph/api/resources/profilecardproperty) to indicate whether the given directory property should be shown on a user's profile card. ### Security | Alerts and incidents @@ -246,6 +296,10 @@ Use the [List](/graph/api/peopleadminsettings-list-photoupdatesettings?view=grap - Added the [identityCorrelation](/graph/api/resources/identitycorrelation?view=graph-rest-beta&preserve-view=true) resource type and related methods for viewing identity correlation reports between on-premises directories and Microsoft Entra ID. - Added the `passwordSubmit` member to the [authenticationEventType](/graph/api/resources/enums?view=graph-rest-beta&preserve-view=true#authenticationeventtype-values) enumeration, surfaced through [appliedAuthenticationEventListener](/graph/api/resources/appliedauthenticationeventlistener?view=graph-rest-beta&preserve-view=true), to identify password-submission events in sign-in flows. +### Security | Advanced hunting + +Added the [getHuntingSchema](/graph/api/security-security-gethuntingschema?view=graph-rest-beta&preserve-view=true) method to the [security](/graph/api/resources/security?view=graph-rest-beta&preserve-view=true) resource to retrieve the available tables, columns, and functions for Microsoft Defender XDR advanced hunting queries. + ### Security | Alerts and incidents - Use the following new resources that extend the [alertEvidence](/graph/api/resources/security-alertevidence?view=graph-rest-beta&preserve-view=true) base type to provide detailed context about various artifacts involved in security alerts: @@ -281,10 +335,10 @@ Use the **scopeInfo** property on [teamsAppInstallation](/graph/api/resources/te Added support for `$expand` on the **items** relationship of the [teamworkSection](/graph/api/resources/teamworksection?view=graph-rest-beta&preserve-view=true) resource to retrieve a section together with its items in a single request. -### Tenants | Cross-tenant access +### Tenants | Cross-tenant access -Use the **sensorTypes** property on [sensorCandidate](/graph/api/resources/security-sensorcandidate?view=graph-rest-beta&preserve-view=true) to get the list of device types for the sensor. -Added the following properties and their associated complex types to the [crossTenantAccessPolicyConfigurationDefault](/graph/api/resources/crosstenantaccesspolicyconfigurationdefault?view=graph-rest-beta&preserve-view=true) and [crossTenantAccessPolicyConfigurationPartner](/graph/api/resources/crosstenantaccesspolicyconfigurationpartner?view=graph-rest-beta&preserve-view=true) resources of cross-tenant access policy APIs to support Microsoft 365 collaboration and app service connect settings: +- Use the **sensorTypes** property on [sensorCandidate](/graph/api/resources/security-sensorcandidate?view=graph-rest-beta&preserve-view=true) to get the list of device types for the sensor. +- Added the following properties and their associated complex types to the [crossTenantAccessPolicyConfigurationDefault](/graph/api/resources/crosstenantaccesspolicyconfigurationdefault?view=graph-rest-beta&preserve-view=true) and [crossTenantAccessPolicyConfigurationPartner](/graph/api/resources/crosstenantaccesspolicyconfigurationpartner?view=graph-rest-beta&preserve-view=true) resources of cross-tenant access policy APIs to support Microsoft 365 collaboration and app service connect settings: - **appServiceConnectInbound** property to get or set the default or partner-specific configuration for inbound app service connect settings. - **m365CollaborationInbound** property to get or set the default or partner-specific configuration for inbound Microsoft 365 collaboration settings. - **m365CollaborationOutbound** property get or set the default or partner-specific configuration for outbound Microsoft 365 collaboration settings.