From 41a8240c9e82349a6a695509e5b5cfd74e2a7fa5 Mon Sep 17 00:00:00 2001 From: "learn-build-service-prod[bot]" <113403604+learn-build-service-prod[bot]@users.noreply.github.com> Date: Thu, 18 Jun 2026 10:23:22 +0300 Subject: [PATCH 01/52] Resolve syncing conflicts from repo_sync_working_branch to main (#29086) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit * Use contractions in userdatasecurityandgovernance-processcontent * Use contractions in user-delta * Use contractions in user-findmeetingtimes * Use contractions in user-get * Use contractions in user-list-calendarview * Use contractions in user-list-events * Use contractions in user-list-mailfolders * Use contractions in user-list-messages * Use contractions in user-list-people * Use contractions in user-list-permissiongrants * Use contractions in userregistrationdetails-get * Use contractions in user-sendmail * Use contractions in verticalsection-update * Use contractions in virtualendpoint-list-serviceplans * Use contractions in virtualeventregistrationconfiguration-list-questions * Use contractions in virtualeventregistrationconfiguration-post-questions * Use contractions in virtualmachinewithawsstoragebucketaccessfinding-get * Use contractions in windowsupdates-deploymentaudience-updateaudiencebyid * Use contractions in windowsupdates-updatableasset-enrollassets * Use contractions in windowsupdates-updatableassetgroup-addmembers * Use contractions in workbook-tablerowoperationresult * Use contractions in x509certificateauthenticationmethodconfiguration-get * Use contractions in accessreviewinstance-update * Use contractions in accessreviewscheduledefinition-update * Use contractions in accessreviewset-post-definitions * Use contractions in accessreviewstage-update * Use contractions in agentidentityblueprint-list * Use contractions in agentidentity-list * Use contractions in agreementfile-get * Use contractions in agreementfile-list-localizations * Use contractions in allowedvalue-get * Use contractions in application-addkey * Use contractions in application-post-applications * Use contractions in application-removekey * Use contractions in application-update * Use contractions in approval-get * Use contractions in approval-list-stages * Use contractions in approvalstage-get * Use contractions in associatedteaminfo-list * Use contractions in attachment-createuploadsession * Use contractions in authenticationcombinationconfiguration-get * Use contractions in authenticationcontextclassreference-get * Use contractions in authenticationeventlistener-get * Use contractions in authentication-list-methods * Use contractions in authenticationmethod-get * Use contractions in authenticationmethodmodedetail-get * Use contractions in authenticationmethodspolicy-get * Use contractions in authenticationstrengthpolicy-get * Use contractions in authenticationstrengthpolicy-list-combinationconfigurations * Use contractions in authenticationstrengthpolicy-usage * Use contractions in authenticationstrengthroot-list-authenticationmethodmodes * Use contractions in backuprestoreroot-list-onedriveforbusinessbrowsesessions * Use contractions in backuprestoreroot-list-sharepointbrowsesessions * Use contractions in basesitepage-list * Use contractions in bitlocker-list-recoverykeys * Use contractions in bookingappointment-update * Use contractions in bookingbusiness-list * Use contractions in bookingcustomer-get * Use contractions in bundle-removeitem * Use contractions in bundle-update * Use contractions in calendar-list-calendarview * Use contractions in call-keepalive * Use contractions in call-list-participants * Use contractions in call-reject * Use contractions in channel-get-members * Use contractions in chat-delete * Use contractions in chat-get * Use contractions in chat-get-members * Use contractions in chat-list-members * Use contractions in contenttype-delete * Use contractions in conversationmember-list * Use contractions in directory-list-customsecurityattributedefinitions * Use contractions in directoryobject-delta * Use contractions in domain-delete * Use contractions in domain-get-rootdomain * Use contractions in domain-list-federationconfiguration * Use contractions in drive-get-specialfolder * Use contractions in driveitem-copy * Use contractions in driveitem-createlink * Use contractions in driveitem-search * Use contractions in driveitemversion-get * Use contractions in educationclass-delta * Use contractions in educationclass-post * Use contractions in entitlementmanagementsettings-get * Use contractions in externalauthenticationmethodconfiguration-get * Use contractions in externalconnectors-externalgroup-update * Use contractions in externalconnectors-externalitem-get * Use contractions in externalconnectors-schema-get * Use contractions in fido2authenticationmethod-list * Use contractions in group-delta * Use contractions in group-list-acceptedsenders * Use contractions in group-list-calendarview * Use contractions in group-post-members * Use contractions in group-update * Use contractions in identitygovernance-insights-workflowsprocessedsummary * Use contractions in identitygovernance-task-get * Use contractions in identitygovernance-workflowtemplate-get * Use contractions in identityuserflowattributeassignment-update * Use contractions in inferenceclassification-list-overrides * Use contractions in internaldomainfederation-get * Use contractions in learningcourseactivity-update * Use contractions in list-get * Use contractions in listitem-delete * Use contractions in listitem-update * Use contractions in mailfolder-list-childfolders * Use contractions in message-createreply * Use contractions in message-createreplyall * Use contractions in message-delta * Use contractions in message-reply * Use contractions in message-replyall * Use contractions in offershiftrequest-get * Use contractions in onlinemeeting-createorget * Use contractions in orgcontact-delta * Use contractions in outlookuser-supportedtimezones * Use contractions in permissiongrantpolicy-update * Use contractions in permission-update * Use contractions in phoneauthenticationmethod-update * Use contractions in plannerassignedtotaskboardtaskformat-update * Use contractions in post-post-attachments * Use contractions in printdocument-createuploadsession * Use contractions in printer-update * Use contractions in printjob-cancel * Use contractions in projectrome-put-activity * Use contractions in qrcode-get * Use contractions in reportroot-getemailactivitycounts * Use contractions in reportroot-getemailactivityusercounts * Use contractions in reportroot-getemailactivityuserdetail * Use contractions in reportroot-getemailappusageappsusercounts * Use contractions in reportroot-getemailappusageusercounts * Use contractions in reportroot-getemailappusageuserdetail * Use contractions in reportroot-getm365appplatformusercounts * Use contractions in reportroot-getm365appusercounts * Use contractions in reportroot-getm365appuserdetail * Use contractions in reportroot-getmailboxusagedetail * Use contractions in reportroot-getmailboxusagemailboxcounts * Use contractions in reportroot-getmailboxusagequotastatusmailboxcounts * Use contractions in reportroot-getmailboxusagestorage * Use contractions in reportroot-getoffice365activationcounts * Use contractions in reportroot-getoffice365activationsuserdetail * Use contractions in reportroot-getoffice365activeusercounts * Use contractions in reportroot-getoffice365activeuserdetail * Use contractions in reportroot-getoffice365groupsactivitycounts * Use contractions in reportroot-getoffice365groupsactivitydetail * Use contractions in reportroot-getoffice365groupsactivityfilecounts * Use contractions in reportroot-getoffice365groupsactivitystorage * Use contractions in reportroot-getoffice365servicesusercounts * Use contractions in reportroot-getonedriveactivityfilecounts * Use contractions in reportroot-getonedriveactivityusercounts * Use contractions in reportroot-getonedriveactivityuserdetail * Use contractions in reportroot-getonedriveusageaccountcounts * Use contractions in reportroot-getonedriveusageaccountdetail * Use contractions in reportroot-getonedriveusagefilecounts * Use contractions in reportroot-getsharepointactivityfilecounts * Use contractions in reportroot-getsharepointactivitypages * Use contractions in reportroot-getsharepointactivityuserdetail * Use contractions in reportroot-getsharepointsiteusagedetail * Use contractions in reportroot-getsharepointsiteusagefilecounts * Use contractions in reportroot-getsharepointsiteusagepages * Use contractions in reportroot-getsharepointsiteusagesitecounts * Use contractions in reportroot-getsharepointsiteusagestorage * Use contractions in reportroot-getskypeforbusinessactivitycounts * Use contractions in reportroot-getskypeforbusinessactivityusercounts * Use contractions in reportroot-getskypeforbusinessactivityuserdetail * Use contractions in reportroot-getskypeforbusinessdeviceusagedistributionusercounts * Use contractions in reportroot-getskypeforbusinessdeviceusageuserdetail * Use contractions in reportroot-getskypeforbusinessorganizeractivityminutecounts * Use contractions in reportroot-getskypeforbusinessparticipantactivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivitycounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityusercounts * Use contractions in reportroot-getteamsdeviceusageusercounts * Use contractions in reportroot-getteamsuseractivityusercounts * Use contractions in reportroot-getteamsuseractivityuserdetail * Use contractions in reportroot-getyammeractivitycounts * Use contractions in reportroot-getyammeractivityusercounts * Use contractions in reportroot-getyammeractivityuserdetail * Use contractions in reportroot-getyammerdeviceusagedistributionusercounts * Use contractions in reportroot-getyammerdeviceusageusercounts * Use contractions in reportroot-getyammerdeviceusageuserdetail * Use contractions in reportroot-getyammergroupsactivitycounts * Use contractions in reportroot-getyammergroupsactivitydetail * Use contractions in riskdetection-get * Use contractions in riskyuser-get * Use contractions in schedulinggroup-delete * Use contractions in schemaextension-delete * Use contractions in security-ediscoverysearch-list-lastestimatestatisticsoperation * Use contractions in security-host-list-childhostpairs * Use contractions in security-host-list-parenthostpairs * Use contractions in security-hostpair-get * Use contractions in security-threatintelligence-list-sslcertificates * Use contractions in servicehealthissue-get * Use contractions in servicehealthissue-incidentreport * Use contractions in serviceprincipal-get * Use contractions in serviceupdatemessage-get * Use contractions in sharedwithchannelteaminfo-get * Use contractions in sharedwithchannelteaminfo-list-allowedmembers * Use contractions in simulationautomation-get * Use contractions in simulation-get * Use contractions in singlevaluelegacyextendedproperty-get * Use contractions in sitepage-publish * Use contractions in sitepage-update * Use contractions in site-search * Use contractions in subjectrightsrequest-list-notes * Use contractions in subscribedsku-list * Use contractions in synchronization-synchronizationschema-delete * Use contractions in synchronization-synchronizationschema-update * Use contractions in teamsapp-delete * Use contractions in teamsapp-publish * Use contractions in teamsapp-update * Use contractions in teamworktag-get * Use contractions in tenantappmanagementpolicy-update * Use contractions in tenantdatasecurityandgovernance-processcontentasync * Use contractions in timeoffrequest-get * Use contractions in todotask-delta * Use contractions in todotask-list-checklistitems * Use contractions in todotask-post-attachments * Use contractions in userdatasecurityandgovernance-processcontent * Use contractions in user-delta * Use contractions in user-findmeetingtimes * Use contractions in user-list-calendarview * Use contractions in user-list-mailfolders * Use contractions in user-list-messages * Use contractions in userregistrationdetails-get * Use contractions in user-sendmail * Use contractions in verticalsection-update * Use contractions in virtualeventregistrationconfiguration-list-questions * Use contractions in virtualeventregistration-list * Use contractions in virtualeventregistration-list-sessions * Use contractions in virtualeventwebinar-post-registrations * Use contractions in webpart-delete * Use contractions in workbook-tablerowoperationresult * Use contractions in x509certificateauthenticationmethodconfiguration-get * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * Update simulation-update.md for requirement around simuation state (#9936) * Update simulation-update.md for requirement around simuation state Clarified simulation state as draft as required and updated description. * Minor fixes --------- Co-authored-by: Faith Moraa Ombongi * Publish main to live - reconcile divergence 2026-06-17 Sets live content identical to main to clear the squash-induced divergence. No manual live hotfixes existed. * Reconcile live to main (unblock auto-publish #29094) (#29095) * Publish main to live - reconcile divergence (refresh 2026-06-17 18:25) Sets live content identical to current main. main is authoritative; no live-only hotfixes. * Update tenantappmanagementpolicy-get.md --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Merge to publish. (#29097) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update reference TOC (#29058) Co-authored-by: Microsoft Graph DevX Tooling * Update profilePropertySetting docs (#29038) * Updated according to KnutB's spec * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update peopleadminsettings-list-profilepropertysettings.md * Update profilepropertysetting.md * Move extended Delete description from resource table to API topic * Apply suggestion from @MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222741 (#29057) Co-authored-by: Microsoft Graph DevX Tooling * Update generated permissions tables with build 222558 (#29051) Co-authored-by: Microsoft Graph DevX Tooling * Revise traceRouteHop availability in callRecord docs (#29055) * Revise traceRouteHop availability in callRecord docs * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update whats-new-overview.md (#29010) * Update whats-new-overview.md * Update whats-new-overview.md --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update pull request template to remove documentation plan requirement (#29069) Removed the requirement to attach the documentation plan for AI-assisted docs authoring. * 2026-06-15: Automated permissions reference update (#29068) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Update generated permissions tables with build 222982 (#29067) Co-authored-by: Microsoft Graph DevX Tooling * Update whats-new-overview.md (#29064) * Update whats-new-overview.md * Update whats-new-overview.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add tenantId property to userAccount resource (#28845) * Add tenantId field to security user account resource Added tenantId field to user account resource details. * Update userAccount resource date and add tenantId * Update date for security userAccount resource * Update changelog with new API changes Added new changelog entries for tenantId and categories properties in userAccount resource. * Apply review suggestions: update changelog dates and add What's New entry for tenantId on userAccount * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi --------- Co-authored-by: Faith Moraa Ombongi Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Add mergeIncidents and moveAlerts v1.0 API docs (#28851) * Add mergeIncidents and moveAlerts v1.0 API docs Add v1.0 documentation for security action endpoints: - API pages: security-incident-mergeincidents.md, security-alert-movealerts.md - Resource pages: security-mergeresponse.md, security-correlationreason.md - Permission and RBAC include files - Update security-incident.md and security-alert.md Methods tables - Update v1.0 toc.mapping.json with new complex types - Add v1.0 changelog entries for all new artifacts Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Fix comments * Apply suggestion from @FaithOmbongi * Update what's new --------- Co-authored-by: Harel Damti Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * Update reference TOC (#29071) Co-authored-by: Microsoft Graph DevX Tooling * Update people doc (#29023) * Updated people & workplace intelligence document according to Knut Brandrud's proposal reviewed within our team. * Minor typo Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Address review comments in social intelligence overview * Apply remaining review thread doc fixes * minor date fix Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * date --------- Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add isVisible property to lpc v1.0 (#28915) * Add isVisible property to lpc v1.0 * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update Microsoft.People.json * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @Danipocket --------- Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply simulation-update v1.0 PR #9936 changes to beta file (#29077) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Remove unsupported expand query from getRetentionLabel docs (#29080) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated files with build 223158 (#29075) Co-authored-by: Microsoft Graph DevX Tooling * Resolve syncing conflicts from repo_sync_working_branch to main (#29076) * Enhance clarity in API documentation by updating request and response example phrasing across multiple files * Apply suggestions from code review Co-authored-by: Jarbas Horst * Fix trailing pipe tables 1.0 (#9930) * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudclipboardroot-list-items * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in itemactivitystat-getactivitybyinterval * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in tablecolumncollection-add * Fix trailing pipe formatting in user-findmeetingtimes * Apply suggestions from code review Co-authored-by: Jarbas Horst --------- Co-authored-by: Jarbas Horst * Fix missing closing codeblock beta (#9919) * Fix formatting of HTTP request example in accesspackageresource-list-uploadsessions.md * Fix missing closing code block in security-labelsroot-delete-citations.md * Fix missing closing code block in singlevaluelegacyextendedproperty-get.md * Fix missing closing code block in usersettings-list-windows.md * Fix missing closing code block in webapplicationfirewallprovider-verify.md * Fix missing closing code block in windowssetting-get.md * Fix missing closing code block in windowssetting-list-instances.md * fix(beta api): close malformed http code fence in windowssettinginstance-get * Apply suggestions from code review Co-authored-by: Jarbas Horst --------- Co-authored-by: Jarbas Horst * Update synchronization-synchronization-list-templates.md (#9922) Update headings from H3 to H2. * Update https://github.com/microsoftgraph/microsoft-graph-docs-contrib/edit/main/api-reference/v1.0/api/synchronization-synchronizationtemplate-get.md (#9923) Update headings from H3 to H2. * Update synchronization-synchronizationtemplate-update.md (#9924) Update headings from H3 to H2. * Update eventmessage-post-attachments.md (#9926) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update event-post-attachments.md (#9925) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update educationassignment-list-resources.md (#9927) Update formatting * Update provisioningobjectsummary-list.md (#9928) Fix typo in error response example section * Fix trailing pipe tables beta (#9929) * Fix trailing pipe formatting in b2cidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bookingbusiness-update * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudpc-retrievecloudpccountbystatus * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in contenttype-associatewithhubsites * Fix trailing pipe formatting in customdataprovidedresourceuploadsession-uploadfile * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in ediscovery-noncustodialdatasource-post * Fix trailing pipe formatting in get-device-command-status * Fix trailing pipe formatting in governancerolesetting-update * Fix trailing pipe formatting in industrydata-inboundapiflow-post * Fix trailing pipe formatting in itemactivity-getbyinterval * Fix trailing pipe formatting in listitem-createlink * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in message-createreply * Fix trailing pipe formatting in networkaccess-reports-getdestinationsummaries * Fix trailing pipe formatting in networkaccess-reports-getdeviceusagesummary * Fix trailing pipe formatting in pagetemplate-delete * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in rbacapplication-post-roleassignmentschedulerequests * Fix trailing pipe formatting in security-collaborationroot-list-analyzedemails * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in send-device-command * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in team-sendactivitynotification * Fix trailing pipe formatting in termstore-relation-post * Fix trailing pipe formatting in user-list-devices * Fix trailing pipe formatting in user-sendmail * Fix trailing pipe formatting in webpart-delete --------- Co-authored-by: Jarbas Horst * Fix missing closing codeblock 1.0 (#9920) * Fix missing closing http fence in security-auditlogquery-list-records * Fix missing closing http fence in userprotectionscopecontainer-compute * Fix missing closing http fence in usersettings-list-windows --------- Co-authored-by: Jarbas Horst * Update date range (#9931) When requesting a date over 28 days the API returns: "Invalid date value specified: 2026-04-06. Only support data for the past 28 days." * Correct date range for email activity report (#9932) https://github.com/microsoftgraph/microsoft-graph-docs-contrib/pull/9931/changes * Change user ID to placeholder in processContent API (#9921) * Change user ID to placeholder in processContent API Updated user ID placeholder in processContent API calls. * Update userdatasecurityandgovernance-processcontent.md Updated example user ID in processContent API calls. * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * Update simulation-update.md for requirement around simuation state (#9936) * Update simulation-update.md for requirement around simuation state Clarified simulation state as draft as required and updated description. * Minor fixes --------- Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Jarbas Horst Co-authored-by: Jarbas Horst Co-authored-by: learn-build-service-prod[bot] <113403604+learn-build-service-prod[bot]@users.noreply.github.com> Co-authored-by: Learn Build Service GitHub App Co-authored-by: Jarbas Horst <26866873+JarbasHorst@users.noreply.github.com> Co-authored-by: Ryutaro Koma Co-authored-by: Micah Warren <26724012+MicahWW@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Vipul <84970543+VipulMSFT@users.noreply.github.com> * Document provisioning workflow support in Lifecycle Workflows (beta) (#28966) * Document provisioning workflow support in Lifecycle Workflows (beta) Add public preview documentation for provisioning workflow features in Microsoft Graph Lifecycle Workflows beta API. New resources: - workflowSubject (abstract base type) - provisioningObjectWorkflowSubject (concrete implementation) - attributeSetEntry (key-value pairs for attribute sets) - awaitedWorkflowProcessingResult (return type) - customTaskExtensionResponseData (extension response) - provisioningAttributeMapping (execution conditions) - subjectProcessingResult (entity for processing results) New API operations: - workflow: activateAndWait - run: list subjectProcessingResults - subjectProcessingResult: get - taskReport: list subjectProcessingResults Updated enumerations: - Added customTaskExtensionReplyMode enum - Added extensibility to lifecycleTaskCategory - Added extensibility to lifecycleWorkflowCategory - Added extensibilityOnDemand to workflowExecutionType Updates to existing resources: - customTaskExtension: added replyMode property - customTaskExtensionCallbackData: added targetSubject property - taskProcessingResult: added workflowSubject property - run: added subjectProcessingResults relationship and list method - taskReport: added subjectProcessingResults relationship and list method - workflow: added activateAndWait method Also includes changelog, What's New, TOC, and permissions updates. Workload: Microsoft.AAD.LCM Changelog GUID: 6a9c6f5d-eeb3-438e-b9f2-4705836e94fe * Clean up temp-docstubs folder Remove temporary authoring input files. Only temp-docstubs-instructions.md should remain. * Fix documentation validation errors - Fix openType metadata in subjectProcessingResult (was 'id', now false) - Remove tab syntax from HTTP-only examples (tabs require multiple SDK examples) * Fix changelog target and add missing complex types to TOC - Fixed changelog: Changed Target from customTaskExtensionCalloutData to customTaskExtensionCallbackData for targetSubject property - Removed workflowSubjectType enum entry (private preview feature) - Added missing complex types to TOC: attributeSetEntry, awaitedWorkflowProcessingResult, customTaskExtensionResponseData, provisioningAttributeMapping, provisioningObjectWorkflowSubject, workflowSubject * Remove taskProcessingResults expansion example - Removed Example 2 that demonstrated expanding taskProcessingResults relationship - Keep only the basic GET example without expansion * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * fix: update resource link prefixes in customTaskExtensionResponseData doc * Fix reference * Updates * Update reference TOC * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update api-reference/beta/api/identitygovernance-taskreport-list-subjectprocessingresults.md Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update api-reference/beta/api/identitygovernance-run-list-subjectprocessingresults.md Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update api-reference/beta/api/identitygovernance-taskreport-list-subjectprocessingresults.md Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update api-reference/beta/api/identitygovernance-run-list-subjectprocessingresults.md Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update perms * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix subject * Updates * Revert "Update perms" This reverts commit 636a2a571984b1f18c187522635abf853b55be2d. * Perms updates * Remove from docstubs * Fix broken link * fixes from code review * Update api-reference/beta/resources/identitygovernance-subjectprocessingresult.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/identitygovernance-awaitedworkflowprocessingresult.md Co-authored-by: Faith Moraa Ombongi * Update callout data * Updated changelog * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Mason Wolff Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * docs: Clarify MTO tenant API permission-to-property mapping and role access (#28886) * docs: clarify MTO tenant API permission-to-property mapping and role access - Add detailed permission-to-property mapping showing which properties are returned for each permission level - Document that Directory.Read.All also grants full read access to multitenant organization tenant resources (delegated or application) - Clarify that ReadBasic.All only returns displayName and tenantId, and only active tenants - Expand RBAC role documentation to specify that Security Reader and Global Reader can only read basic tenant info - Add guidance on which role is needed for full property access - Updated for both v1.0 and beta API references Addresses IcM 31000000597799 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * docs: add Directory.Read.All clarification to GET member endpoint Apply the same permission-to-property mapping to the multitenantorganizationmember-get API (v1.0 and beta). Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * fix: make RBAC include generic (shared across 6 MTO endpoints) The rbac-multitenantorganization-apis-read.md include is consumed by 6 different endpoints returning different resource types. Remove member-specific property names (displayName, tenantId, role, state, etc.) that are incorrect for the non-member endpoints (MTO object, join request, sync policy template, partner config template). Property-specific details remain in the individual API docs where they are correct and scoped to the right resource type. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * fix: add MultiTenantOrganization.Read.All to beta get-member docs * fix: add MultiTenantOrganization.Read.All to v1.0 get-member docs * fix: remove redundant RBAC statement per reviewer feedback * fix: remove redundant RBAC statement from v1.0 per reviewer feedback * Simplify permission callouts in beta list-tenants per reviewer suggestion * Simplify permission callouts in beta get-member per reviewer suggestion * Simplify permission callouts in v1.0 list-tenants per reviewer suggestion * Simplify permission callouts in v1.0 get-member per reviewer suggestion * fix: restore line endings mangled by Apply-Suggestion edits The 4 'Simplify permission callouts' commits collapsed the 4 MTO API doc files into single lines, breaking YAML frontmatter and Markdown structure. This caused the API Doctor validation to fail (h1-missing, title-missing, bookmark-not-found tabs, ms-date-missing, description-missing). This commit restores proper line endings while preserving the reviewer-approved simplified permission-to-property mapping that documents Directory.Read.All as an accepted permission for the MTO endpoints (per IcM 31000000597799 / MSRC 115408). --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update generated permissions tables with build 223315 (#29089) Co-authored-by: Microsoft Graph DevX Tooling * Move lifecycle workflows preview note from May to June 2026 What's New (#29090) * Move lifecycle workflows preview entry to June 2026 section * Apply suggestion from @FaithOmbongi --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * Adding Redirect URI Restrictions in App Management Policies (#28070) * Initial documentation on Redirect URI restrictions in App Management Policies * Update changelog/Microsoft.DirectoryServices.json Co-authored-by: Faith Moraa Ombongi * Update concepts/whats-new-overview.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiblockeddomainconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiwildcardexcludeformats.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiplatformalloweddomainconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiplatformblockeddomainconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiplatformblockedschemeconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiplatformallowedschemeconfiguration.md Co-authored-by: Faith Moraa Ombongi * Doc: update redirect URI restrictions and examples * Doc: add examples for updating redirect URI restrictions * Doc: update examples for tenantAppManagementPolicy to include redirect URI restrictions * Apply suggestion from @FaithOmbongi --------- Co-authored-by: Faith Moraa Ombongi Co-authored-by: Copilot * Add personal distribution lists beta API documentation (#29046) * Add personal distribution lists beta API documentation Add documentation for personal distribution lists in the user's mailbox, including resource types, API methods, permission includes, changelog, What's New, and TOC mapping updates. New resources: - distributionList (entity type, inherits outlookItem) - distributionListMember (entity type) - member (complex type) - recipientType (enum type) New API methods (9): - List/Create/Get/Update/Delete distributionList - addMembers/deleteMembers actions - List/Get distributionListMembers Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.Exchange.json Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Align distributionLists docs with approved CSDL Apply review feedback from API team. CSDL is source of truth; docs now match the schema exactly. Resources: - member: replace emailAddress with key; add routingType and contactId - distributionListMember: replace emailAddress with contactId; add contact navigation property - distributionList: add notes, personIdentifier properties; add singleValueExtendedProperties navigation property; note that members, notes, personIdentifier are not returned by default API methods: - addMembers, deleteMembers: change return from 204 No Content to 200 OK with updated distributionList object; update request and response examples to use key/routingType/recipientType - Create, Update, Get, List distributionLists: remove members from example responses (not returned by default) - Get distributionList: note that members, notes, personIdentifier require explicit `` - List/Get distributionListMembers: replace emailAddress with contactId in example responses Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Revert "Align distributionLists docs with approved CSDL" This reverts commit 6636446866092d92ffbd80419cc67a3cb3bf885e. * Fix documentation clarity and consistency issues - Add clarity note to distributionlist members property - Mark displayName as optional in member complex type - Add read-only indicators to distributionListMember properties - Clarify parameter requirements in addMembers and deleteMembers * Fix PR review comments: align docs with API.md/CSDL source of truth - Fix string casing in JSON representations (String -> string) - Update addMembers/deleteMembers to return distributionList (not 204) - Remove members from default GET/List responses (requires $select) - Rename emailAddress to key in member complex type, add routingType and contactId - Update distributionListMember to use contactId instead of emailAddress - Fix all API examples to use correct property names Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update reference TOC * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * What's new update. * Fix changelog ChangedApiName format for bound actions Remove 'distributionList: ' prefix from addMembers and deleteMembers entries to match the standard changelog format used by other workloads. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> --------- Co-authored-by: Samuel Mwangi (from Dev Box) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Kimani Mwangi Co-authored-by: Microsoft Graph DevX Tooling --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@us… --------- Co-authored-by: Jarbas Horst <26866873+JarbasHorst@users.noreply.github.com> Co-authored-by: learn-build-service-prod[bot] <113403604+learn-build-service-prod[bot]@users.noreply.github.com> Co-authored-by: Learn Build Service GitHub App Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Vipul <84970543+VipulMSFT@users.noreply.github.com> Co-authored-by: Shlomo Sagir <51323195+shsagir@users.noreply.github.com> Co-authored-by: Matthew M. Co-authored-by: Yuvalabiri <154335961+Yuvalabiri@users.noreply.github.com> Co-authored-by: Ruth Waithera Co-authored-by: Jarbas Horst Co-authored-by: Jarbas Horst Co-authored-by: Ryutaro Koma Co-authored-by: Micah Warren <26724012+MicahWW@users.noreply.github.com> Co-authored-by: masonw1211 <31712004+masonw1211@users.noreply.github.com> Co-authored-by: Mason Wolff Co-authored-by: srinivaspadala-msft Co-authored-by: Anton Vanco <254866915+antonvano@users.noreply.github.com> Co-authored-by: Copilot Co-authored-by: Samuel Mwangi Co-authored-by: Samuel Mwangi (from Dev Box) Co-authored-by: Kimani Mwangi --- .../beta/api/accesspackageresourceenvironment-get.md | 2 +- api-reference/beta/api/accessreview-apply.md | 2 +- api-reference/beta/api/accessreview-list.md | 2 +- ...ccessreviewinstance-pendingaccessreviewinstances.md | 2 +- api-reference/beta/api/accessreviewinstance-update.md | 2 +- ...ssreviewinstancedecisionitem-listpendingapproval.md | 2 +- .../accessreviewscheduledefinition-list-instances.md | 4 ++-- .../beta/api/accessreviewset-list-definitions.md | 4 ++-- .../beta/api/accessreviewset-post-definitions.md | 2 +- api-reference/beta/api/accessreviewstage-update.md | 2 +- api-reference/beta/api/activitystatistics-list.md | 2 +- .../agentidentity-list-inheritedapproleassignments.md | 2 +- ...entidentity-list-inheritedoauth2permissiongrants.md | 2 +- api-reference/beta/api/agentidentity-list.md | 2 +- api-reference/beta/api/agentidentityblueprint-list.md | 2 +- api-reference/beta/api/agentinstance-update.md | 2 +- api-reference/beta/api/agreementfile-get.md | 2 +- .../beta/api/agreementfile-list-localizations.md | 2 +- api-reference/beta/api/allowedvalue-get.md | 2 +- .../beta/api/appcredentialsigninactivity-get.md | 2 +- api-reference/beta/api/application-addkey.md | 2 +- .../beta/api/application-post-applications.md | 2 +- api-reference/beta/api/application-removekey.md | 2 +- api-reference/beta/api/application-update.md | 2 +- api-reference/beta/api/approval-get.md | 2 +- api-reference/beta/api/approval-list-steps.md | 2 +- api-reference/beta/api/approvalstep-get.md | 2 +- .../beta/api/assignedcomputeinstancedetails-get.md | 2 +- .../beta/api/attachment-createuploadsession.md | 2 +- .../beta/api/attacksimulationoperation-get.md | 2 +- api-reference/beta/api/authentication-list-methods.md | 2 +- .../api/authenticationcombinationconfiguration-get.md | 2 +- .../api/authenticationcontextclassreference-get.md | 2 +- api-reference/beta/api/authenticationmethod-get.md | 2 +- .../beta/api/authenticationmethodmodedetail-get.md | 2 +- .../beta/api/authenticationmethodspolicy-get.md | 2 +- .../beta/api/authenticationstrengthpolicy-get.md | 2 +- ...ionstrengthpolicy-list-combinationconfigurations.md | 2 +- .../beta/api/authenticationstrengthpolicy-usage.md | 2 +- ...ationstrengthroot-list-authenticationmethodmodes.md | 2 +- .../beta/api/awsexternalsystemaccessfinding-get.md | 2 +- .../beta/api/awsexternalsystemaccessrolefinding-get.md | 2 +- .../awsidentityaccessmanagementkeyagefinding-get.md | 2 +- .../awsidentityaccessmanagementkeyusagefinding-get.md | 2 +- ...storeroot-list-onedriveforbusinessbrowsesessions.md | 2 +- .../backuprestoreroot-list-sharepointbrowsesessions.md | 2 +- api-reference/beta/api/basesitepage-list.md | 2 +- api-reference/beta/api/basetask-list-checklistitems.md | 2 +- .../beta/api/basetask-list-linkedresources.md | 2 +- api-reference/beta/api/bitlocker-list-recoverykeys.md | 4 ++-- api-reference/beta/api/bitlockerrecoverykey-get.md | 4 ++-- api-reference/beta/api/bookingbusiness-list.md | 2 +- api-reference/beta/api/bookingcustomer-get.md | 2 +- api-reference/beta/api/calendar-list-calendarview.md | 2 +- api-reference/beta/api/call-list-participants.md | 2 +- .../beta/api/certificateauthorityasentity-update.md | 2 +- .../certificatebasedapplicationconfiguration-update.md | 2 +- api-reference/beta/api/channel-get-members.md | 2 +- api-reference/beta/api/channel-list.md | 2 +- api-reference/beta/api/contenttype-delete.md | 2 +- api-reference/beta/api/customappscope-get.md | 2 +- ...irectory-list-customsecurityattributedefinitions.md | 2 +- .../api/directory-post-pendingexternaluserprofile.md | 2 +- api-reference/beta/api/directoryobject-delta.md | 2 +- api-reference/beta/api/domain-delete.md | 2 +- .../beta/api/domain-list-federationconfiguration.md | 2 +- api-reference/beta/api/domain-list-rootdomain.md | 2 +- api-reference/beta/api/drive-get-specialfolder.md | 2 +- api-reference/beta/api/driveitem-copy.md | 6 +++--- api-reference/beta/api/driveitem-search.md | 2 +- api-reference/beta/api/driveitemversion-get.md | 2 +- ...ry-sourcecollection-list-addtoreviewsetoperation.md | 2 +- ...ecollection-list-lastestimatestatisticsoperation.md | 2 +- .../beta/api/ediscovery-sourcecollection-purgedata.md | 2 +- api-reference/beta/api/educationcategory-delta.md | 2 +- api-reference/beta/api/educationclass-delta.md | 2 +- api-reference/beta/api/educationoutcome-update.md | 2 +- api-reference/beta/api/educationroot-post-classes.md | 2 +- api-reference/beta/api/educationschool-delta.md | 2 +- api-reference/beta/api/educationuser-delta.md | 2 +- .../beta/api/encryptedawsstoragebucketfinding-get.md | 2 +- .../api/encryptedazurestorageaccountfinding-get.md | 2 +- .../beta/api/encryptedgcpstoragebucketfinding-get.md | 2 +- api-reference/beta/api/endusernotification-get.md | 2 +- .../beta/api/entitlementmanagementsettings-get.md | 2 +- api-reference/beta/api/event-get.md | 4 ++-- .../externalauthenticationmethodconfiguration-get.md | 2 +- .../beta/api/externalconnectors-schema-get.md | 2 +- api-reference/beta/api/externalidentitiespolicy-get.md | 2 +- .../externallyaccessibleawsstoragebucketfinding-get.md | 2 +- ...xternallyaccessibleazureblobcontainerfinding-get.md | 2 +- .../externallyaccessiblegcpstoragebucketfinding-get.md | 2 +- .../beta/api/federatedtokenvalidationpolicy-get.md | 2 +- .../beta/api/governanceroleassignmentrequest-post.md | 4 ++-- api-reference/beta/api/governancerolesetting-update.md | 2 +- api-reference/beta/api/group-delta.md | 2 +- api-reference/beta/api/group-list-acceptedsenders.md | 2 +- api-reference/beta/api/group-list-calendarview.md | 2 +- api-reference/beta/api/group-list-permissiongrants.md | 2 +- api-reference/beta/api/group-post-members.md | 4 ++-- api-reference/beta/api/group-update.md | 4 ++-- api-reference/beta/api/group-upsert.md | 4 ++-- .../beta/api/hardwareoathauthenticationmethod-get.md | 2 +- .../hardwareoathtokenauthenticationmethoddevice-get.md | 2 +- ...itygovernance-insights-workflowsprocessedsummary.md | 2 +- api-reference/beta/api/identitygovernance-task-get.md | 2 +- .../api/identitygovernance-workflowtemplate-get.md | 2 +- .../api/identityuserflowattributeassignment-update.md | 2 +- .../beta/api/inactiveawsresourcefinding-get.md | 2 +- api-reference/beta/api/inactiveawsrolefinding-get.md | 2 +- .../api/inactiveazureserviceprincipalfinding-get.md | 2 +- .../beta/api/inactivegcpserviceaccountfinding-get.md | 2 +- api-reference/beta/api/inactivegroupfinding-get.md | 2 +- .../beta/api/inactiveserverlessfunctionfinding-get.md | 2 +- api-reference/beta/api/inactiveuserfinding-get.md | 2 +- .../beta/api/inferenceclassification-list-overrides.md | 2 +- api-reference/beta/api/insightssettings-update.md | 2 +- api-reference/beta/api/internaldomainfederation-get.md | 2 +- api-reference/beta/api/landingpage-get.md | 2 +- api-reference/beta/api/listitem-delete.md | 6 +++--- api-reference/beta/api/listitem-update.md | 2 +- api-reference/beta/api/loginpage-get.md | 2 +- api-reference/beta/api/mailfolder-list-childfolders.md | 2 +- api-reference/beta/api/message-createreply.md | 2 +- api-reference/beta/api/message-createreplyall.md | 2 +- api-reference/beta/api/message-get.md | 2 +- api-reference/beta/api/message-reply.md | 2 +- api-reference/beta/api/message-replyall.md | 2 +- ...etworkaccess-branchconnectivityconfiguration-get.md | 2 +- ...networkaccess-branchsite-list-forwardingprofiles.md | 2 +- api-reference/beta/api/networkaccess-connection-get.md | 2 +- api-reference/beta/api/networkaccess-devicelink-get.md | 2 +- .../beta/api/networkaccess-filteringpolicylink-get.md | 2 +- .../beta/api/networkaccess-filteringpolicylink-list.md | 2 +- .../beta/api/networkaccess-forwardingoptions-get.md | 2 +- .../beta/api/networkaccess-forwardingpolicylink-get.md | 2 +- .../beta/api/networkaccess-logs-list-connections.md | 2 +- .../beta/api/networkaccess-logs-list-traffic.md | 2 +- ...access-networkaccessroot-list-forwardingpolicies.md | 2 +- ...ess-networkaccessroot-list-tlsinspectionpolicies.md | 2 +- .../beta/api/networkaccess-networkaccesstraffic-get.md | 2 +- .../beta/api/networkaccess-policy-list-policyrules.md | 2 +- .../beta/api/networkaccess-policylink-list-policy.md | 2 +- api-reference/beta/api/networkaccess-policyrule-get.md | 2 +- ...workaccess-remotenetwork-list-forwardingprofiles.md | 2 +- ...ccess-remotenetworkconnectivityconfiguration-get.md | 2 +- .../networkaccess-reports-getconnectionsummaries.md | 2 +- .../beta/api/networkaccess-tenantstatus-get.md | 2 +- .../api/networkaccess-tlsinspectionpolicy-delete.md | 2 +- .../beta/api/networkaccess-tlsinspectionpolicy-get.md | 2 +- ...tworkaccess-tlsinspectionpolicy-list-policyrules.md | 2 +- .../beta/api/networkaccess-tlsinspectionrule-delete.md | 2 +- .../beta/api/networkaccess-tlsinspectionrule-get.md | 2 +- api-reference/beta/api/offershiftrequest-get.md | 2 +- api-reference/beta/api/onlinemeeting-createorget.md | 2 +- .../beta/api/openawssecuritygroupfinding-get.md | 2 +- ...roupfinding-list-assignedcomputeinstancesdetails.md | 2 +- .../api/opennetworkazuresecuritygroupfinding-get.md | 2 +- .../beta/api/organizationalbranding-post-themes.md | 2 +- .../beta/api/organizationalbrandingtheme-update.md | 2 +- .../beta/api/orgcontact-get-transitivereports.md | 2 +- .../beta/api/outlookuser-supportedtimezones.md | 2 +- .../beta/api/overprovisionedawsresourcefinding-get.md | 2 +- .../beta/api/overprovisionedawsrolefinding-get.md | 2 +- .../overprovisionedazureserviceprincipalfinding-get.md | 2 +- .../api/overprovisionedgcpserviceaccountfinding-get.md | 2 +- .../overprovisionedserverlessfunctionfinding-get.md | 2 +- .../beta/api/overprovisioneduserfinding-get.md | 2 +- ...smicrosoftauthenticatorauthenticationmethod-list.md | 2 +- api-reference/beta/api/peopleadminsettings-get.md | 2 +- api-reference/beta/api/permission-update.md | 2 +- .../beta/api/permissiongrantpreapprovalpolicy-get.md | 2 +- .../beta/api/permissionscreepindexdistribution-get.md | 2 +- .../api/plannerassignedtotaskboardtaskformat-update.md | 2 +- .../policyroot-list-federatedtokenvalidationpolicy.md | 2 +- ...licyroot-list-permissiongrantpreapprovalpolicies.md | 2 +- api-reference/beta/api/post-post-attachments.md | 2 +- api-reference/beta/api/post-reply.md | 2 +- .../beta/api/printdocument-createuploadsession.md | 4 ++-- api-reference/beta/api/printer-update.md | 2 +- api-reference/beta/api/printjob-cancel.md | 2 +- api-reference/beta/api/printjob-start.md | 2 +- .../api/privilegeescalationawsresourcefinding-get.md | 2 +- .../beta/api/privilegeescalationawsrolefinding-get.md | 2 +- .../privilegeescalationgcpserviceaccountfinding-get.md | 2 +- .../beta/api/privilegeescalationuserfinding-get.md | 2 +- api-reference/beta/api/program-delete.md | 2 +- api-reference/beta/api/projectrome-put-activity.md | 2 +- api-reference/beta/api/qrcode-get.md | 2 +- .../beta/api/qrcodepinauthenticationmethod-get.md | 2 +- .../qrcodepinauthenticationmethodconfiguration-get.md | 2 +- .../beta/api/reportroot-getemailactivitycounts.md | 2 +- .../beta/api/reportroot-getemailactivityusercounts.md | 2 +- .../beta/api/reportroot-getemailactivityuserdetail.md | 2 +- .../api/reportroot-getemailappusageappsusercounts.md | 2 +- .../beta/api/reportroot-getemailappusageusercounts.md | 2 +- .../beta/api/reportroot-getemailappusageuserdetail.md | 2 +- .../api/reportroot-getm365appplatformusercounts.md | 4 ++-- .../beta/api/reportroot-getm365appusercounts.md | 4 ++-- .../beta/api/reportroot-getm365appuserdetail.md | 4 ++-- .../beta/api/reportroot-getmailboxusagedetail.md | 2 +- .../api/reportroot-getmailboxusagemailboxcounts.md | 2 +- .../api/reportroot-getoffice365activationcounts.md | 2 +- .../reportroot-getoffice365activationsuserdetail.md | 2 +- .../reportroot-getoffice365groupsactivityfilecounts.md | 2 +- .../reportroot-getoffice365groupsactivitystorage.md | 2 +- .../api/reportroot-getonedriveactivityfilecounts.md | 2 +- .../api/reportroot-getonedriveusageaccountdetail.md | 2 +- .../beta/api/reportroot-getonedriveusagefilecounts.md | 2 +- .../api/reportroot-getsharepointactivityfilecounts.md | 2 +- .../api/reportroot-getsharepointactivityuserdetail.md | 2 +- .../reportroot-getskypeforbusinessactivitycounts.md | 2 +- ...reportroot-getskypeforbusinessactivityusercounts.md | 2 +- ...reportroot-getskypeforbusinessactivityuserdetail.md | 2 +- ...ortroot-getskypeforbusinessdeviceusageuserdetail.md | 2 +- ...getskypeforbusinessorganizeractivityminutecounts.md | 2 +- ...tskypeforbusinessparticipantactivityminutecounts.md | 2 +- ...root-getskypeforbusinesspeertopeeractivitycounts.md | 2 +- ...etskypeforbusinesspeertopeeractivityminutecounts.md | 2 +- ...-getskypeforbusinesspeertopeeractivityusercounts.md | 2 +- .../api/reportroot-getteamsuseractivityusercounts.md | 2 +- .../beta/api/reportroot-getyammeractivitycounts.md | 2 +- .../beta/api/reportroot-getyammeractivityusercounts.md | 2 +- .../api/reportroot-getyammerdeviceusageuserdetail.md | 2 +- api-reference/beta/api/riskdetection-get.md | 2 +- api-reference/beta/api/riskyusers-get.md | 2 +- api-reference/beta/api/schedule-get.md | 2 +- api-reference/beta/api/schedulinggroup-delete.md | 2 +- .../secretinformationaccessawsresourcefinding-get.md | 2 +- .../api/secretinformationaccessawsrolefinding-get.md | 2 +- ...nformationaccessawsserverlessfunctionfinding-get.md | 2 +- .../api/secretinformationaccessawsuserfinding-get.md | 2 +- ...overysearch-list-lastestimatestatisticsoperation.md | 2 +- .../beta/api/security-host-list-childhostpairs.md | 4 ++-- api-reference/beta/api/security-host-list-hostpairs.md | 4 ++-- .../beta/api/security-host-list-parenthostpairs.md | 4 ++-- api-reference/beta/api/security-hostpair-get.md | 4 ++-- .../securitytoolawsresourceadministratorfinding-get.md | 2 +- .../api/securitytoolawsroleadministratorfinding-get.md | 2 +- ...oolawsserverlessfunctionadministratorfinding-get.md | 2 +- .../api/securitytoolawsuseradministratorfinding-get.md | 2 +- api-reference/beta/api/servicehealthissue-get.md | 2 +- .../beta/api/servicehealthissue-incidentreport.md | 2 +- api-reference/beta/api/serviceprincipal-get.md | 2 +- .../beta/api/serviceprincipalsigninactivity-get.md | 2 +- api-reference/beta/api/serviceupdatemessage-get.md | 2 +- .../beta/api/sharedwithchannelteaminfo-get.md | 2 +- .../sharedwithchannelteaminfo-list-allowedmembers.md | 2 +- api-reference/beta/api/shift-get.md | 2 +- api-reference/beta/api/shiftpreferences-get.md | 2 +- api-reference/beta/api/simulation-get.md | 2 +- api-reference/beta/api/simulationautomation-get.md | 2 +- api-reference/beta/api/site-search.md | 2 +- api-reference/beta/api/sitepage-update.md | 2 +- .../beta/api/subjectrightsrequest-list-notes.md | 2 +- api-reference/beta/api/subscribedsku-list.md | 2 +- .../beta/api/subscription-post-subscriptions.md | 2 +- api-reference/beta/api/superawsresourcefinding-get.md | 2 +- api-reference/beta/api/superawsrolefinding-get.md | 2 +- .../beta/api/superazureserviceprincipalfinding-get.md | 2 +- .../beta/api/supergcpserviceaccountfinding-get.md | 2 +- .../beta/api/superserverlessfunctionfinding-get.md | 2 +- api-reference/beta/api/superuserfinding-get.md | 2 +- .../synchronization-synchronizationschema-delete.md | 2 +- api-reference/beta/api/team-list-allchannels.md | 2 +- api-reference/beta/api/teamsapp-delete.md | 2 +- api-reference/beta/api/teamsapp-publish.md | 2 +- api-reference/beta/api/teamsapp-update.md | 2 +- api-reference/beta/api/teamworkhostedcontent-get.md | 2 +- api-reference/beta/api/teamworktag-get.md | 2 +- api-reference/beta/api/teamworktagmember-get.md | 2 +- .../beta/api/tenantappmanagementpolicy-get.md | 1 + .../beta/api/tenantappmanagementpolicy-update.md | 2 +- ...antdatasecurityandgovernance-processcontentasync.md | 2 +- api-reference/beta/api/todotask-delta.md | 2 +- api-reference/beta/api/todotask-list-checklistitems.md | 2 +- api-reference/beta/api/todotask-post-attachments.md | 2 +- .../api/trustframework-put-trustframeworkpolicy.md | 4 ++-- .../beta/api/unenforcedmfaawsuserfinding-get.md | 2 +- .../beta/api/unifiedroleassignmentmultiple-update.md | 2 +- .../beta/api/unifiedrolemanagementalert-refresh.md | 2 +- api-reference/beta/api/user-delta.md | 2 +- api-reference/beta/api/user-findmeetingtimes.md | 4 ++-- api-reference/beta/api/user-get.md | 2 +- api-reference/beta/api/user-list-calendarview.md | 2 +- api-reference/beta/api/user-list-events.md | 2 +- api-reference/beta/api/user-list-mailfolders.md | 2 +- api-reference/beta/api/user-list-messages.md | 4 ++-- api-reference/beta/api/user-list-people.md | 2 +- api-reference/beta/api/user-list-permissiongrants.md | 2 +- api-reference/beta/api/user-sendmail.md | 2 +- api-reference/beta/api/useranalytics-get-settings.md | 2 +- .../userdatasecurityandgovernance-processcontent.md | 2 +- api-reference/beta/api/userregistrationdetails-get.md | 2 +- api-reference/beta/api/verticalsection-update.md | 4 ++-- .../beta/api/virtualendpoint-list-serviceplans.md | 2 +- ...ualeventregistrationconfiguration-list-questions.md | 2 +- ...ualeventregistrationconfiguration-post-questions.md | 2 +- ...tualmachinewithawsstoragebucketaccessfinding-get.md | 2 +- ...owsupdates-deploymentaudience-updateaudiencebyid.md | 2 +- .../api/windowsupdates-updatableasset-enrollassets.md | 2 +- .../windowsupdates-updatableassetgroup-addmembers.md | 2 +- .../beta/api/workbook-tablerowoperationresult.md | 2 +- ...certificateauthenticationmethodconfiguration-get.md | 2 +- api-reference/v1.0/api/accessreviewinstance-update.md | 2 +- .../v1.0/api/accessreviewscheduledefinition-update.md | 2 +- .../v1.0/api/accessreviewset-post-definitions.md | 2 +- api-reference/v1.0/api/accessreviewstage-update.md | 2 +- api-reference/v1.0/api/agentidentity-list.md | 2 +- api-reference/v1.0/api/agentidentityblueprint-list.md | 2 +- api-reference/v1.0/api/agreementfile-get.md | 2 +- .../v1.0/api/agreementfile-list-localizations.md | 2 +- api-reference/v1.0/api/allowedvalue-get.md | 2 +- api-reference/v1.0/api/application-addkey.md | 2 +- .../v1.0/api/application-post-applications.md | 2 +- api-reference/v1.0/api/application-removekey.md | 2 +- api-reference/v1.0/api/application-update.md | 2 +- api-reference/v1.0/api/approval-get.md | 2 +- api-reference/v1.0/api/approval-list-stages.md | 2 +- api-reference/v1.0/api/approvalstage-get.md | 2 +- api-reference/v1.0/api/associatedteaminfo-list.md | 2 +- .../v1.0/api/attachment-createuploadsession.md | 2 +- api-reference/v1.0/api/authentication-list-methods.md | 2 +- .../api/authenticationcombinationconfiguration-get.md | 2 +- .../api/authenticationcontextclassreference-get.md | 2 +- .../v1.0/api/authenticationeventlistener-get.md | 2 +- api-reference/v1.0/api/authenticationmethod-get.md | 2 +- .../v1.0/api/authenticationmethodmodedetail-get.md | 2 +- .../v1.0/api/authenticationmethodspolicy-get.md | 2 +- .../v1.0/api/authenticationstrengthpolicy-get.md | 2 +- ...ionstrengthpolicy-list-combinationconfigurations.md | 2 +- .../v1.0/api/authenticationstrengthpolicy-usage.md | 2 +- ...ationstrengthroot-list-authenticationmethodmodes.md | 2 +- ...storeroot-list-onedriveforbusinessbrowsesessions.md | 2 +- .../backuprestoreroot-list-sharepointbrowsesessions.md | 2 +- api-reference/v1.0/api/basesitepage-list.md | 2 +- api-reference/v1.0/api/bitlocker-list-recoverykeys.md | 4 ++-- api-reference/v1.0/api/bookingappointment-update.md | 2 +- api-reference/v1.0/api/bookingbusiness-list.md | 2 +- api-reference/v1.0/api/bookingcustomer-get.md | 2 +- api-reference/v1.0/api/bundle-removeitem.md | 2 +- api-reference/v1.0/api/bundle-update.md | 2 +- api-reference/v1.0/api/calendar-list-calendarview.md | 2 +- api-reference/v1.0/api/call-keepalive.md | 2 +- api-reference/v1.0/api/call-list-participants.md | 2 +- api-reference/v1.0/api/call-reject.md | 2 +- api-reference/v1.0/api/channel-get-members.md | 2 +- api-reference/v1.0/api/chat-delete.md | 2 +- api-reference/v1.0/api/chat-get-members.md | 2 +- api-reference/v1.0/api/chat-get.md | 2 +- api-reference/v1.0/api/chat-list-members.md | 2 +- api-reference/v1.0/api/contenttype-delete.md | 2 +- api-reference/v1.0/api/conversationmember-list.md | 2 +- ...irectory-list-customsecurityattributedefinitions.md | 2 +- api-reference/v1.0/api/directoryobject-delta.md | 2 +- api-reference/v1.0/api/domain-delete.md | 2 +- api-reference/v1.0/api/domain-get-rootdomain.md | 2 +- .../v1.0/api/domain-list-federationconfiguration.md | 2 +- api-reference/v1.0/api/drive-get-specialfolder.md | 2 +- api-reference/v1.0/api/driveitem-copy.md | 6 +++--- api-reference/v1.0/api/driveitem-createlink.md | 2 +- api-reference/v1.0/api/driveitem-search.md | 2 +- api-reference/v1.0/api/driveitemversion-get.md | 2 +- api-reference/v1.0/api/educationclass-delta.md | 2 +- api-reference/v1.0/api/educationclass-post.md | 2 +- .../v1.0/api/entitlementmanagementsettings-get.md | 2 +- .../externalauthenticationmethodconfiguration-get.md | 2 +- .../api/externalconnectors-externalgroup-update.md | 2 +- .../v1.0/api/externalconnectors-externalitem-get.md | 2 +- .../v1.0/api/externalconnectors-schema-get.md | 2 +- .../v1.0/api/fido2authenticationmethod-list.md | 2 +- api-reference/v1.0/api/group-delta.md | 2 +- api-reference/v1.0/api/group-list-acceptedsenders.md | 2 +- api-reference/v1.0/api/group-list-calendarview.md | 2 +- api-reference/v1.0/api/group-post-members.md | 4 ++-- api-reference/v1.0/api/group-update.md | 4 ++-- ...itygovernance-insights-workflowsprocessedsummary.md | 2 +- api-reference/v1.0/api/identitygovernance-task-get.md | 2 +- .../api/identitygovernance-workflowtemplate-get.md | 2 +- .../api/identityuserflowattributeassignment-update.md | 2 +- .../v1.0/api/inferenceclassification-list-overrides.md | 2 +- api-reference/v1.0/api/internaldomainfederation-get.md | 2 +- .../v1.0/api/learningcourseactivity-update.md | 2 +- api-reference/v1.0/api/list-get.md | 2 +- api-reference/v1.0/api/listitem-delete.md | 4 ++-- api-reference/v1.0/api/listitem-update.md | 2 +- api-reference/v1.0/api/mailfolder-list-childfolders.md | 2 +- api-reference/v1.0/api/message-createreply.md | 2 +- api-reference/v1.0/api/message-createreplyall.md | 4 ++-- api-reference/v1.0/api/message-delta.md | 2 +- api-reference/v1.0/api/message-reply.md | 2 +- api-reference/v1.0/api/message-replyall.md | 2 +- api-reference/v1.0/api/offershiftrequest-get.md | 2 +- api-reference/v1.0/api/onlinemeeting-createorget.md | 2 +- api-reference/v1.0/api/orgcontact-delta.md | 2 +- .../v1.0/api/outlookuser-supportedtimezones.md | 2 +- api-reference/v1.0/api/permission-update.md | 2 +- api-reference/v1.0/api/permissiongrantpolicy-update.md | 2 +- .../v1.0/api/phoneauthenticationmethod-update.md | 2 +- .../api/plannerassignedtotaskboardtaskformat-update.md | 2 +- api-reference/v1.0/api/post-post-attachments.md | 2 +- .../v1.0/api/printdocument-createuploadsession.md | 4 ++-- api-reference/v1.0/api/printer-update.md | 2 +- api-reference/v1.0/api/printjob-cancel.md | 2 +- api-reference/v1.0/api/projectrome-put-activity.md | 2 +- api-reference/v1.0/api/qrcode-get.md | 2 +- .../v1.0/api/reportroot-getemailactivitycounts.md | 2 +- .../v1.0/api/reportroot-getemailactivityusercounts.md | 2 +- .../v1.0/api/reportroot-getemailactivityuserdetail.md | 2 +- .../api/reportroot-getemailappusageappsusercounts.md | 2 +- .../v1.0/api/reportroot-getemailappusageusercounts.md | 2 +- .../v1.0/api/reportroot-getemailappusageuserdetail.md | 2 +- .../api/reportroot-getm365appplatformusercounts.md | 4 ++-- .../v1.0/api/reportroot-getm365appusercounts.md | 4 ++-- .../v1.0/api/reportroot-getm365appuserdetail.md | 4 ++-- .../v1.0/api/reportroot-getmailboxusagedetail.md | 2 +- .../api/reportroot-getmailboxusagemailboxcounts.md | 2 +- ...portroot-getmailboxusagequotastatusmailboxcounts.md | 2 +- .../v1.0/api/reportroot-getmailboxusagestorage.md | 2 +- .../api/reportroot-getoffice365activationcounts.md | 2 +- .../reportroot-getoffice365activationsuserdetail.md | 2 +- .../api/reportroot-getoffice365activeusercounts.md | 2 +- .../api/reportroot-getoffice365activeuserdetail.md | 2 +- .../api/reportroot-getoffice365groupsactivitycounts.md | 2 +- .../api/reportroot-getoffice365groupsactivitydetail.md | 2 +- .../reportroot-getoffice365groupsactivityfilecounts.md | 2 +- .../reportroot-getoffice365groupsactivitystorage.md | 2 +- .../api/reportroot-getoffice365servicesusercounts.md | 2 +- .../api/reportroot-getonedriveactivityfilecounts.md | 2 +- .../api/reportroot-getonedriveactivityusercounts.md | 2 +- .../api/reportroot-getonedriveactivityuserdetail.md | 2 +- .../api/reportroot-getonedriveusageaccountcounts.md | 2 +- .../api/reportroot-getonedriveusageaccountdetail.md | 2 +- .../v1.0/api/reportroot-getonedriveusagefilecounts.md | 2 +- .../api/reportroot-getsharepointactivityfilecounts.md | 2 +- .../v1.0/api/reportroot-getsharepointactivitypages.md | 2 +- .../api/reportroot-getsharepointactivityuserdetail.md | 2 +- .../api/reportroot-getsharepointsiteusagedetail.md | 2 +- .../api/reportroot-getsharepointsiteusagefilecounts.md | 2 +- .../v1.0/api/reportroot-getsharepointsiteusagepages.md | 2 +- .../api/reportroot-getsharepointsiteusagesitecounts.md | 2 +- .../api/reportroot-getsharepointsiteusagestorage.md | 2 +- .../reportroot-getskypeforbusinessactivitycounts.md | 2 +- ...reportroot-getskypeforbusinessactivityusercounts.md | 2 +- ...reportroot-getskypeforbusinessactivityuserdetail.md | 2 +- ...kypeforbusinessdeviceusagedistributionusercounts.md | 2 +- ...ortroot-getskypeforbusinessdeviceusageuserdetail.md | 2 +- ...getskypeforbusinessorganizeractivityminutecounts.md | 2 +- ...tskypeforbusinessparticipantactivityminutecounts.md | 2 +- ...root-getskypeforbusinesspeertopeeractivitycounts.md | 2 +- ...etskypeforbusinesspeertopeeractivityminutecounts.md | 2 +- ...-getskypeforbusinesspeertopeeractivityusercounts.md | 2 +- .../api/reportroot-getteamsdeviceusageusercounts.md | 2 +- .../api/reportroot-getteamsuseractivityusercounts.md | 2 +- .../api/reportroot-getteamsuseractivityuserdetail.md | 2 +- .../v1.0/api/reportroot-getyammeractivitycounts.md | 2 +- .../v1.0/api/reportroot-getyammeractivityusercounts.md | 2 +- .../v1.0/api/reportroot-getyammeractivityuserdetail.md | 2 +- ...troot-getyammerdeviceusagedistributionusercounts.md | 2 +- .../api/reportroot-getyammerdeviceusageusercounts.md | 2 +- .../api/reportroot-getyammerdeviceusageuserdetail.md | 2 +- .../api/reportroot-getyammergroupsactivitycounts.md | 2 +- .../api/reportroot-getyammergroupsactivitydetail.md | 2 +- api-reference/v1.0/api/riskdetection-get.md | 2 +- api-reference/v1.0/api/riskyuser-get.md | 2 +- api-reference/v1.0/api/schedulinggroup-delete.md | 2 +- api-reference/v1.0/api/schemaextension-delete.md | 2 +- ...overysearch-list-lastestimatestatisticsoperation.md | 2 +- .../v1.0/api/security-host-list-childhostpairs.md | 4 ++-- .../v1.0/api/security-host-list-parenthostpairs.md | 4 ++-- api-reference/v1.0/api/security-hostpair-get.md | 4 ++-- ...security-threatintelligence-list-sslcertificates.md | 4 ++-- api-reference/v1.0/api/servicehealthissue-get.md | 2 +- .../v1.0/api/servicehealthissue-incidentreport.md | 2 +- api-reference/v1.0/api/serviceprincipal-get.md | 2 +- api-reference/v1.0/api/serviceupdatemessage-get.md | 2 +- .../v1.0/api/sharedwithchannelteaminfo-get.md | 2 +- .../sharedwithchannelteaminfo-list-allowedmembers.md | 2 +- api-reference/v1.0/api/simulation-get.md | 2 +- api-reference/v1.0/api/simulationautomation-get.md | 2 +- .../v1.0/api/singlevaluelegacyextendedproperty-get.md | 10 +++++----- api-reference/v1.0/api/site-search.md | 2 +- api-reference/v1.0/api/sitepage-publish.md | 2 +- api-reference/v1.0/api/sitepage-update.md | 2 +- .../v1.0/api/subjectrightsrequest-list-notes.md | 2 +- api-reference/v1.0/api/subscribedsku-list.md | 2 +- .../synchronization-synchronizationschema-delete.md | 2 +- .../synchronization-synchronizationschema-update.md | 2 +- api-reference/v1.0/api/teamsapp-delete.md | 2 +- api-reference/v1.0/api/teamsapp-publish.md | 2 +- api-reference/v1.0/api/teamsapp-update.md | 2 +- api-reference/v1.0/api/teamworktag-get.md | 2 +- .../v1.0/api/tenantappmanagementpolicy-update.md | 2 +- ...antdatasecurityandgovernance-processcontentasync.md | 2 +- api-reference/v1.0/api/timeoffrequest-get.md | 2 +- api-reference/v1.0/api/todotask-delta.md | 2 +- api-reference/v1.0/api/todotask-list-checklistitems.md | 2 +- api-reference/v1.0/api/todotask-post-attachments.md | 2 +- api-reference/v1.0/api/user-delta.md | 2 +- api-reference/v1.0/api/user-findmeetingtimes.md | 4 ++-- api-reference/v1.0/api/user-list-calendarview.md | 2 +- api-reference/v1.0/api/user-list-mailfolders.md | 2 +- api-reference/v1.0/api/user-list-messages.md | 2 +- api-reference/v1.0/api/user-sendmail.md | 2 +- .../userdatasecurityandgovernance-processcontent.md | 2 +- api-reference/v1.0/api/userregistrationdetails-get.md | 2 +- api-reference/v1.0/api/verticalsection-update.md | 4 ++-- .../v1.0/api/virtualeventregistration-list-sessions.md | 2 +- .../v1.0/api/virtualeventregistration-list.md | 2 +- ...ualeventregistrationconfiguration-list-questions.md | 2 +- .../v1.0/api/virtualeventwebinar-post-registrations.md | 2 +- api-reference/v1.0/api/webpart-delete.md | 4 ++-- .../v1.0/api/workbook-tablerowoperationresult.md | 2 +- ...certificateauthenticationmethodconfiguration-get.md | 2 +- 514 files changed, 561 insertions(+), 560 deletions(-) diff --git a/api-reference/beta/api/accesspackageresourceenvironment-get.md b/api-reference/beta/api/accesspackageresourceenvironment-get.md index 0843ec0f7d5..24ba5b6eb2f 100644 --- a/api-reference/beta/api/accesspackageresourceenvironment-get.md +++ b/api-reference/beta/api/accesspackageresourceenvironment-get.md @@ -36,7 +36,7 @@ GET /identityGovernance/entitlementManagement/accessPackageResourceEnvironments/ ``` ## Optional query parameters -This method does not currently support [OData query parameters](/graph/query-parameters). +This method doesn't currently support [OData query parameters](/graph/query-parameters). ## Request headers |Name|Description| diff --git a/api-reference/beta/api/accessreview-apply.md b/api-reference/beta/api/accessreview-apply.md index e9481e53983..d3abc7accd5 100644 --- a/api-reference/beta/api/accessreview-apply.md +++ b/api-reference/beta/api/accessreview-apply.md @@ -19,7 +19,7 @@ Namespace: microsoft.graph In the Microsoft Entra [access reviews](../resources/accessreviews-root.md) feature, apply the decisions of a completed [accessReview](../resources/accessreview.md). The target object can be either a one-time access review, or an instance of a recurring access review. -After an access review is finished, either because it reached the end date or an administrator stopped it manually, and auto-apply wasn't configured for the review, you can call Apply to apply the changes. Until apply occurs, the decisions to remove access rights do not appear on the source resource, the users for instance retain their group memberships. By calling apply, the outcome of the review is implemented by updating the group or application. If a user's access was denied in the review, when an administrator calls this API, Microsoft Entra ID removes their membership or application assignment. +After an access review is finished, either because it reached the end date or an administrator stopped it manually, and auto-apply wasn't configured for the review, you can call Apply to apply the changes. Until apply occurs, the decisions to remove access rights don't appear on the source resource, the users for instance retain their group memberships. By calling apply, the outcome of the review is implemented by updating the group or application. If a user's access was denied in the review, when an administrator calls this API, Microsoft Entra ID removes their membership or application assignment. After an access review is finished, and auto-apply was configured, then the status of the review will change from Completed through intermediate states and finally will change to state Applied. You should expect to see denied users, if any, being removed from the resource group membership or app assignment in a few minutes. diff --git a/api-reference/beta/api/accessreview-list.md b/api-reference/beta/api/accessreview-list.md index 8112f66c2d0..4ad7a660b4d 100644 --- a/api-reference/beta/api/accessreview-list.md +++ b/api-reference/beta/api/accessreview-list.md @@ -47,7 +47,7 @@ GET /accessReviews?$filter=businessFlowTemplateId eq {businessFlowTemplate-id}&$ | Authorization | string | Bearer \{token\}. Required. | ## Request body -Do not supply a request body. +Don't supply a request body. ## Response If successful, this method returns a `200 OK` response code and an array of [accessReview](../resources/accessreview.md) objects in the response body. diff --git a/api-reference/beta/api/accessreviewinstance-pendingaccessreviewinstances.md b/api-reference/beta/api/accessreviewinstance-pendingaccessreviewinstances.md index 14f92ba19a4..2de4bca9910 100644 --- a/api-reference/beta/api/accessreviewinstance-pendingaccessreviewinstances.md +++ b/api-reference/beta/api/accessreviewinstance-pendingaccessreviewinstances.md @@ -46,7 +46,7 @@ The default page size for this API is 100 **accessReviewInstance** objects. To i None. ## Request body -Do not supply a request body. +Don't supply a request body. ## Response If successful, this method returns a `200 OK` response code and an array of [accessReviewInstance](../resources/accessreviewinstance.md) objects in the response body. diff --git a/api-reference/beta/api/accessreviewinstance-update.md b/api-reference/beta/api/accessreviewinstance-update.md index 68e3e363976..fa5e5359e86 100644 --- a/api-reference/beta/api/accessreviewinstance-update.md +++ b/api-reference/beta/api/accessreviewinstance-update.md @@ -52,7 +52,7 @@ PUT /identityGovernance/accessReviews/definitions/{accessReviewScheduleDefinitio |Property|Type|Description| |:---|:---|:---| -|fallbackReviewers|[accessReviewReviewerScope](../resources/accessreviewreviewerscope.md) collection|This collection of reviewer scopes is used to define the list of fallback reviewers. These fallback reviewers will be notified to take action if no users are found from the list of reviewers specified. This could occur when either the group owner is specified as the reviewer but the group owner does not exist, or manager is specified as reviewer but a user's manager does not exist. Optional. Updatable.| +|fallbackReviewers|[accessReviewReviewerScope](../resources/accessreviewreviewerscope.md) collection|This collection of reviewer scopes is used to define the list of fallback reviewers. These fallback reviewers will be notified to take action if no users are found from the list of reviewers specified. This could occur when either the group owner is specified as the reviewer but the group owner doesn't exist, or manager is specified as reviewer but a user's manager doesn't exist. Optional. Updatable.| |reviewers|[accessReviewReviewerScope](../resources/accessreviewreviewerscope.md) collection|This collection of access review scopes is used to define who the reviewers are. For examples of options for assigning reviewers, see [Assign reviewers to your access review definition using the Microsoft Graph API](/graph/accessreviews-scope-concept). Optional. Updatable.| |scope|[accessReviewScope](../resources/accessreviewscope.md)|Created based on **scope** and **instanceEnumerationScope** at the [accessReviewScheduleDefinition](../resources/accessreviewscheduledefinition.md) level. Defines the scope of users reviewed in a group. Read-only. Required but not updated.| diff --git a/api-reference/beta/api/accessreviewinstancedecisionitem-listpendingapproval.md b/api-reference/beta/api/accessreviewinstancedecisionitem-listpendingapproval.md index edc441cb0c2..0364daea265 100644 --- a/api-reference/beta/api/accessreviewinstancedecisionitem-listpendingapproval.md +++ b/api-reference/beta/api/accessreviewinstancedecisionitem-listpendingapproval.md @@ -46,7 +46,7 @@ The default page size for this API is 100 **accessReviewInstanceDecisionItem** o None. ## Request body -Do not supply a request body. +Don't supply a request body. ## Response If successful, this method returns a `200 OK` response code and an array of [accessReviewInstanceDecisionItem](../resources/accessreviewinstance.md) objects in the response body. diff --git a/api-reference/beta/api/accessreviewscheduledefinition-list-instances.md b/api-reference/beta/api/accessreviewscheduledefinition-list-instances.md index eb3689cea37..891ffa905b9 100644 --- a/api-reference/beta/api/accessreviewscheduledefinition-list-instances.md +++ b/api-reference/beta/api/accessreviewscheduledefinition-list-instances.md @@ -14,7 +14,7 @@ Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Retrieve the [accessReviewInstance](../resources/accessreviewinstance.md) objects for a specific [accessReviewScheduleDefinition](../resources/accessreviewscheduledefinition.md). A list of zero or more **accessReviewInstance** objects are returned, including all of their nested properties. Returned objects do not include associated accessReviewInstanceDecisionItems. To retrieve the decisions on the instance, use [List accessReviewInstanceDecisionItem](accessreviewinstance-list-decisions.md). +Retrieve the [accessReviewInstance](../resources/accessreviewinstance.md) objects for a specific [accessReviewScheduleDefinition](../resources/accessreviewscheduledefinition.md). A list of zero or more **accessReviewInstance** objects are returned, including all of their nested properties. Returned objects don't include associated accessReviewInstanceDecisionItems. To retrieve the decisions on the instance, use [List accessReviewInstanceDecisionItem](accessreviewinstance-list-decisions.md). [!INCLUDE [national-cloud-support](../../includes/all-clouds.md)] @@ -43,7 +43,7 @@ The default page size for this API is 100 **accessReviewInstance** objects. To i None. ## Request body -Do not supply a request body. +Don't supply a request body. ## Response If successful, this method returns a `200 OK` response code and an array of [accessReviewInstance](../resources/accessreviewinstance.md) objects in the response body. diff --git a/api-reference/beta/api/accessreviewset-list-definitions.md b/api-reference/beta/api/accessreviewset-list-definitions.md index 3483affe136..e4af3476eee 100644 --- a/api-reference/beta/api/accessreviewset-list-definitions.md +++ b/api-reference/beta/api/accessreviewset-list-definitions.md @@ -14,7 +14,7 @@ Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Retrieve the [accessReviewScheduleDefinition](../resources/accessreviewscheduledefinition.md) objects. A list of zero or more accessReviewScheduleDefinition objects are returned, including all of their nested properties, for each access review series created. This does not include the associated accessReviewInstance objects. +Retrieve the [accessReviewScheduleDefinition](../resources/accessreviewscheduledefinition.md) objects. A list of zero or more accessReviewScheduleDefinition objects are returned, including all of their nested properties, for each access review series created. This doesn't include the associated accessReviewInstance objects. [!INCLUDE [national-cloud-support](../../includes/all-clouds.md)] @@ -48,7 +48,7 @@ The default page size for this API is 100 **accessReviewScheduleDefinition** obj None. ## Request body -Do not supply a request body. +Don't supply a request body. ## Response If successful, this method returns a `200 OK` response code and an array of [accessReviewScheduleDefinition](../resources/accessreviewscheduledefinition.md) objects in the response body. diff --git a/api-reference/beta/api/accessreviewset-post-definitions.md b/api-reference/beta/api/accessreviewset-post-definitions.md index 6358abd40af..9f58f154919 100644 --- a/api-reference/beta/api/accessreviewset-post-definitions.md +++ b/api-reference/beta/api/accessreviewset-post-definitions.md @@ -49,7 +49,7 @@ The following table shows the properties accepted to create an accessReview. | descriptionForAdmins | String | Context of the review provided to admins. Required. | descriptionForReviewers | String | Context of the review provided to reviewers in email notifications. Email notifications support up to 256 characters. Required. | | displayName | String | Name of access review series. Required.| -| fallbackReviewers |[accessReviewReviewerScope](../resources/accessreviewreviewerscope.md) collection|If provided, the fallback reviewers are asked to complete a review if the primary reviewers do not exist. For example, if managers are selected as `reviewers` and a principal under review does not have a manager in Microsoft Entra ID, the fallback reviewers are asked to review that principal.

**NOTE:** The value of this property will be ignored if fallback reviewers are assigned through the **stageSettings** property.| +| fallbackReviewers |[accessReviewReviewerScope](../resources/accessreviewreviewerscope.md) collection|If provided, the fallback reviewers are asked to complete a review if the primary reviewers don't exist. For example, if managers are selected as `reviewers` and a principal under review doesn't have a manager in Microsoft Entra ID, the fallback reviewers are asked to review that principal.

**NOTE:** The value of this property will be ignored if fallback reviewers are assigned through the **stageSettings** property.| | instanceEnumerationScope | [accessReviewScope](../resources/accessreviewscope.md) | In the case of an all groups review, this determines the scope of which groups will be reviewed. See [accessReviewScope](../resources/accessreviewscope.md) and also learn how to [configure the scope of your access review definition](/graph/accessreviews-scope-concept).| | reviewers | [accessReviewReviewerScope](../resources/accessreviewreviewerscope.md) collection | Defines who the reviewers are. If none are specified, the review is a self-review (users review their own access). For examples of options for assigning reviewers, see [Assign reviewers to your access review definition using the Microsoft Graph API](/graph/accessreviews-reviewers-concept).

**NOTE:** The value of this property will be ignored if reviewers are assigned through the **stageSettings** property. | | scope | [accessReviewScope](../resources/accessreviewscope.md) | Defines the entities whose access is reviewed. See [accessReviewScope](../resources/accessreviewscope.md) and also learn how to [configure the scope of your access review definition](/graph/accessreviews-scope-concept). Required.| diff --git a/api-reference/beta/api/accessreviewstage-update.md b/api-reference/beta/api/accessreviewstage-update.md index b999a07397c..903d0a1cdff 100644 --- a/api-reference/beta/api/accessreviewstage-update.md +++ b/api-reference/beta/api/accessreviewstage-update.md @@ -54,7 +54,7 @@ PATCH /identityGovernance/accessReviews/definitions/{accessReviewScheduleDefinit |Property|Type|Description| |:---|:---|:---| |reviewers|[accessReviewReviewerScope](../resources/accessreviewreviewerscope.md) collection|This collection of access review scopes is used to define who the reviewers are. For examples of options for assigning reviewers, see [Assign reviewers to your access review definition using the Microsoft Graph API](/graph/accessreviews-scope-concept). Optional. Updatable.| -|fallbackReviewers|[accessReviewReviewerScope](../resources/accessreviewreviewerscope.md) collection|This collection of reviewer scopes is used to define the list of fallback reviewers. These fallback reviewers will be notified to take action if no users are found from the list of reviewers specified. This could occur when either the group owner is specified as the reviewer but the group owner does not exist, or manager is specified as reviewer but a user's manager does not exist. Optional. Updatable.| +|fallbackReviewers|[accessReviewReviewerScope](../resources/accessreviewreviewerscope.md) collection|This collection of reviewer scopes is used to define the list of fallback reviewers. These fallback reviewers will be notified to take action if no users are found from the list of reviewers specified. This could occur when either the group owner is specified as the reviewer but the group owner doesn't exist, or manager is specified as reviewer but a user's manager doesn't exist. Optional. Updatable.| diff --git a/api-reference/beta/api/activitystatistics-list.md b/api-reference/beta/api/activitystatistics-list.md index c549bc94d7a..a1b5b7c3ce3 100644 --- a/api-reference/beta/api/activitystatistics-list.md +++ b/api-reference/beta/api/activitystatistics-list.md @@ -36,7 +36,7 @@ GET /users/{id|userPrincipalName}/analytics/activitystatistics ## Optional query parameters -This method does not support optional query parameters to customize the response. +This method doesn't support optional query parameters to customize the response. ## Request headers diff --git a/api-reference/beta/api/agentidentity-list-inheritedapproleassignments.md b/api-reference/beta/api/agentidentity-list-inheritedapproleassignments.md index b5ac6865c09..e0510221ccc 100644 --- a/api-reference/beta/api/agentidentity-list-inheritedapproleassignments.md +++ b/api-reference/beta/api/agentidentity-list-inheritedapproleassignments.md @@ -47,7 +47,7 @@ GET /servicePrincipals/microsoft.graph.agentIdentity/{agentIdentity-id}/inherite ## Optional query parameters -This method does not support OData query parameters. +This method doesn't support OData query parameters. ## Request headers diff --git a/api-reference/beta/api/agentidentity-list-inheritedoauth2permissiongrants.md b/api-reference/beta/api/agentidentity-list-inheritedoauth2permissiongrants.md index b51b2c7cd11..1c0195598a2 100644 --- a/api-reference/beta/api/agentidentity-list-inheritedoauth2permissiongrants.md +++ b/api-reference/beta/api/agentidentity-list-inheritedoauth2permissiongrants.md @@ -49,7 +49,7 @@ GET /servicePrincipals/microsoft.graph.agentIdentity/{agentIdentity-id}/inherite ## Optional query parameters -This method does not support OData query parameters. +This method doesn't support OData query parameters. ## Request headers diff --git a/api-reference/beta/api/agentidentity-list.md b/api-reference/beta/api/agentidentity-list.md index c4af054478d..0e1aa61b1ee 100644 --- a/api-reference/beta/api/agentidentity-list.md +++ b/api-reference/beta/api/agentidentity-list.md @@ -14,7 +14,7 @@ Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Retrieve a list of [agentIdentity](../resources/agentidentity.md) objects. Does not return other types of service principal objects. +Retrieve a list of [agentIdentity](../resources/agentidentity.md) objects. Doesn't return other types of service principal objects. ## Permissions diff --git a/api-reference/beta/api/agentidentityblueprint-list.md b/api-reference/beta/api/agentidentityblueprint-list.md index 7c9c31f8d7b..4a0be0b6d96 100644 --- a/api-reference/beta/api/agentidentityblueprint-list.md +++ b/api-reference/beta/api/agentidentityblueprint-list.md @@ -14,7 +14,7 @@ Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Get a list of the [agentIdentityBlueprint](../resources/agentidentityblueprint.md) objects and their properties. Does not return other types of application objects. +Get a list of the [agentIdentityBlueprint](../resources/agentidentityblueprint.md) objects and their properties. Doesn't return other types of application objects. ## Permissions diff --git a/api-reference/beta/api/agentinstance-update.md b/api-reference/beta/api/agentinstance-update.md index 4c7f80a118b..4ef150ab11b 100644 --- a/api-reference/beta/api/agentinstance-update.md +++ b/api-reference/beta/api/agentinstance-update.md @@ -81,7 +81,7 @@ If successful, this method returns a `200 OK` response code and an updated [agen #### Request -The following example shows a request. The request also creates the agentCardManifest if it does not already exist. +The following example shows a request. The request also creates the agentCardManifest if it doesn't already exist. # [HTTP](#tab/http) diff --git a/api-reference/beta/api/driveitem-search.md b/api-reference/beta/api/driveitem-search.md index 7bd0a00e910..a72f6d62dbf 100644 --- a/api-reference/beta/api/driveitem-search.md +++ b/api-reference/beta/api/driveitem-search.md @@ -23,7 +23,7 @@ Choose the permission or permissions marked as least privileged for this API. Us [!INCLUDE [permissions-table](../includes/permissions/driveitem-search-permissions.md)] ->**Note:** This method does not support the Sites.Selected application permission. +>**Note:** This method doesn't support the Sites.Selected application permission. ## HTTP request diff --git a/api-reference/beta/api/driveitemversion-get.md b/api-reference/beta/api/driveitemversion-get.md index 57f0e471802..9ee470f7cbb 100644 --- a/api-reference/beta/api/driveitemversion-get.md +++ b/api-reference/beta/api/driveitemversion-get.md @@ -184,7 +184,7 @@ Content-Type: application/json ## Remarks -OneDrive does not preserve the complete metadata for previous versions of a file. +OneDrive doesn't preserve the complete metadata for previous versions of a file. When your app retrieves the list of available versions for a file, a [DriveItemVersion](../resources/driveitemversion.md) resource is returned that provides the available information about the specific version. diff --git a/api-reference/beta/api/ediscovery-sourcecollection-list-addtoreviewsetoperation.md b/api-reference/beta/api/ediscovery-sourcecollection-list-addtoreviewsetoperation.md index dd644060d16..0b28189b2ae 100644 --- a/api-reference/beta/api/ediscovery-sourcecollection-list-addtoreviewsetoperation.md +++ b/api-reference/beta/api/ediscovery-sourcecollection-list-addtoreviewsetoperation.md @@ -18,7 +18,7 @@ Namespace: microsoft.graph.ediscovery Get the last [addToReviewSetOperation](../resources/ediscovery-addtoreviewsetoperation.md) object associated with a source collection. ->**Note:** This method only lists the last operation; it does not return a history of all operations. +>**Note:** This method only lists the last operation; it doesn't return a history of all operations. [!INCLUDE [national-cloud-support](../../includes/global-only.md)] diff --git a/api-reference/beta/api/ediscovery-sourcecollection-list-lastestimatestatisticsoperation.md b/api-reference/beta/api/ediscovery-sourcecollection-list-lastestimatestatisticsoperation.md index 9da5417bd7c..e1c20a1f7d2 100644 --- a/api-reference/beta/api/ediscovery-sourcecollection-list-lastestimatestatisticsoperation.md +++ b/api-reference/beta/api/ediscovery-sourcecollection-list-lastestimatestatisticsoperation.md @@ -18,7 +18,7 @@ Namespace: microsoft.graph.ediscovery Get the last [estimateStatisticsOperation](../resources/ediscovery-estimatestatisticsoperation.md) object associated with a source collection. ->**Note:** This method only lists the last operation; it does not return a history of all operations. +>**Note:** This method only lists the last operation; it doesn't return a history of all operations. [!INCLUDE [national-cloud-support](../../includes/global-only.md)] diff --git a/api-reference/beta/api/ediscovery-sourcecollection-purgedata.md b/api-reference/beta/api/ediscovery-sourcecollection-purgedata.md index 4fefc04af71..88b5a1a91d1 100644 --- a/api-reference/beta/api/ediscovery-sourcecollection-purgedata.md +++ b/api-reference/beta/api/ediscovery-sourcecollection-purgedata.md @@ -18,7 +18,7 @@ Namespace: microsoft.graph.ediscovery Permanently delete Microsoft Teams messages contained in a [sourceCollection](../resources//ediscovery-sourcecollection.md). ->**Note:** This request purges Teams data only. It does not purge other types of data such as mailbox items. +>**Note:** This request purges Teams data only. It doesn't purge other types of data such as mailbox items. You can collect and purge the following categories of Teams content: - **Teams 1:1 chats** - Chat messages, posts, and attachments shared in a Teams conversation between two people. Teams 1:1 chats are also called *conversations*. diff --git a/api-reference/beta/api/educationcategory-delta.md b/api-reference/beta/api/educationcategory-delta.md index 110a0f360ac..69645b515a3 100644 --- a/api-reference/beta/api/educationcategory-delta.md +++ b/api-reference/beta/api/educationcategory-delta.md @@ -26,7 +26,7 @@ Choose the permission or permissions marked as least privileged for this API. Us [!INCLUDE [permissions-table](../includes/permissions/educationcategory-delta-permissions.md)] ## Optional query parameters -This method does not support the `$expand`, `$orderby`, `$search`, and `$filter` OData query parameters. +This method doesn't support the `$expand`, `$orderby`, `$search`, and `$filter` OData query parameters. This method only supports the `$top` OData query parameter. diff --git a/api-reference/beta/api/educationclass-delta.md b/api-reference/beta/api/educationclass-delta.md index 55ac9bdc2b2..c8cbb4856c1 100644 --- a/api-reference/beta/api/educationclass-delta.md +++ b/api-reference/beta/api/educationclass-delta.md @@ -48,7 +48,7 @@ Don't supply a request body for this method. If successful, this method returns a `200 OK` response code and an [educationClass](../resources/educationclass.md) collection object in the response body. > [!IMPORTANT] -> educationClass deltas do not include deleted classes. +> educationClass deltas don't include deleted classes. ## Example diff --git a/api-reference/beta/api/educationoutcome-update.md b/api-reference/beta/api/educationoutcome-update.md index 652921fad91..c1f3510a286 100644 --- a/api-reference/beta/api/educationoutcome-update.md +++ b/api-reference/beta/api/educationoutcome-update.md @@ -45,7 +45,7 @@ In the request body, supply the values for relevant fields that should be update The **educationOutcome** object will be one of the following derived types: **educationPointsOutcome**, **educationFeedbackOutcome**, or **educationRubricOutcome**. Supply the specific properties relevant to the type of outcome you're updating. -All derived outcome types have a regular and a "published" property appropriate to that type of outcome; for example, **points** and **publishedPoints**, **feedback** and **publishedFeedback**. Do not update the "published" property; it is for internal use. For example, to assign points to an **educationPointsOutcome**, update the **points** property, but do not update **publishedPoints**. +All derived outcome types have a regular and a "published" property appropriate to that type of outcome; for example, **points** and **publishedPoints**, **feedback** and **publishedFeedback**. Don't update the "published" property; it is for internal use. For example, to assign points to an **educationPointsOutcome**, update the **points** property, but don't update **publishedPoints**. ## Response diff --git a/api-reference/beta/api/educationroot-post-classes.md b/api-reference/beta/api/educationroot-post-classes.md index 6ec87b3fb26..a1d1ad9967d 100644 --- a/api-reference/beta/api/educationroot-post-classes.md +++ b/api-reference/beta/api/educationroot-post-classes.md @@ -15,7 +15,7 @@ Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] Create a new class. This will also create a universal group. When you use this API to create a class, it will add special properties to the group, which will -add features such as assignments and special handling within Microsoft Teams when teams are created using the group. Please note that this API only creates the universal group and does not create a team. Microsoft Teams provides a user interface for teachers to create teams for their own classes using the groups created by this API. +add features such as assignments and special handling within Microsoft Teams when teams are created using the group. Please note that this API only creates the universal group and doesn't create a team. Microsoft Teams provides a user interface for teachers to create teams for their own classes using the groups created by this API. [!INCLUDE [national-cloud-support](../../includes/global-only.md)] diff --git a/api-reference/beta/api/educationschool-delta.md b/api-reference/beta/api/educationschool-delta.md index ccfb06b08e0..0128329a451 100644 --- a/api-reference/beta/api/educationschool-delta.md +++ b/api-reference/beta/api/educationschool-delta.md @@ -48,7 +48,7 @@ Don't supply a request body for this method. If successful, this method returns a `200 OK` response code and an [educationSchool](../resources/educationschool.md) collection object in the response body. > [!IMPORTANT] -> educationSchool deltas do not include deleted schools. +> educationSchool deltas don't include deleted schools. ## Example diff --git a/api-reference/beta/api/educationuser-delta.md b/api-reference/beta/api/educationuser-delta.md index 08570f9afac..851a0a4fff7 100644 --- a/api-reference/beta/api/educationuser-delta.md +++ b/api-reference/beta/api/educationuser-delta.md @@ -48,7 +48,7 @@ Don't supply a request body for this method. If successful, this method returns a `200 OK` response code and an [educationUser](../resources/educationuser.md) collection object in the response body. > [!IMPORTANT] -> educationUser deltas do not include deleted users. +> educationUser deltas don't include deleted users. ## Example diff --git a/api-reference/beta/api/encryptedawsstoragebucketfinding-get.md b/api-reference/beta/api/encryptedawsstoragebucketfinding-get.md index c71dce29f07..e52a3ad2998 100644 --- a/api-reference/beta/api/encryptedawsstoragebucketfinding-get.md +++ b/api-reference/beta/api/encryptedawsstoragebucketfinding-get.md @@ -35,7 +35,7 @@ GET /identityGovernance/permissionsAnalytics/aws/findings/{id}/microsoft.graph.e ``` ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers |Name|Description| diff --git a/api-reference/beta/api/encryptedazurestorageaccountfinding-get.md b/api-reference/beta/api/encryptedazurestorageaccountfinding-get.md index 32fb11eae40..5bf7e261afb 100644 --- a/api-reference/beta/api/encryptedazurestorageaccountfinding-get.md +++ b/api-reference/beta/api/encryptedazurestorageaccountfinding-get.md @@ -35,7 +35,7 @@ GET /identityGovernance/permissionsAnalytics/azure/findings/{id}/microsoft.graph ``` ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers |Name|Description| diff --git a/api-reference/beta/api/encryptedgcpstoragebucketfinding-get.md b/api-reference/beta/api/encryptedgcpstoragebucketfinding-get.md index 1fe69be8a0c..2881331e5b6 100644 --- a/api-reference/beta/api/encryptedgcpstoragebucketfinding-get.md +++ b/api-reference/beta/api/encryptedgcpstoragebucketfinding-get.md @@ -35,7 +35,7 @@ GET /identityGovernance/permissionsAnalytics/gcp/findings/{id}/microsoft.graph.e ``` ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers |Name|Description| diff --git a/api-reference/beta/api/endusernotification-get.md b/api-reference/beta/api/endusernotification-get.md index d6aa625cd69..eb5dbd3e765 100644 --- a/api-reference/beta/api/endusernotification-get.md +++ b/api-reference/beta/api/endusernotification-get.md @@ -40,7 +40,7 @@ GET /security/attackSimulation/endUserNotifications ## Optional query parameters -This method does not currently support the [OData query parameters](/graph/query-parameters) to customize the response. +This method doesn't currently support the [OData query parameters](/graph/query-parameters) to customize the response. ## Request headers diff --git a/api-reference/beta/api/entitlementmanagementsettings-get.md b/api-reference/beta/api/entitlementmanagementsettings-get.md index 8d6fdce1e20..92fcb01bf5a 100644 --- a/api-reference/beta/api/entitlementmanagementsettings-get.md +++ b/api-reference/beta/api/entitlementmanagementsettings-get.md @@ -37,7 +37,7 @@ GET /identityGovernance/entitlementManagement/settings ## Optional query parameters -This method does not support the OData query parameters to customize the response. +This method doesn't support the OData query parameters to customize the response. ## Request headers diff --git a/api-reference/beta/api/event-get.md b/api-reference/beta/api/event-get.md index 58b3b4eb0e1..5fe9852f1a9 100644 --- a/api-reference/beta/api/event-get.md +++ b/api-reference/beta/api/event-get.md @@ -89,7 +89,7 @@ The following example gets the specified event. It specifies the following: - A `Prefer: outlook.timezone` header to get date time values returned in Pacific Standard Time. - A `$select` query parameter to return specific properties. Without a `$select` parameter, all of the event properties will be returned. -The request does not specify any `Prefer: outlook.body-content-type` header to indicate a specific format for the returned event body. +The request doesn't specify any `Prefer: outlook.body-content-type` header to indicate a specific format for the returned event body. # [HTTP](#tab/http) @@ -350,7 +350,7 @@ GET https://graph.microsoft.com/beta/me/events/AAMkADAGAADDdm4NAAA=?$select=subj The following example shows the response. The **locations** property includes details for the 3 locations that the event is organized for. -Because the request does not specify any `Prefer: outlook.timezone` or `Prefer: outlook.body-content-type` header, +Because the request doesn't specify any `Prefer: outlook.timezone` or `Prefer: outlook.body-content-type` header, the **start** and **end** properties are displayed in the default UTC time zone, and the body is in the default HTML format. [!INCLUDE [permissions-table](../includes/permissions/site-search-permissions.md)] ->**Note:** This method does not support the Sites.Selected application permission. +>**Note:** This method doesn't support the Sites.Selected application permission. ## HTTP request diff --git a/api-reference/beta/api/sitepage-update.md b/api-reference/beta/api/sitepage-update.md index 0039ce97184..a8d66930244 100644 --- a/api-reference/beta/api/sitepage-update.md +++ b/api-reference/beta/api/sitepage-update.md @@ -60,7 +60,7 @@ These fields and be used in update requests. | showRecommendedPages | Boolean | Boolean to determine whether or not to show recommended pages at the bottom of the page. Optional. | | promotionKind | [PagePromotionType](../resources/sitepage.md#pagepromotiontype-values) | Promotion kind of the SharePoint page. Optional. Only support promote a page (e.g from `page` to `newsPost`). Demote is not supported. | | titleArea | [titleArea](../resources/titlearea.md) | Title area on the site page. Optional. | -| canvasLayout | [canvasLayout](../resources/canvaslayout.md) | The layout of the content in a page, including horizontal sections and vertical section. A content of the entire page layout needs to be provided, the update function does not support partial updates. Optional. | +| canvasLayout | [canvasLayout](../resources/canvaslayout.md) | The layout of the content in a page, including horizontal sections and vertical section. A content of the entire page layout needs to be provided, the update function doesn't support partial updates. Optional. | ## Response diff --git a/api-reference/beta/api/subjectrightsrequest-list-notes.md b/api-reference/beta/api/subjectrightsrequest-list-notes.md index 604730383e3..98768571913 100644 --- a/api-reference/beta/api/subjectrightsrequest-list-notes.md +++ b/api-reference/beta/api/subjectrightsrequest-list-notes.md @@ -37,7 +37,7 @@ GET /privacy/subjectRightsRequests/{subjectRightsRequestId}/notes ``` ## Optional query parameters -This method does not support the [OData query parameters](/graph/query-parameters) to help customize the response. +This method doesn't support the [OData query parameters](/graph/query-parameters) to help customize the response. ## Request headers |Name|Description| diff --git a/api-reference/beta/api/subscribedsku-list.md b/api-reference/beta/api/subscribedsku-list.md index 03df4686f69..539fcca5b11 100644 --- a/api-reference/beta/api/subscribedsku-list.md +++ b/api-reference/beta/api/subscribedsku-list.md @@ -37,7 +37,7 @@ GET /subscribedSkus ## Optional query parameters -This method supports only the `$select` [OData query parameter](/graph//query-parameters) to help customize the response. It does not support `$filter`. +This method supports only the `$select` [OData query parameter](/graph//query-parameters) to help customize the response. It doesn't support `$filter`. > [!NOTE] > This API has a [known issue](/graph/known-issues#use-of-specific-query-parameters-on-subscribedskus-and-domains-doesnt-return-the-expected-results) related to the `$search` parameter. diff --git a/api-reference/beta/api/subscription-post-subscriptions.md b/api-reference/beta/api/subscription-post-subscriptions.md index 37b9ab9bafb..6ccd3299ec4 100644 --- a/api-reference/beta/api/subscription-post-subscriptions.md +++ b/api-reference/beta/api/subscription-post-subscriptions.md @@ -29,7 +29,7 @@ Creating a subscription requires read permission to the resource. For example, t Depending on the resource and the permission type (delegated or application) requested, the permission specified in the following table is the least privileged required to call this API. To learn more, including [taking caution](/graph/auth/auth-concepts#best-practices-for-requesting-permissions) before choosing the permissions, search for the following permissions in [Permissions](/graph/permissions-reference). > [!NOTE] -> - Due to security restrictions, Microsoft Graph subscriptions do not support write access permissions when only read access permissions are needed. +> - Due to security restrictions, Microsoft Graph subscriptions don't support write access permissions when only read access permissions are needed. > - Some resources support change notifications in multiple scenarios, each of which may require different permissions. In those cases, use the resource path to differentiate the scenarios. | Supported resource | Delegated (work or school account) | Delegated (personal Microsoft account) | Application | diff --git a/api-reference/beta/api/superawsresourcefinding-get.md b/api-reference/beta/api/superawsresourcefinding-get.md index 3457b01f929..a44116591e5 100644 --- a/api-reference/beta/api/superawsresourcefinding-get.md +++ b/api-reference/beta/api/superawsresourcefinding-get.md @@ -38,7 +38,7 @@ GET /identityGovernance/permissionsAnalytics/aws/findings/{id}/microsoft.graph.s ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers diff --git a/api-reference/beta/api/superawsrolefinding-get.md b/api-reference/beta/api/superawsrolefinding-get.md index e7874adf707..ccaaa641f73 100644 --- a/api-reference/beta/api/superawsrolefinding-get.md +++ b/api-reference/beta/api/superawsrolefinding-get.md @@ -36,7 +36,7 @@ GET /identityGovernance/permissionsAnalytics/aws/findings/{id}/microsoft.graph.s ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers diff --git a/api-reference/beta/api/superazureserviceprincipalfinding-get.md b/api-reference/beta/api/superazureserviceprincipalfinding-get.md index 70d1ac60689..4bc2f0d7109 100644 --- a/api-reference/beta/api/superazureserviceprincipalfinding-get.md +++ b/api-reference/beta/api/superazureserviceprincipalfinding-get.md @@ -37,7 +37,7 @@ GET /identityGovernance/permissionsAnalytics/azure/findings/{id}/microsoft.graph ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers diff --git a/api-reference/beta/api/supergcpserviceaccountfinding-get.md b/api-reference/beta/api/supergcpserviceaccountfinding-get.md index 7ff95b7ee42..e7248f34114 100644 --- a/api-reference/beta/api/supergcpserviceaccountfinding-get.md +++ b/api-reference/beta/api/supergcpserviceaccountfinding-get.md @@ -35,7 +35,7 @@ GET /identityGovernance/permissionsAnalytics/gcp/findings/{id}/microsoft.graph.s ``` ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers |Name|Description| diff --git a/api-reference/beta/api/superserverlessfunctionfinding-get.md b/api-reference/beta/api/superserverlessfunctionfinding-get.md index 9b119f477eb..2070453c647 100644 --- a/api-reference/beta/api/superserverlessfunctionfinding-get.md +++ b/api-reference/beta/api/superserverlessfunctionfinding-get.md @@ -54,7 +54,7 @@ GET /identityGovernance/permissionsAnalytics/gcp/findings/{id}/microsoft.graph.s ``` ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers |Name|Description| diff --git a/api-reference/beta/api/superuserfinding-get.md b/api-reference/beta/api/superuserfinding-get.md index b56b4e02a83..017d4514e40 100644 --- a/api-reference/beta/api/superuserfinding-get.md +++ b/api-reference/beta/api/superuserfinding-get.md @@ -54,7 +54,7 @@ GET /identityGovernance/permissionsAnalytics/gcp/findings/{id}/microsoft.graph.s ``` ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers |Name|Description| diff --git a/api-reference/beta/api/synchronization-synchronizationschema-delete.md b/api-reference/beta/api/synchronization-synchronizationschema-delete.md index 931b43af079..b757a957d2d 100644 --- a/api-reference/beta/api/synchronization-synchronizationschema-delete.md +++ b/api-reference/beta/api/synchronization-synchronizationschema-delete.md @@ -45,7 +45,7 @@ Don't supply a request body for this method. ## Response -If successful, this method returns a `201 No Content` response code. It does not return anything in response body. +If successful, this method returns a `201 No Content` response code. It doesn't return anything in response body. ## Example diff --git a/api-reference/beta/api/team-list-allchannels.md b/api-reference/beta/api/team-list-allchannels.md index 6ee67e4d6d9..970d220c2fc 100644 --- a/api-reference/beta/api/team-list-allchannels.md +++ b/api-reference/beta/api/team-list-allchannels.md @@ -42,7 +42,7 @@ This method supports the `$filter` and `$select` [OData query parameters](/graph ### Use $select for better performance Populating the **email** property for a channel is an expensive operation that results in slow performance. Use `$select` to exclude the **email** property to improve performance. -> **Note**: This API does not return the **moderationSettings** property for a channel by default. To get this property, use the `$select` query parameter. +> **Note**: This API doesn't return the **moderationSettings** property for a channel by default. To get this property, use the `$select` query parameter. ## Request headers |Name|Description| diff --git a/api-reference/beta/api/teamsapp-delete.md b/api-reference/beta/api/teamsapp-delete.md index 04a377ae4a7..d8627d47548 100644 --- a/api-reference/beta/api/teamsapp-delete.md +++ b/api-reference/beta/api/teamsapp-delete.md @@ -85,7 +85,7 @@ DELETE appCatalogs/teamsApps/{appId}/appDefinitions/{appDefinitionId} Don't supply a request body for this method. ->**Note:** Use the ID returned from the [List published apps](./appcatalogs-list-teamsapps.md) call to reference the app you'd like to delete. Do not use the ID from the manifest of the zip app package. +>**Note:** Use the ID returned from the [List published apps](./appcatalogs-list-teamsapps.md) call to reference the app you'd like to delete. Don't use the ID from the manifest of the zip app package. ## Response diff --git a/api-reference/beta/api/teamsapp-publish.md b/api-reference/beta/api/teamsapp-publish.md index c910307d774..e38415a08df 100644 --- a/api-reference/beta/api/teamsapp-publish.md +++ b/api-reference/beta/api/teamsapp-publish.md @@ -128,7 +128,7 @@ If you send a request to upload an app manifest that contains missing informatio | `InvalidOutlineIconHeightAndWidth` | Small icon should be 32x32 with only white and transparent. | The dimensions of the outline icon are incorrect. | | `InvalidOutlineIconTransparency` | Outline icon isn't transparent. It's Alpha. | The outline icon contains pixels that are neither transparent nor white, with Alpha, R, G, B values of {0}, {1}, {2}, and {3}. | | `LocalizationSchemaIsMissing` |The "schema" property is missing from the localization file.| The localization file is missing the "schema" property.| -| `LocalizationSchemaDoesNotFollowConventionalSchemaRegex` |Localization file does not use the correct schema URL: developer.microsoft.jsonschema URL. | The schema URL in the localization file doesn't match the expected format: developer.microsoft.json.| +| `LocalizationSchemaDoesNotFollowConventionalSchemaRegex` |Localization file doesn't use the correct schema URL: developer.microsoft.jsonschema URL. | The schema URL in the localization file doesn't match the expected format: developer.microsoft.json.| | `LocalizationSchemaVersionIsNotTheSameAsTheManifestSchemaVersion` | Localization file schema version is different from app manifest schema version.| The schema version in the localization file doesn't match the version in the app manifest.| | `MsftEntraAuthTypeComposeExtensionContainsApiSecretServiceConfiguration` | API-based compose extension with microsoftEntra authType have apiSecretServiceConfiguration defined. | The API-based compose extension has apiSecretServiceConfiguration defined in the manifest. | | `MsftEntraAuthTypeComposeExtensionContainsNoMsftEntraConfiguration` | API-based compose extension with microsoftEntra authType have no microsoftEntraConfiguration defined. | The API-based compose extension doesn't have microsoftEntraConfiguration defined in the app manifest. | diff --git a/api-reference/beta/api/teamsapp-update.md b/api-reference/beta/api/teamsapp-update.md index 63393abf775..a8104a93b78 100644 --- a/api-reference/beta/api/teamsapp-update.md +++ b/api-reference/beta/api/teamsapp-update.md @@ -57,7 +57,7 @@ POST /appCatalogs/teamsApps/{id}/appDefinitions In the request body, include a Teams zip manifest payload. For details, see [Create an app package](/microsoftteams/platform/concepts/apps/apps-package). ->**Note:** Use the ID returned from the [List published apps](./appcatalogs-list-teamsapps.md) call for to reference the app you'd like to update. Do not use the ID from the manifest of the zip app package. +>**Note:** Use the ID returned from the [List published apps](./appcatalogs-list-teamsapps.md) call for to reference the app you'd like to update. Don't use the ID from the manifest of the zip app package. ## Response diff --git a/api-reference/beta/api/teamworkhostedcontent-get.md b/api-reference/beta/api/teamworkhostedcontent-get.md index 33968cb8228..bcb4078108d 100644 --- a/api-reference/beta/api/teamworkhostedcontent-get.md +++ b/api-reference/beta/api/teamworkhostedcontent-get.md @@ -133,7 +133,7 @@ Content-type: application/json The following example shows a request. -> **Note:** Requests for the raw value does not support [OData query parameters](/graph/query-parameters) to customize the response. +> **Note:** Requests for the raw value doesn't support [OData query parameters](/graph/query-parameters) to customize the response. # [HTTP](#tab/http) diff --git a/api-reference/beta/api/teamworktag-get.md b/api-reference/beta/api/teamworktag-get.md index dcf173d4179..443fc1b9b57 100644 --- a/api-reference/beta/api/teamworktag-get.md +++ b/api-reference/beta/api/teamworktag-get.md @@ -34,7 +34,7 @@ GET /teams/{team-Id}/tags/{teamworkTag-Id} ``` ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers |Name|Description| diff --git a/api-reference/beta/api/teamworktagmember-get.md b/api-reference/beta/api/teamworktagmember-get.md index bab367ee27a..bb83d8c2d53 100644 --- a/api-reference/beta/api/teamworktagmember-get.md +++ b/api-reference/beta/api/teamworktagmember-get.md @@ -34,7 +34,7 @@ GET /teams/{team-Id}/tags/{teamworkTag-Id}/members/{teamworkTagMember-Id} ``` ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers |Name|Description| diff --git a/api-reference/beta/api/tenantappmanagementpolicy-get.md b/api-reference/beta/api/tenantappmanagementpolicy-get.md index e344a52c4e7..b08d3b8d1b9 100644 --- a/api-reference/beta/api/tenantappmanagementpolicy-get.md +++ b/api-reference/beta/api/tenantappmanagementpolicy-get.md @@ -249,3 +249,4 @@ Content-type: application/json "section": "documentation", "tocPath": "" }--> + diff --git a/api-reference/beta/api/tenantappmanagementpolicy-update.md b/api-reference/beta/api/tenantappmanagementpolicy-update.md index be8d9aaacb3..2400453c8d3 100644 --- a/api-reference/beta/api/tenantappmanagementpolicy-update.md +++ b/api-reference/beta/api/tenantappmanagementpolicy-update.md @@ -47,7 +47,7 @@ PATCH /policies/defaultAppManagementPolicy ## Request body -In the request body, supply the values for relevant fields from the [tenantAppManagementPolicy](../resources/tenantAppManagementPolicy.md) that should be updated. Existing properties that are not included in the request body will maintain their previous values. For best performance, do not include unchanged values in the request payload. +In the request body, supply the values for relevant fields from the [tenantAppManagementPolicy](../resources/tenantAppManagementPolicy.md) that should be updated. Existing properties that are not included in the request body will maintain their previous values. For best performance, don't include unchanged values in the request payload. | Property | Type | Description | | :--------------------------- | :----------------------------------------------------------------------- | :----------------------------------------------------------------------------------------------- | diff --git a/api-reference/beta/api/tenantdatasecurityandgovernance-processcontentasync.md b/api-reference/beta/api/tenantdatasecurityandgovernance-processcontentasync.md index cf4f824920f..65564b222de 100644 --- a/api-reference/beta/api/tenantdatasecurityandgovernance-processcontentasync.md +++ b/api-reference/beta/api/tenantdatasecurityandgovernance-processcontentasync.md @@ -48,7 +48,7 @@ In the request body, provide a JSON object with the following parameters. | :-------------------- | :---------------------------------------------- | :------------------------------------------------------ | | processContentRequests| [processContentBatchRequest](../resources/processcontentbatchrequest.md) collection | Required. A collection of individual content processing requests, each with its own user context, content, and request ID. | -The size of the text in each content entry is limited to 2 MB. The maximum number of content entries per request is 64. These could be spread across up to 64 **processContentRequests**, each containing one content entry or 2 **processContentRequests**, each containing 32 content entries or some other combination that does not exceed 64 content entries. +The size of the text in each content entry is limited to 2 MB. The maximum number of content entries per request is 64. These could be spread across up to 64 **processContentRequests**, each containing one content entry or 2 **processContentRequests**, each containing 32 content entries or some other combination that doesn't exceed 64 content entries. ## Response diff --git a/api-reference/beta/api/todotask-delta.md b/api-reference/beta/api/todotask-delta.md index 69bbd73204b..e967928b1c9 100644 --- a/api-reference/beta/api/todotask-delta.md +++ b/api-reference/beta/api/todotask-delta.md @@ -56,7 +56,7 @@ _id_ property is always returned. - There is limited support for `$filter` and `$orderby`: * The only supported `$filter` expressions are `$filter=receivedDateTime+ge+{value}` or `$filter=receivedDateTime+gt+{value}`. - * The only supported `$orderby` expression is `$orderby=receivedDateTime+desc`. If you do not include + * The only supported `$orderby` expression is `$orderby=receivedDateTime+desc`. If you don't include an `$orderby` expression, the return order is not guaranteed. - There is no support for `$search`. diff --git a/api-reference/beta/api/todotask-list-checklistitems.md b/api-reference/beta/api/todotask-list-checklistitems.md index b0a37b72ad6..5fe8c38358b 100644 --- a/api-reference/beta/api/todotask-list-checklistitems.md +++ b/api-reference/beta/api/todotask-list-checklistitems.md @@ -35,7 +35,7 @@ GET /users/{id | userPrincipalName}/todo/lists/{todoTaskListId}/tasks/{todoTaskI ``` ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers |Name|Description| diff --git a/api-reference/beta/api/todotask-post-attachments.md b/api-reference/beta/api/todotask-post-attachments.md index 2c9fc2370ce..39cce5a692d 100644 --- a/api-reference/beta/api/todotask-post-attachments.md +++ b/api-reference/beta/api/todotask-post-attachments.md @@ -52,7 +52,7 @@ When you create a file attachment, include `"@odata.type": "#microsoft.graph.tas |:---|:---|:---| |contentBytes|Binary|The base64-encoded contents of the file. Required.| |contentType|String|The content type of the attachment. | -|name|String|The name of the text displayed under the icon that represents the embedded attachment. This does not need to be the actual file name. Required. | +|name|String|The name of the text displayed under the icon that represents the embedded attachment. This doesn't need to be the actual file name. Required. | |size|Int32|The size in bytes of the attachment. | ## Response diff --git a/api-reference/beta/api/trustframework-put-trustframeworkpolicy.md b/api-reference/beta/api/trustframework-put-trustframeworkpolicy.md index ee3494019df..fc5ad8dcb06 100644 --- a/api-reference/beta/api/trustframework-put-trustframeworkpolicy.md +++ b/api-reference/beta/api/trustframework-put-trustframeworkpolicy.md @@ -13,7 +13,7 @@ Namespace: microsoft.graph >**Important:** APIs under the /beta version in Microsoft Graph are in preview and are subject to change. Use of these APIs in production applications is not supported. -Update an existing [trustFrameworkPolicy](../resources/trustframeworkpolicy.md) or create one if it does not exist. +Update an existing [trustFrameworkPolicy](../resources/trustframeworkpolicy.md) or create one if it doesn't exist. [!INCLUDE [national-cloud-support](../../includes/all-clouds.md)] @@ -51,7 +51,7 @@ In the request body, provide an XML representation of the [trustFrameworkPolicy] The response will be one of the following: - If a [trustFrameworkPolicy](../resources/trustframeworkpolicy.md) exists, a successful request returns a `200 OK` response code. -- If a [trustFrameworkPolicy](../resources/trustframeworkpolicy.md) does not exist, a successful request returns a `201 Created` response code. +- If a [trustFrameworkPolicy](../resources/trustframeworkpolicy.md) doesn't exist, a successful request returns a `201 Created` response code. - If unsuccessful, a `4xx` error will be returned with specific details. ## Example diff --git a/api-reference/beta/api/unenforcedmfaawsuserfinding-get.md b/api-reference/beta/api/unenforcedmfaawsuserfinding-get.md index 55d9897371f..88da3be64ea 100644 --- a/api-reference/beta/api/unenforcedmfaawsuserfinding-get.md +++ b/api-reference/beta/api/unenforcedmfaawsuserfinding-get.md @@ -35,7 +35,7 @@ GET /identityGovernance/permissionsAnalytics/aws/findings/{id}/microsoft.graph.u ``` ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers |Name|Description| diff --git a/api-reference/beta/api/unifiedroleassignmentmultiple-update.md b/api-reference/beta/api/unifiedroleassignmentmultiple-update.md index d7d0eb05504..c9489262766 100644 --- a/api-reference/beta/api/unifiedroleassignmentmultiple-update.md +++ b/api-reference/beta/api/unifiedroleassignmentmultiple-update.md @@ -21,7 +21,7 @@ The following RBAC providers are currently supported: - Cloud PC - device management (Intune) -In contrast, [unifiedRoleAssignment](../resources/unifiedroleassignment.md) does not support update. +In contrast, [unifiedRoleAssignment](../resources/unifiedroleassignment.md) doesn't support update. [!INCLUDE [national-cloud-support](../../includes/all-clouds.md)] diff --git a/api-reference/beta/api/unifiedrolemanagementalert-refresh.md b/api-reference/beta/api/unifiedrolemanagementalert-refresh.md index 0f94c163ed2..894282cfa27 100644 --- a/api-reference/beta/api/unifiedrolemanagementalert-refresh.md +++ b/api-reference/beta/api/unifiedrolemanagementalert-refresh.md @@ -61,7 +61,7 @@ The following table shows the parameters that can be used with this action. |scopeType|String|The type of the scope where the alert is created. `DirectoryRole` is the only supported one for Microsoft Entra roles. | |scopeId|String|The identifier of the scope where the alert applies. `/` is the only supported one for the tenant.| -For refreshing a single alert, do not specify a request body. +For refreshing a single alert, don't specify a request body. ## Response diff --git a/api-reference/beta/api/user-delta.md b/api-reference/beta/api/user-delta.md index d48c7607e88..bb5d394fae2 100644 --- a/api-reference/beta/api/user-delta.md +++ b/api-reference/beta/api/user-delta.md @@ -100,7 +100,7 @@ Adding an optional request header - `prefer:return=minimal` - results in the fol - If the property has changed, the new value is included in the response. This includes properties being set to null value. - If the property hasn't changed, the property isn't included in the response at all. (Different from the default behavior.) -> **Note:** The header can be added to a `@odata.deltaLink` request at any point in time in the delta cycle. The header only affects the set of properties included in the response and it does not affect how the delta query is executed. See [Example 3](#example-3-alternative-minimal-response-behavior). +> **Note:** The header can be added to a `@odata.deltaLink` request at any point in time in the delta cycle. The header only affects the set of properties included in the response and it doesn't affect how the delta query is executed. See [Example 3](#example-3-alternative-minimal-response-behavior). ## Examples diff --git a/api-reference/beta/api/user-findmeetingtimes.md b/api-reference/beta/api/user-findmeetingtimes.md index eb18a3d36e1..100e49c1d4c 100644 --- a/api-reference/beta/api/user-findmeetingtimes.md +++ b/api-reference/beta/api/user-findmeetingtimes.md @@ -64,7 +64,7 @@ The following table describes the restrictions you can further specify in the ** |work| Suggestions are within the user's work hours which are defined in the user’s calendar configuration and can be customized by the user or administrator. The default work hours are Monday to Friday, 8am to 5pm in the time zone set for the mailbox. This is the default value if no **activityDomain** is specified. | |personal| Suggestions are within the user's work hours, and Saturday and Sunday. The default is Monday to Sunday, 8am to 5pm, in the time zone setting for the mailbox.| |unrestricted | Suggestions can be from all hours of a day, all days of a week.| -|unknown | Do not use this value as it will be deprecated in the future. Currently behaves the same as `work`. Change any existing code to use `work`, `personal` or `unrestricted` as appropriate.| +|unknown | Don't use this value as it will be deprecated in the future. Currently behaves the same as `work`. Change any existing code to use `work`, `personal` or `unrestricted` as appropriate.| Based on the specified parameters,**findMeetingTimes** checks the free/busy status in the primary calendars of the organizer and attendees. The action @@ -94,7 +94,7 @@ based on each of their individual free/busy status: high to low. If there are suggestions with the same confidence, the action then orders these suggestions chronologically. - You can use the **minimumAttendeePercentage** optional parameter for **findMeetingTimes** to specify only meeting time suggestions of at least certain confidence level should be returned. For example, you can specify a **minimumAttendeePercentage** of 80% if you want only -suggestions that have an 80% chance or more that all the attendees are attending. If you do not specify **minimumAttendeePercentage**, +suggestions that have an 80% chance or more that all the attendees are attending. If you don't specify **minimumAttendeePercentage**, **findMeetingTimes** assumes a value of 50%. As an example, if a meeting time suggestion involves 3 attendees with the following free/busy status: diff --git a/api-reference/beta/api/user-get.md b/api-reference/beta/api/user-get.md index e20b99dc4a5..d52118ba1d4 100644 --- a/api-reference/beta/api/user-get.md +++ b/api-reference/beta/api/user-get.md @@ -420,7 +420,7 @@ Content-type: application/json } ``` -If there are no custom security attributes assigned to the user or if the calling principal does not have access, the following block shows the response: +If there are no custom security attributes assigned to the user or if the calling principal doesn't have access, the following block shows the response: ```http HTTP/1.1 200 OK diff --git a/api-reference/beta/api/user-list-calendarview.md b/api-reference/beta/api/user-list-calendarview.md index e160bfb90bb..39b5649122c 100644 --- a/api-reference/beta/api/user-list-calendarview.md +++ b/api-reference/beta/api/user-list-calendarview.md @@ -61,7 +61,7 @@ The values of `startDateTime` and `endDateTime` are interpreted using the timezo This method also supports some of the [OData Query Parameters](/graph/query-parameters) to help customize the response. > [!NOTE] -> The **createdDateTime** and **lastModifiedDateTime** properties of [event](../resources/event.md) do not support `$select`. To get their values, simply query on **calendarView** without applying `$select`. +> The **createdDateTime** and **lastModifiedDateTime** properties of [event](../resources/event.md) don't support `$select`. To get their values, simply query on **calendarView** without applying `$select`. ## Request headers | Name | Type | Description | diff --git a/api-reference/beta/api/user-list-events.md b/api-reference/beta/api/user-list-events.md index e4e6373c914..f0f96f7bcda 100644 --- a/api-reference/beta/api/user-list-events.md +++ b/api-reference/beta/api/user-list-events.md @@ -94,7 +94,7 @@ The first example gets all the user's events. It specifies the following: - A `Prefer: outlook.timezone` header to get date time values returned in Pacific Standard Time. - A `$select` query parameter to return specific properties. Without a `$select` parameter, all of the event properties will be returned. -The request does not specify any `Prefer: outlook.body-content-type` header to indicate a specific format for the returned event body. +The request doesn't specify any `Prefer: outlook.body-content-type` header to indicate a specific format for the returned event body. #### Request diff --git a/api-reference/beta/api/user-list-mailfolders.md b/api-reference/beta/api/user-list-mailfolders.md index 7ef7a43ad38..b0fdb5195c2 100644 --- a/api-reference/beta/api/user-list-mailfolders.md +++ b/api-reference/beta/api/user-list-mailfolders.md @@ -18,7 +18,7 @@ Namespace: microsoft.graph Get the mail folder collection directly under the root folder of the signed-in user. The returned collection includes any [mail search folders](../resources/mailsearchfolder.md) directly under the root. -By default, this operation does not return hidden folders. Use a query parameter `includeHiddenFolders` to include them in the response. This operation does not return all mail folders in a mailbox, only the child folders of the root folder. To return all mail folders in a mailbox, each child folder must be [traversed separately](mailfolder-list-childfolders.md). +By default, this operation doesn't return hidden folders. Use a query parameter `includeHiddenFolders` to include them in the response. This operation doesn't return all mail folders in a mailbox, only the child folders of the root folder. To return all mail folders in a mailbox, each child folder must be [traversed separately](mailfolder-list-childfolders.md). [!INCLUDE [national-cloud-support](../../includes/all-clouds.md)] diff --git a/api-reference/beta/api/user-list-messages.md b/api-reference/beta/api/user-list-messages.md index 2d0d96a71be..6c41b0e84b8 100644 --- a/api-reference/beta/api/user-list-messages.md +++ b/api-reference/beta/api/user-list-messages.md @@ -22,10 +22,10 @@ To improve the operation response time, use `$select` to specify the exact prope To get the next page of messages, simply apply the entire URL returned in `@odata.nextLink` to the next get-messages request. This URL includes any query parameters you may have specified in the initial request. -Do not try to extract the `$skip` value from the `@odata.nextLink` URL to manipulate responses. This API uses the `$skip` value to keep count of all the items it has gone through in the user's mailbox to return a page of message-type items. It's therefore possible that even in the initial response, the `$skip` value is larger than the page size. For more information, see [Paging Microsoft Graph data in your app](/graph/paging). +Don't try to extract the `$skip` value from the `@odata.nextLink` URL to manipulate responses. This API uses the `$skip` value to keep count of all the items it has gone through in the user's mailbox to return a page of message-type items. It's therefore possible that even in the initial response, the `$skip` value is larger than the page size. For more information, see [Paging Microsoft Graph data in your app](/graph/paging). You can filter on the messages and get only those that include a [mention](../resources/mention.md) of the signed-in user. See an [example](#request-2) below. -By default, the `GET /me/messages` operation does not return the **mentions** property. Use the `$expand` query parameter +By default, the `GET /me/messages` operation doesn't return the **mentions** property. Use the `$expand` query parameter to [find details of each mention in a message](../api/message-get.md#example-2-get-all-mentions-in-a-specific-message). There are two scenarios where an app can get messages in another user's mail folder: diff --git a/api-reference/beta/api/user-list-people.md b/api-reference/beta/api/user-list-people.md index 09add77e9cf..dea977abe04 100644 --- a/api-reference/beta/api/user-list-people.md +++ b/api-reference/beta/api/user-list-people.md @@ -208,7 +208,7 @@ Content-type: application/json #### Requesting a subsequent page of people -If the first response does not contain the complete list of relevant people, you can make a second request using *$top* and *$skip* to request more pages of information. If the previous request has additional information, the following request gets the next page of people from the server. +If the first response doesn't contain the complete list of relevant people, you can make a second request using *$top* and *$skip* to request more pages of information. If the previous request has additional information, the following request gets the next page of people from the server. ```http GET https://graph.microsoft.com/beta/me/people/?$top=10&$skip=10 diff --git a/api-reference/beta/api/user-list-permissiongrants.md b/api-reference/beta/api/user-list-permissiongrants.md index 6c0bc02b25f..8354c3e5c3e 100644 --- a/api-reference/beta/api/user-list-permissiongrants.md +++ b/api-reference/beta/api/user-list-permissiongrants.md @@ -33,7 +33,7 @@ GET /users/{user-id}/permissionGrants ## Optional query parameters -This operation does not support the [OData query parameters](/graph/query-parameters) to customize the response. +This operation doesn't support the [OData query parameters](/graph/query-parameters) to customize the response. ## Request headers diff --git a/api-reference/beta/api/user-sendmail.md b/api-reference/beta/api/user-sendmail.md index 092d9e2dbe1..ad1bf3b96dc 100644 --- a/api-reference/beta/api/user-sendmail.md +++ b/api-reference/beta/api/user-sendmail.md @@ -75,7 +75,7 @@ When specifying the body in MIME format, provide the MIME content as **a base64- If successful, this method returns `202 Accepted` response code. It doesn't return anything in the response body. -> **Note**: A `202 Accepted` response code indicates that the request has been accepted; however, it does not indicate that the request processing has completed. Delivery of the message is subject to [Exchange Online limitations and throttling](/office365/servicedescriptions/exchange-online-service-description/exchange-online-limits). +> **Note**: A `202 Accepted` response code indicates that the request has been accepted; however, it doesn't indicate that the request processing has completed. Delivery of the message is subject to [Exchange Online limitations and throttling](/office365/servicedescriptions/exchange-online-service-description/exchange-online-limits). If the request body includes malformed MIME content, this method returns `400 Bad request` and the following error message: "Invalid base64 string for MIME content." diff --git a/api-reference/beta/api/useranalytics-get-settings.md b/api-reference/beta/api/useranalytics-get-settings.md index 403cb6facef..885d39b3bf8 100644 --- a/api-reference/beta/api/useranalytics-get-settings.md +++ b/api-reference/beta/api/useranalytics-get-settings.md @@ -33,7 +33,7 @@ GET /me/analytics/settings ## Optional query parameters -This method does not support optional query parameters to customize the response. +This method doesn't support optional query parameters to customize the response. ## Request headers diff --git a/api-reference/beta/api/userdatasecurityandgovernance-processcontent.md b/api-reference/beta/api/userdatasecurityandgovernance-processcontent.md index 4c98cf546ed..6013c9889d7 100644 --- a/api-reference/beta/api/userdatasecurityandgovernance-processcontent.md +++ b/api-reference/beta/api/userdatasecurityandgovernance-processcontent.md @@ -46,7 +46,7 @@ POST /users/{userId}/dataSecurityAndGovernance/processContent |:---|:---| |Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| |Content-Type|application/json. Required.| -| If-None-Match | Optional. This value is used by the API to determine if the policy state changed since the last call to the API. The value is from the Etag header returned from [protectionScopes compute](../api/userprotectionscopecontainer-compute.md). If newly computed Etag value does not match the value passsed in this header, protectionScopeState property returned will be "modified" and the app needs to refresh by calling [protectionScopes compute](../api/userprotectionscopecontainer-compute.md). | +| If-None-Match | Optional. This value is used by the API to determine if the policy state changed since the last call to the API. The value is from the Etag header returned from [protectionScopes compute](../api/userprotectionscopecontainer-compute.md). If newly computed Etag value doesn't match the value passsed in this header, protectionScopeState property returned will be "modified" and the app needs to refresh by calling [protectionScopes compute](../api/userprotectionscopecontainer-compute.md). | | Client-Request-Id | String (GUID recommended). Optional. Unique identifier for this request, which is used for tracing and debugging in logs and support interactions. If an ID is not provided, one may be generated automatically. We recommend that you specify the ID to make tracing and debugging easier. The same ID that was sent in the request will be returned in the response. | ## Request body diff --git a/api-reference/beta/api/userregistrationdetails-get.md b/api-reference/beta/api/userregistrationdetails-get.md index fdcd1825e14..5882101f995 100644 --- a/api-reference/beta/api/userregistrationdetails-get.md +++ b/api-reference/beta/api/userregistrationdetails-get.md @@ -39,7 +39,7 @@ GET /reports/authenticationMethods/userRegistrationDetails/{userId} ## Optional query parameters -This method does not support the OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support the OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers diff --git a/api-reference/beta/api/verticalsection-update.md b/api-reference/beta/api/verticalsection-update.md index 53b0f4b3f53..ee3cb6442c2 100644 --- a/api-reference/beta/api/verticalsection-update.md +++ b/api-reference/beta/api/verticalsection-update.md @@ -15,7 +15,7 @@ Namespace: microsoft.graph Update the properties of a [verticalSection](../resources/verticalSection.md) object. -If the vertical section does not exist, this method returns a `404 NotFound` response code. +If the vertical section doesn't exist, this method returns a `404 NotFound` response code. [!INCLUDE [national-cloud-support](../../includes/all-clouds.md)] @@ -52,7 +52,7 @@ In the request body, supply a JSON representation of the [verticalSection](../re If successful, this method returns a `200 OK` response code and an updated [verticalSection](../resources/verticalSection.md) object in the response body. -If the vertical section does not exist, this method returns a `404 NotFound` response code. +If the vertical section doesn't exist, this method returns a `404 NotFound` response code. ## Examples diff --git a/api-reference/beta/api/virtualendpoint-list-serviceplans.md b/api-reference/beta/api/virtualendpoint-list-serviceplans.md index 6a78eb84c92..564ab5e1baf 100644 --- a/api-reference/beta/api/virtualendpoint-list-serviceplans.md +++ b/api-reference/beta/api/virtualendpoint-list-serviceplans.md @@ -40,7 +40,7 @@ GET /deviceManagement/virtualEndpoint/servicePlans ## Optional query parameters -This method does not support OData query parameters to customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers diff --git a/api-reference/beta/api/virtualeventregistrationconfiguration-list-questions.md b/api-reference/beta/api/virtualeventregistrationconfiguration-list-questions.md index bfd049e30aa..862a572c97c 100644 --- a/api-reference/beta/api/virtualeventregistrationconfiguration-list-questions.md +++ b/api-reference/beta/api/virtualeventregistrationconfiguration-list-questions.md @@ -51,7 +51,7 @@ GET /solutions/virtualEvents/townhalls/{townhallId}/registrationConfiguration/qu ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers diff --git a/api-reference/beta/api/virtualeventregistrationconfiguration-post-questions.md b/api-reference/beta/api/virtualeventregistrationconfiguration-post-questions.md index a72bf78a6ab..2c8c0158a41 100644 --- a/api-reference/beta/api/virtualeventregistrationconfiguration-post-questions.md +++ b/api-reference/beta/api/virtualeventregistrationconfiguration-post-questions.md @@ -62,7 +62,7 @@ You can specify the following property when you create a **virtualEventRegistrat |Property|Type|Description| |:---|:---|:---| -|label|virtualEventRegistrationPredefinedQuestionLabel|Label of the predefined registration question. The following label values accept a single line of text: `street`, `city`, `state`, `postalCode`, `countryOrRegion`, `industry`, `jobTitle`, and `organization`. `unknownFutureValue` is an evolvable enumeration sentinel value; do not use this label.| +|label|virtualEventRegistrationPredefinedQuestionLabel|Label of the predefined registration question. The following label values accept a single line of text: `street`, `city`, `state`, `postalCode`, `countryOrRegion`, `industry`, `jobTitle`, and `organization`. `unknownFutureValue` is an evolvable enumeration sentinel value; don't use this label.| ## Response diff --git a/api-reference/beta/api/virtualmachinewithawsstoragebucketaccessfinding-get.md b/api-reference/beta/api/virtualmachinewithawsstoragebucketaccessfinding-get.md index 6093466ae03..90d0f6c374d 100644 --- a/api-reference/beta/api/virtualmachinewithawsstoragebucketaccessfinding-get.md +++ b/api-reference/beta/api/virtualmachinewithawsstoragebucketaccessfinding-get.md @@ -35,7 +35,7 @@ GET /identityGovernance/permissionsAnalytics/aws/findings/{id}/microsoft.graph.v ``` ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers |Name|Description| diff --git a/api-reference/beta/api/windowsupdates-deploymentaudience-updateaudiencebyid.md b/api-reference/beta/api/windowsupdates-deploymentaudience-updateaudiencebyid.md index 6e55fc9123a..20a7bedcce6 100644 --- a/api-reference/beta/api/windowsupdates-deploymentaudience-updateaudiencebyid.md +++ b/api-reference/beta/api/windowsupdates-deploymentaudience-updateaudiencebyid.md @@ -16,7 +16,7 @@ Namespace: microsoft.graph.windowsUpdates Update the members and exclusions collections of a [deploymentAudience](../resources/windowsupdates-deploymentaudience.md) with [updatableAsset](../resources/windowsupdates-updatableasset.md) resources of the same type. -Adding an [azureADDevice](../resources/windowsupdates-azureaddevice.md) to the members or exclusions collections of a deployment audience automatically creates a Microsoft Entra device object if it does not already exist. +Adding an [azureADDevice](../resources/windowsupdates-azureaddevice.md) to the members or exclusions collections of a deployment audience automatically creates a Microsoft Entra device object if it doesn't already exist. If the same [updatableAsset](../resources/windowsupdates-updatableasset.md) gets included in the **exclusions** and **members** collections of a **deploymentAudience**, deployment will not apply to that asset. diff --git a/api-reference/beta/api/windowsupdates-updatableasset-enrollassets.md b/api-reference/beta/api/windowsupdates-updatableasset-enrollassets.md index 2cf335b5776..28972c3c267 100644 --- a/api-reference/beta/api/windowsupdates-updatableasset-enrollassets.md +++ b/api-reference/beta/api/windowsupdates-updatableasset-enrollassets.md @@ -17,7 +17,7 @@ Enroll [updatableAsset](../resources/windowsupdates-updatableasset.md) resources You can enroll an [azureADDevice](../resources/windowsupdates-azureaddevice.md) resource in update management, but may not enroll an [updatableAssetGroup](../resources/windowsupdates-updatableassetgroup.md) in update management. -Enrolling a Microsoft Entra device in update management automatically creates an **azureADDevice** object if it does not already exist. +Enrolling a Microsoft Entra device in update management automatically creates an **azureADDevice** object if it doesn't already exist. You can also use the method [enrollAssetsById](windowsupdates-updatableasset-enrollassetsbyid.md) to enroll assets. diff --git a/api-reference/beta/api/windowsupdates-updatableassetgroup-addmembers.md b/api-reference/beta/api/windowsupdates-updatableassetgroup-addmembers.md index 4cf8d9bd062..59d4f545990 100644 --- a/api-reference/beta/api/windowsupdates-updatableassetgroup-addmembers.md +++ b/api-reference/beta/api/windowsupdates-updatableassetgroup-addmembers.md @@ -17,7 +17,7 @@ Add members to an [updatableAssetGroup](../resources/windowsupdates-updatableass You can add [azureADDevice](../resources/windowsupdates-azureaddevice.md) resources as members, but may not add **updatableAssetGroup** resources as members. -Adding a Microsoft Entra device as a member of an updatable asset group automatically creates an **azureADDevice** object, if it does not already exist. +Adding a Microsoft Entra device as a member of an updatable asset group automatically creates an **azureADDevice** object, if it doesn't already exist. You can also use the method [addMembersById](windowsupdates-updatableassetgroup-addmembersbyid.md) to add members. diff --git a/api-reference/beta/api/workbook-tablerowoperationresult.md b/api-reference/beta/api/workbook-tablerowoperationresult.md index 54d7bfb71d7..bf38dc29e9b 100644 --- a/api-reference/beta/api/workbook-tablerowoperationresult.md +++ b/api-reference/beta/api/workbook-tablerowoperationresult.md @@ -23,7 +23,7 @@ An asynchronous request to create table rows involves the following steps: Alternatively, for convenience, after you get a `succeeded` **operationStatus** result, you can get the query URL from the **resourceLocation** property of the [workbookOperation](../resources/workbookoperation.md) returned in the response, and apply the query URL to step 3. 3. Use the query URL returned from step 2 as the GET request URL for this function **tableRowOperationResult**. A successful function call returns the new table rows in a [workbookTableRow](../resources/workbooktablerow.md) resource. -This function does not do anything if called independently. +This function doesn't do anything if called independently. [!INCLUDE [national-cloud-support](../../includes/global-us.md)] diff --git a/api-reference/beta/api/x509certificateauthenticationmethodconfiguration-get.md b/api-reference/beta/api/x509certificateauthenticationmethodconfiguration-get.md index 4ee528f27ff..02a6729e932 100644 --- a/api-reference/beta/api/x509certificateauthenticationmethodconfiguration-get.md +++ b/api-reference/beta/api/x509certificateauthenticationmethodconfiguration-get.md @@ -36,7 +36,7 @@ GET /policies/authenticationMethodsPolicy/authenticationMethodConfigurations/x50 ``` ## Optional query parameters -This method does not support the OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support the OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers |Name|Description| diff --git a/api-reference/v1.0/api/accessreviewinstance-update.md b/api-reference/v1.0/api/accessreviewinstance-update.md index cd937d4a70f..a2daedea2e0 100644 --- a/api-reference/v1.0/api/accessreviewinstance-update.md +++ b/api-reference/v1.0/api/accessreviewinstance-update.md @@ -49,7 +49,7 @@ PUT /identityGovernance/accessReviews/definitions/{accessReviewScheduleDefinitio |Property|Type|Description| |:---|:---|:---| -|fallbackReviewers|[accessReviewReviewerScope](../resources/accessreviewreviewerscope.md) collection|This collection of reviewer scopes is used to define the list of fallback reviewers. These fallback reviewers will be notified to take action if no users are found from the list of reviewers specified. This could occur when either the group owner is specified as the reviewer but the group owner does not exist, or manager is specified as reviewer but a user's manager does not exist. Optional. Updatable.| +|fallbackReviewers|[accessReviewReviewerScope](../resources/accessreviewreviewerscope.md) collection|This collection of reviewer scopes is used to define the list of fallback reviewers. These fallback reviewers will be notified to take action if no users are found from the list of reviewers specified. This could occur when either the group owner is specified as the reviewer but the group owner doesn't exist, or manager is specified as reviewer but a user's manager doesn't exist. Optional. Updatable.| |reviewers|[accessReviewReviewerScope](../resources/accessreviewreviewerscope.md) collection|This collection of access review scopes is used to define who the reviewers are. For examples of options for assigning reviewers, see [Assign reviewers to your access review definition using the Microsoft Graph API](/graph/accessreviews-scope-concept). Optional. Updatable.| |scope|[accessReviewScope](../resources/accessreviewscope.md)|Created based on **scope** and **instanceEnumerationScope** at the [accessReviewScheduleDefinition](../resources/accessreviewscheduledefinition.md) level. Defines the scope of users reviewed in a group. Read-only. Required but not updated.| diff --git a/api-reference/v1.0/api/accessreviewscheduledefinition-update.md b/api-reference/v1.0/api/accessreviewscheduledefinition-update.md index 7dac8d96cf8..2c70fa12a83 100644 --- a/api-reference/v1.0/api/accessreviewscheduledefinition-update.md +++ b/api-reference/v1.0/api/accessreviewscheduledefinition-update.md @@ -47,7 +47,7 @@ The following table shows the properties accepted to update an accessReviewSched | descriptionForAdmins | String | Context of the review provided to admins. | | descriptionForReviewers | String | Context of the review provided to reviewers. | | displayName | String | Name of access review series. | -| fallbackReviewers|[accessReviewReviewerScope](../resources/accessreviewreviewerscope.md) collection|A collection of reviewer scopes used to define the list of fallback reviewers who are notified to take action if no users are found from the list of reviewers specified. This could occur when either the group owner is specified as the reviewer but the group owner does not exist, or manager is specified as reviewer but a user's manager does not exist.| +| fallbackReviewers|[accessReviewReviewerScope](../resources/accessreviewreviewerscope.md) collection|A collection of reviewer scopes used to define the list of fallback reviewers who are notified to take action if no users are found from the list of reviewers specified. This could occur when either the group owner is specified as the reviewer but the group owner doesn't exist, or manager is specified as reviewer but a user's manager doesn't exist.| | reviewers | [accessReviewReviewerScope](../resources/accessreviewreviewerscope.md) collection| Defines who the reviewers are. If none are specified, the review is a self-review (users review their own access). The **reviewers** property is only updatable if individual users are assigned as reviewers. See [accessReviewReviewerScope](../resources/accessreviewreviewerscope.md). | |stageSettings|[accessReviewStageSettings](../resources/accessreviewstagesettings.md) collection| Defines how many stages each instance of an access review series will have. Stages will be created sequentially based on the **dependsOn** property. Each stage can have different set of reviewer, fallback reviewers and settings. Only reviewers and fallback reviewers are updatable. See [accessReviewStageSettings](../resources/accessreviewstagesettings.md).| | settings | [accessReviewScheduleSettings](../resources/accessreviewschedulesettings.md) | The settings for an access review series. See [accessReviewScheduleSettings](../resources/accessreviewschedulesettings.md). | diff --git a/api-reference/v1.0/api/accessreviewset-post-definitions.md b/api-reference/v1.0/api/accessreviewset-post-definitions.md index b8b953f197d..f9bd8d2f1e3 100644 --- a/api-reference/v1.0/api/accessreviewset-post-definitions.md +++ b/api-reference/v1.0/api/accessreviewset-post-definitions.md @@ -47,7 +47,7 @@ The following table shows the properties accepted to create an accessReview. | descriptionForAdmins | String | Context of the review provided to admins. Required. | | descriptionForReviewers | String | Context of the review provided to reviewers in email notifications. Email notifications support up to 256 characters. Required. | | displayName | String | Name of access review series. Required.| -| fallbackReviewers |[accessReviewReviewerScope](../resources/accessreviewreviewerscope.md) collection|If provided, the fallback reviewers are asked to complete a review if the primary reviewers do not exist. For example, if managers are selected as `reviewers` and a principal under review does not have a manager in Microsoft Entra ID, the fallback reviewers are asked to review that principal.

**NOTE:** The value of this property will be ignored if fallback reviewers are assigned through the **stageSettings** property.| +| fallbackReviewers |[accessReviewReviewerScope](../resources/accessreviewreviewerscope.md) collection|If provided, the fallback reviewers are asked to complete a review if the primary reviewers don't exist. For example, if managers are selected as `reviewers` and a principal under review doesn't have a manager in Microsoft Entra ID, the fallback reviewers are asked to review that principal.

**NOTE:** The value of this property will be ignored if fallback reviewers are assigned through the **stageSettings** property.| | instanceEnumerationScope | [accessReviewScope](../resources/accessreviewscope.md) | In the case of an all groups review, this determines the scope of which groups will be reviewed. See [accessReviewScope](../resources/accessreviewscope.md) and also learn how to [configure the scope of your access review definition](/graph/accessreviews-scope-concept).| | reviewers | [accessReviewReviewerScope](../resources/accessreviewreviewerscope.md) collection | Defines who the reviewers are. If none are specified, the review is a self-review (users review their own access). For examples of options for assigning reviewers, see [Assign reviewers to your access review definition using the Microsoft Graph API](/graph/accessreviews-reviewers-concept).

**NOTE:** The value of this property will be ignored if reviewers are assigned through the **stageSettings** property. | | scope | [accessReviewScope](../resources/accessreviewscope.md) | Defines the entities whose access is reviewed. See [accessReviewScope](../resources/accessreviewscope.md) and also learn how to [configure the scope of your access review definition](/graph/accessreviews-scope-concept). Required.| diff --git a/api-reference/v1.0/api/accessreviewstage-update.md b/api-reference/v1.0/api/accessreviewstage-update.md index 49c27d9c32b..b18de89b811 100644 --- a/api-reference/v1.0/api/accessreviewstage-update.md +++ b/api-reference/v1.0/api/accessreviewstage-update.md @@ -50,7 +50,7 @@ PATCH /identityGovernance/accessReviews/definitions/{accessReviewScheduleDefinit |Property|Type|Description| |:---|:---|:---| |reviewers|[accessReviewReviewerScope](../resources/accessreviewreviewerscope.md) collection|This collection of access review scopes is used to define who the reviewers are. For examples of options for assigning reviewers, see [Assign reviewers to your access review definition using the Microsoft Graph API](/graph/accessreviews-scope-concept).| -|fallbackReviewers|[accessReviewReviewerScope](../resources/accessreviewreviewerscope.md) collection|This collection of reviewer scopes is used to define the list of fallback reviewers. These fallback reviewers will be notified to take action if no users are found from the list of reviewers specified. This could occur when either the group owner is specified as the reviewer but the group owner does not exist, or manager is specified as reviewer but a user's manager does not exist.| +|fallbackReviewers|[accessReviewReviewerScope](../resources/accessreviewreviewerscope.md) collection|This collection of reviewer scopes is used to define the list of fallback reviewers. These fallback reviewers will be notified to take action if no users are found from the list of reviewers specified. This could occur when either the group owner is specified as the reviewer but the group owner doesn't exist, or manager is specified as reviewer but a user's manager doesn't exist.| diff --git a/api-reference/v1.0/api/agentidentity-list.md b/api-reference/v1.0/api/agentidentity-list.md index 22d24b75e79..a6a51dcf446 100644 --- a/api-reference/v1.0/api/agentidentity-list.md +++ b/api-reference/v1.0/api/agentidentity-list.md @@ -12,7 +12,7 @@ doc_type: apiPageType Namespace: microsoft.graph -Retrieve a list of [agentIdentity](../resources/agentidentity.md) objects. Does not return other types of service principal objects. +Retrieve a list of [agentIdentity](../resources/agentidentity.md) objects. Doesn't return other types of service principal objects. ## Permissions diff --git a/api-reference/v1.0/api/agentidentityblueprint-list.md b/api-reference/v1.0/api/agentidentityblueprint-list.md index f1066023009..f1e4d129849 100644 --- a/api-reference/v1.0/api/agentidentityblueprint-list.md +++ b/api-reference/v1.0/api/agentidentityblueprint-list.md @@ -12,7 +12,7 @@ doc_type: apiPageType Namespace: microsoft.graph -Get a list of the [agentIdentityBlueprint](../resources/agentidentityblueprint.md) objects and their properties. Does not return other types of application objects. +Get a list of the [agentIdentityBlueprint](../resources/agentidentityblueprint.md) objects and their properties. Doesn't return other types of application objects. ## Permissions diff --git a/api-reference/v1.0/api/agreementfile-get.md b/api-reference/v1.0/api/agreementfile-get.md index c39534e98c8..9f23cc3815f 100644 --- a/api-reference/v1.0/api/agreementfile-get.md +++ b/api-reference/v1.0/api/agreementfile-get.md @@ -34,7 +34,7 @@ GET /agreements/{agreementsId}/file ``` ## Optional query parameters -This method does not support any OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support any OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers |Name|Description| diff --git a/api-reference/v1.0/api/agreementfile-list-localizations.md b/api-reference/v1.0/api/agreementfile-list-localizations.md index 4441c4921dc..64d1a2666d0 100644 --- a/api-reference/v1.0/api/agreementfile-list-localizations.md +++ b/api-reference/v1.0/api/agreementfile-list-localizations.md @@ -34,7 +34,7 @@ GET /agreements/{agreementsId}/file/localizations ``` ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers |Name|Description| diff --git a/api-reference/v1.0/api/allowedvalue-get.md b/api-reference/v1.0/api/allowedvalue-get.md index 2403406e7d9..ac9b2c254bf 100644 --- a/api-reference/v1.0/api/allowedvalue-get.md +++ b/api-reference/v1.0/api/allowedvalue-get.md @@ -29,7 +29,7 @@ The signed-in user must also be assigned one of the following [directory roles]( + Attribute Definition Reader + Attribute Definition Administrator -By default, Global Administrator and other administrator roles do not have permissions to read, define, or assign custom security attributes. +By default, Global Administrator and other administrator roles don't have permissions to read, define, or assign custom security attributes. ## HTTP request diff --git a/api-reference/v1.0/api/application-addkey.md b/api-reference/v1.0/api/application-addkey.md index 17cb71b0ed3..2d8f38835df 100644 --- a/api-reference/v1.0/api/application-addkey.md +++ b/api-reference/v1.0/api/application-addkey.md @@ -33,7 +33,7 @@ Choose the permission or permissions marked as least privileged for this API. Us [!INCLUDE [permissions-table](../includes/permissions/application-addkey-permissions.md)] > [!NOTE] -> An application does not need any specific permission to roll its own keys. +> An application doesn't need any specific permission to roll its own keys. [!INCLUDE [rbac-apps-serviceprincipal-creds-apis](../includes/rbac-for-apis/rbac-apps-serviceprincipal-creds-apis.md)] diff --git a/api-reference/v1.0/api/application-post-applications.md b/api-reference/v1.0/api/application-post-applications.md index d98a76441c4..926673119d2 100644 --- a/api-reference/v1.0/api/application-post-applications.md +++ b/api-reference/v1.0/api/application-post-applications.md @@ -16,7 +16,7 @@ Create a new [application](../resources/application.md) object. This API can als > [!IMPORTANT] > -> Do not share application client IDs (**appId**) in API documentation or code samples. +> Don't share application client IDs (**appId**) in API documentation or code samples. [!INCLUDE [national-cloud-support](../../includes/all-clouds.md)] diff --git a/api-reference/v1.0/api/application-removekey.md b/api-reference/v1.0/api/application-removekey.md index 4e057af4bca..33df0f22504 100644 --- a/api-reference/v1.0/api/application-removekey.md +++ b/api-reference/v1.0/api/application-removekey.md @@ -29,7 +29,7 @@ Choose the permission or permissions marked as least privileged for this API. Us [!INCLUDE [permissions-table](../includes/permissions/application-removekey-permissions.md)] > [!NOTE] -> An application does not need any specific permission to roll its own keys. +> An application doesn't need any specific permission to roll its own keys. [!INCLUDE [rbac-apps-serviceprincipal-creds-apis](../includes/rbac-for-apis/rbac-apps-serviceprincipal-creds-apis.md)] diff --git a/api-reference/v1.0/api/application-update.md b/api-reference/v1.0/api/application-update.md index 9de44154cff..7862e2ce6fe 100644 --- a/api-reference/v1.0/api/application-update.md +++ b/api-reference/v1.0/api/application-update.md @@ -82,7 +82,7 @@ In the request body, supply the values for relevant fields that should be update ## Response -If successful, this method returns a `204 No Content` response code and does not return anything in the response body. +If successful, this method returns a `204 No Content` response code and doesn't return anything in the response body. ## Examples diff --git a/api-reference/v1.0/api/approval-get.md b/api-reference/v1.0/api/approval-get.md index 2c9e53a527f..05e0edb07c9 100644 --- a/api-reference/v1.0/api/approval-get.md +++ b/api-reference/v1.0/api/approval-get.md @@ -69,7 +69,7 @@ Don't supply a request body for this method. ## Response -If successful, this method returns a `200 OK` response code and the requested [approval](../resources/approval.md) object in the response body. If the caller does not have the right permissions, the method returns a `403 Forbidden` response code. +If successful, this method returns a `200 OK` response code and the requested [approval](../resources/approval.md) object in the response body. If the caller doesn't have the right permissions, the method returns a `403 Forbidden` response code. ## Examples diff --git a/api-reference/v1.0/api/approval-list-stages.md b/api-reference/v1.0/api/approval-list-stages.md index 8234e997e42..2ba251c83ec 100644 --- a/api-reference/v1.0/api/approval-list-stages.md +++ b/api-reference/v1.0/api/approval-list-stages.md @@ -69,7 +69,7 @@ Don't supply a request body for this method. ## Response -If successful, this method returns a `200 OK` response code and a collection of the [approvalStage](../resources/approvalstage.md) objects in the response body. If the caller does not have the right permissions, the method returns a `403 Forbidden` response code. +If successful, this method returns a `200 OK` response code and a collection of the [approvalStage](../resources/approvalstage.md) objects in the response body. If the caller doesn't have the right permissions, the method returns a `403 Forbidden` response code. ## Examples diff --git a/api-reference/v1.0/api/approvalstage-get.md b/api-reference/v1.0/api/approvalstage-get.md index 4079e85bfc5..fa034576ccc 100644 --- a/api-reference/v1.0/api/approvalstage-get.md +++ b/api-reference/v1.0/api/approvalstage-get.md @@ -65,7 +65,7 @@ Don't supply a request body for this method. ## Response -If successful, this method returns a `200 OK` response code and the [approvalStage](../resources/approvalstage.md) object in the response body. If the caller does not have the right permissions, the method returns a `403 Forbidden` response code. +If successful, this method returns a `200 OK` response code and the [approvalStage](../resources/approvalstage.md) object in the response body. If the caller doesn't have the right permissions, the method returns a `403 Forbidden` response code. ## Examples diff --git a/api-reference/v1.0/api/associatedteaminfo-list.md b/api-reference/v1.0/api/associatedteaminfo-list.md index 5b264b8464b..1d7e26e1e99 100644 --- a/api-reference/v1.0/api/associatedteaminfo-list.md +++ b/api-reference/v1.0/api/associatedteaminfo-list.md @@ -38,7 +38,7 @@ GET /users/{user-id}/teamwork/associatedTeams ``` ## Optional query parameters -This method does not currently support the [OData query parameters](/graph/query-parameters) to customize the response. +This method doesn't currently support the [OData query parameters](/graph/query-parameters) to customize the response. ## Request headers |Name|Description| diff --git a/api-reference/v1.0/api/attachment-createuploadsession.md b/api-reference/v1.0/api/attachment-createuploadsession.md index bc3b7b8180b..d5bd993e66b 100644 --- a/api-reference/v1.0/api/attachment-createuploadsession.md +++ b/api-reference/v1.0/api/attachment-createuploadsession.md @@ -81,7 +81,7 @@ If successful, this method returns a `201 Created` response code and a new [uplo >**Note**: > ->The **uploadUrl** property returned as part of the **uploadSession** response object is an opaque URL for subsequent `PUT` queries to upload byte ranges of the file. It contains the appropriate auth token for subsequent `PUT` queries that expire by **expirationDateTime**. Do not customize this URL. +>The **uploadUrl** property returned as part of the **uploadSession** response object is an opaque URL for subsequent `PUT` queries to upload byte ranges of the file. It contains the appropriate auth token for subsequent `PUT` queries that expire by **expirationDateTime**. Don't customize this URL. > >The **nextExpectedRanges** property specifies the next file byte location to upload from, for example, `"NextExpectedRanges":["2097152"]`. You must upload bytes in a file in order. diff --git a/api-reference/v1.0/api/authentication-list-methods.md b/api-reference/v1.0/api/authentication-list-methods.md index 4a43a04b6bc..9f877fc0106 100644 --- a/api-reference/v1.0/api/authentication-list-methods.md +++ b/api-reference/v1.0/api/authentication-list-methods.md @@ -56,7 +56,7 @@ GET /users/{id | userPrincipalName}/authentication/methods ## Optional query parameters -This method does not support optional query parameters to customize the response. +This method doesn't support optional query parameters to customize the response. ## Request headers diff --git a/api-reference/v1.0/api/authenticationcombinationconfiguration-get.md b/api-reference/v1.0/api/authenticationcombinationconfiguration-get.md index 464c31cc239..124b297511f 100644 --- a/api-reference/v1.0/api/authenticationcombinationconfiguration-get.md +++ b/api-reference/v1.0/api/authenticationcombinationconfiguration-get.md @@ -35,7 +35,7 @@ GET /identity/conditionalAccess/authenticationStrength/policies/{authenticationS ``` ## Optional query parameters -This method does not support OData query parameters. +This method doesn't support OData query parameters. ## Request headers |Name|Description| diff --git a/api-reference/v1.0/api/authenticationcontextclassreference-get.md b/api-reference/v1.0/api/authenticationcontextclassreference-get.md index b36160f9d71..f05c7aa2ce5 100644 --- a/api-reference/v1.0/api/authenticationcontextclassreference-get.md +++ b/api-reference/v1.0/api/authenticationcontextclassreference-get.md @@ -34,7 +34,7 @@ GET /identity/conditionalAccess/authenticationContextClassReferences/{id} ``` ## Optional query parameters -This method does not support optional query parameters to customize the response. +This method doesn't support optional query parameters to customize the response. ## Request headers diff --git a/api-reference/v1.0/api/authenticationeventlistener-get.md b/api-reference/v1.0/api/authenticationeventlistener-get.md index c281e88ae2e..4a1620a3973 100644 --- a/api-reference/v1.0/api/authenticationeventlistener-get.md +++ b/api-reference/v1.0/api/authenticationeventlistener-get.md @@ -46,7 +46,7 @@ GET /identity/authenticationEventListeners/{authenticationEventListenerId} ``` ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers |Name|Description| diff --git a/api-reference/v1.0/api/authenticationmethod-get.md b/api-reference/v1.0/api/authenticationmethod-get.md index be906ea916e..7175a504d8f 100644 --- a/api-reference/v1.0/api/authenticationmethod-get.md +++ b/api-reference/v1.0/api/authenticationmethod-get.md @@ -54,7 +54,7 @@ GET /users/{id | userPrincipalName}/authentication/methods/{id} ## Optional query parameters -This method does not support optional query parameters to customize the response. +This method doesn't support optional query parameters to customize the response. ## Request headers diff --git a/api-reference/v1.0/api/authenticationmethodmodedetail-get.md b/api-reference/v1.0/api/authenticationmethodmodedetail-get.md index a658fb62939..6388b5f6a70 100644 --- a/api-reference/v1.0/api/authenticationmethodmodedetail-get.md +++ b/api-reference/v1.0/api/authenticationmethodmodedetail-get.md @@ -37,7 +37,7 @@ GET /identity/conditionalAccess/authenticationStrength/authenticationMethodModes ``` ## Optional query parameters -This method does not support OData query parameters. +This method doesn't support OData query parameters. ## Request headers |Name|Description| diff --git a/api-reference/v1.0/api/authenticationmethodspolicy-get.md b/api-reference/v1.0/api/authenticationmethodspolicy-get.md index 51f3249fa62..1263bb4023d 100644 --- a/api-reference/v1.0/api/authenticationmethodspolicy-get.md +++ b/api-reference/v1.0/api/authenticationmethodspolicy-get.md @@ -35,7 +35,7 @@ GET /policies/authenticationMethodsPolicy ``` ## Optional query parameters -This method does not support any optional query parameters. +This method doesn't support any optional query parameters. ## Request headers |Name|Description| diff --git a/api-reference/v1.0/api/authenticationstrengthpolicy-get.md b/api-reference/v1.0/api/authenticationstrengthpolicy-get.md index 063c9e8ef36..d4ecfb414de 100644 --- a/api-reference/v1.0/api/authenticationstrengthpolicy-get.md +++ b/api-reference/v1.0/api/authenticationstrengthpolicy-get.md @@ -35,7 +35,7 @@ GET /policies/authenticationStrengthPolicies/{authenticationStrengthPolicyId} ``` ## Optional query parameters -This method does not support OData query parameters. +This method doesn't support OData query parameters. ## Request headers |Name|Description| diff --git a/api-reference/v1.0/api/authenticationstrengthpolicy-list-combinationconfigurations.md b/api-reference/v1.0/api/authenticationstrengthpolicy-list-combinationconfigurations.md index 7176c34ff5c..da0fc4f0857 100644 --- a/api-reference/v1.0/api/authenticationstrengthpolicy-list-combinationconfigurations.md +++ b/api-reference/v1.0/api/authenticationstrengthpolicy-list-combinationconfigurations.md @@ -39,7 +39,7 @@ GET /identity/conditionalAccess/authenticationStrength/policies/{authenticationS ``` ## Optional query parameters -This method does not support OData query parameters. +This method doesn't support OData query parameters. ## Request headers |Name|Description| diff --git a/api-reference/v1.0/api/authenticationstrengthpolicy-usage.md b/api-reference/v1.0/api/authenticationstrengthpolicy-usage.md index fdb497db9b4..a6b6ea7649e 100644 --- a/api-reference/v1.0/api/authenticationstrengthpolicy-usage.md +++ b/api-reference/v1.0/api/authenticationstrengthpolicy-usage.md @@ -12,7 +12,7 @@ ms.date: 04/04/2024 # authenticationStrengthPolicy: usage Namespace: microsoft.graph -Allows the caller to see which Conditional Access policies reference a specified authentication strength policy. The policies are returned in two collections, one containing Conditional Access policies that require an MFA claim and the other containing Conditional Access policies that do not require such a claim. Policies in the former category are restricted in what kinds of changes may be made to them to prevent undermining the MFA requirement of those policies. +Allows the caller to see which Conditional Access policies reference a specified authentication strength policy. The policies are returned in two collections, one containing Conditional Access policies that require an MFA claim and the other containing Conditional Access policies that don't require such a claim. Policies in the former category are restricted in what kinds of changes may be made to them to prevent undermining the MFA requirement of those policies. [!INCLUDE [national-cloud-support](../../includes/global-us.md)] diff --git a/api-reference/v1.0/api/authenticationstrengthroot-list-authenticationmethodmodes.md b/api-reference/v1.0/api/authenticationstrengthroot-list-authenticationmethodmodes.md index d071ea1d88a..0845830d0e6 100644 --- a/api-reference/v1.0/api/authenticationstrengthroot-list-authenticationmethodmodes.md +++ b/api-reference/v1.0/api/authenticationstrengthroot-list-authenticationmethodmodes.md @@ -48,7 +48,7 @@ GET /identity/conditionalAccess/authenticationStrength/combinations ``` ## Optional query parameters -This method does not support OData query parameters. +This method doesn't support OData query parameters. ## Request headers |Name|Description| diff --git a/api-reference/v1.0/api/backuprestoreroot-list-onedriveforbusinessbrowsesessions.md b/api-reference/v1.0/api/backuprestoreroot-list-onedriveforbusinessbrowsesessions.md index 9009b3d2993..e573c3aac42 100644 --- a/api-reference/v1.0/api/backuprestoreroot-list-onedriveforbusinessbrowsesessions.md +++ b/api-reference/v1.0/api/backuprestoreroot-list-onedriveforbusinessbrowsesessions.md @@ -37,7 +37,7 @@ GET /solutions/backupRestore/oneDriveForBusinessBrowseSessions ## Optional query parameters -This method does not support query parameters. +This method doesn't support query parameters. ## Request headers diff --git a/api-reference/v1.0/api/backuprestoreroot-list-sharepointbrowsesessions.md b/api-reference/v1.0/api/backuprestoreroot-list-sharepointbrowsesessions.md index 877c857a3c8..b47c7e858a3 100644 --- a/api-reference/v1.0/api/backuprestoreroot-list-sharepointbrowsesessions.md +++ b/api-reference/v1.0/api/backuprestoreroot-list-sharepointbrowsesessions.md @@ -37,7 +37,7 @@ GET /solutions/backupRestore/sharePointBrowseSessions ## Optional query parameters -This method does not support query parameters. +This method doesn't support query parameters. ## Request headers diff --git a/api-reference/v1.0/api/basesitepage-list.md b/api-reference/v1.0/api/basesitepage-list.md index 2f98d29b44e..30cf9f90e1a 100644 --- a/api-reference/v1.0/api/basesitepage-list.md +++ b/api-reference/v1.0/api/basesitepage-list.md @@ -14,7 +14,7 @@ Namespace: microsoft.graph Get the collection of [baseSitePage][] objects from the site pages [list][] in a [site][]. All pages in the site are returned (with pagination). Sort alphabetically by **name** in ascending order. -> **Note:** The [baseSitePage][] specified is a parent type and does not have any instance. As a result, the returned data only consists of available subtypes that are provided as a list. +> **Note:** The [baseSitePage][] specified is a parent type and doesn't have any instance. As a result, the returned data only consists of available subtypes that are provided as a list. **The following table lists the available subtypes.** diff --git a/api-reference/v1.0/api/bitlocker-list-recoverykeys.md b/api-reference/v1.0/api/bitlocker-list-recoverykeys.md index 1d44abec41e..be58b1b2c89 100644 --- a/api-reference/v1.0/api/bitlocker-list-recoverykeys.md +++ b/api-reference/v1.0/api/bitlocker-list-recoverykeys.md @@ -14,7 +14,7 @@ Namespace: microsoft.graph Get a list of the [bitlockerRecoveryKey](../resources/bitlockerrecoverykey.md) objects and their properties. -This operation does not return the **key** property. For information about how to read the **key** property, see [Get bitlockerRecoveryKey](bitlockerrecoverykey-get.md). +This operation doesn't return the **key** property. For information about how to read the **key** property, see [Get bitlockerRecoveryKey](bitlockerrecoverykey-get.md). You can use this API to programmatically iterate through the list of recovery keys in the tenant and identify devices with BitLocker enabled. For more information, see the sample PowerShell code in [BitLocker recovery process](/windows/security/operating-system-security/data-protection/bitlocker/recovery-process#helpdesk-recovery-in-microsoft-entra-id). @@ -52,7 +52,7 @@ GET /informationProtection/bitlocker/recoveryKeys ## Optional query parameters -This method supports the `$filter` OData query parameter to filter results by the **deviceId** of the device that the key was most recently backed up to. This method does not support `$top`. For general information, see [OData query parameters](/graph/query-parameters). +This method supports the `$filter` OData query parameter to filter results by the **deviceId** of the device that the key was most recently backed up to. This method doesn't support `$top`. For general information, see [OData query parameters](/graph/query-parameters). The response might also contain an `odata.nextLink`, which you can use to page through the result set. For details, see [Paging Microsoft Graph data](/graph/paging). diff --git a/api-reference/v1.0/api/bookingappointment-update.md b/api-reference/v1.0/api/bookingappointment-update.md index 13ed392b023..2abd47c2b17 100644 --- a/api-reference/v1.0/api/bookingappointment-update.md +++ b/api-reference/v1.0/api/bookingappointment-update.md @@ -160,7 +160,7 @@ The following example updates the customers array for a multi-customer appointme > [!NOTE] > - Each object in the **customers** array must include `@odata.type` set to `#microsoft.graph.bookingCustomerInformation`. Omitting this property causes the request to fail. -> - Include customer details such as **name**, **emailAddress**, and **phone** for each entry. The API does not automatically populate these fields from the **customerId** — if omitted, they will be blank on the appointment. +> - Include customer details such as **name**, **emailAddress**, and **phone** for each entry. The API doesn't automatically populate these fields from the **customerId** — if omitted, they will be blank on the appointment. > - The **customerId** must reference a valid [bookingCustomer](../resources/bookingcustomer.md) that exists in the Booking Calendar. If it doesn't exist, create one using the [Create bookingCustomer](bookingbusiness-post-customers.md) operation. > - The associated [bookingService](../resources/bookingservice.md) must have **maximumAttendeesCount** greater than 1 to support multiple customers. diff --git a/api-reference/v1.0/api/bookingbusiness-list.md b/api-reference/v1.0/api/bookingbusiness-list.md index 7c62fe753a6..93eaf9fe826 100644 --- a/api-reference/v1.0/api/bookingbusiness-list.md +++ b/api-reference/v1.0/api/bookingbusiness-list.md @@ -14,7 +14,7 @@ Namespace: microsoft.graph Get a collection of [bookingBusiness](../resources/bookingbusiness.md) objects that has been created for the tenant. -This operation returns only the **id** and **displayName** of each Microsoft Bookings business in the collection. For performance considerations, it does not return other properties. You can get the other properties of a Bookings business by specifying its **id** in a [GET](bookingbusiness-get.md) operation. +This operation returns only the **id** and **displayName** of each Microsoft Bookings business in the collection. For performance considerations, it doesn't return other properties. You can get the other properties of a Bookings business by specifying its **id** in a [GET](bookingbusiness-get.md) operation. > **Note:** Results are limited to 500 mailboxes. Pagination of the results is not currently supported. diff --git a/api-reference/v1.0/api/bookingcustomer-get.md b/api-reference/v1.0/api/bookingcustomer-get.md index acf4c97426e..6fdf6fa4923 100644 --- a/api-reference/v1.0/api/bookingcustomer-get.md +++ b/api-reference/v1.0/api/bookingcustomer-get.md @@ -28,7 +28,7 @@ Choose the permission or permissions marked as least privileged for this API. Us ```http GET /solutions/bookingBusinesses/{id}/customers/{id} ``` -> **Note:** This method currently requires the ID to be Base64 encoded. GUID IDs do not work. +> **Note:** This method currently requires the ID to be Base64 encoded. GUID IDs don't work. ## Optional query parameters diff --git a/api-reference/v1.0/api/bundle-removeitem.md b/api-reference/v1.0/api/bundle-removeitem.md index 2f8c64fc163..6a97b98be9d 100644 --- a/api-reference/v1.0/api/bundle-removeitem.md +++ b/api-reference/v1.0/api/bundle-removeitem.md @@ -37,7 +37,7 @@ DELETE /drive/bundles/{bundle-id}/children/{item-id} ## Request body -Do not supply a request body with for method. +Don't supply a request body with for method. ## Response diff --git a/api-reference/v1.0/api/bundle-update.md b/api-reference/v1.0/api/bundle-update.md index 0fd299ee6c2..38b8a860292 100644 --- a/api-reference/v1.0/api/bundle-update.md +++ b/api-reference/v1.0/api/bundle-update.md @@ -42,7 +42,7 @@ PATCH /drive/items/{bundle-id} | Name | Description | |:------------- |:------------ | |Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| -| if-match | eTag. Optional. If this request header is included and the eTag provided does not match the current eTag on the bundle, a `412 Precondition Failed` response is returned.| +| if-match | eTag. Optional. If this request header is included and the eTag provided doesn't match the current eTag on the bundle, a `412 Precondition Failed` response is returned.| ## Request body diff --git a/api-reference/v1.0/api/calendar-list-calendarview.md b/api-reference/v1.0/api/calendar-list-calendarview.md index 19a51dce5e2..3182217855d 100644 --- a/api-reference/v1.0/api/calendar-list-calendarview.md +++ b/api-reference/v1.0/api/calendar-list-calendarview.md @@ -63,7 +63,7 @@ This method also supports some of the [OData Query Parameters](/graph/query-para **CalendarView** with `$top` has a minimum value of 1 and maximum of 1000. > [!NOTE] -> The **createdDateTime** and **lastModifiedDateTime** properties of [event](../resources/event.md) do not support `$select`. To get their values, simply query on **calendarView** without applying `$select`. +> The **createdDateTime** and **lastModifiedDateTime** properties of [event](../resources/event.md) don't support `$select`. To get their values, simply query on **calendarView** without applying `$select`. ## Request headers | Name | Type | Description | diff --git a/api-reference/v1.0/api/call-keepalive.md b/api-reference/v1.0/api/call-keepalive.md index 4e231cc3d0e..4d4c9eb7f43 100644 --- a/api-reference/v1.0/api/call-keepalive.md +++ b/api-reference/v1.0/api/call-keepalive.md @@ -12,7 +12,7 @@ ms.date: 04/04/2024 Namespace: microsoft.graph -Make a request to this API every 15 to 45 minutes to ensure that an ongoing call remains active. A call that does not receive this request within 45 minutes is considered inactive and will subsequently end. +Make a request to this API every 15 to 45 minutes to ensure that an ongoing call remains active. A call that doesn't receive this request within 45 minutes is considered inactive and will subsequently end. At least one successful request must be made within 45 minutes of the previous request, or the start of the call. diff --git a/api-reference/v1.0/api/call-list-participants.md b/api-reference/v1.0/api/call-list-participants.md index 2e9de432f93..a7e4939b351 100644 --- a/api-reference/v1.0/api/call-list-participants.md +++ b/api-reference/v1.0/api/call-list-participants.md @@ -31,7 +31,7 @@ Choose the permission or permissions marked as least privileged for this API. Us ```http GET /communications/calls/{id}/participants ``` -> **Note:** This request does not support peer-to-peer calls. +> **Note:** This request doesn't support peer-to-peer calls. ## Optional query parameters diff --git a/api-reference/v1.0/api/call-reject.md b/api-reference/v1.0/api/call-reject.md index 61c7248e62e..52c0f2cb9e3 100644 --- a/api-reference/v1.0/api/call-reject.md +++ b/api-reference/v1.0/api/call-reject.md @@ -16,7 +16,7 @@ Enable a bot to reject an incoming call. The incoming call request can be an inv The bot is expected to answer or reject the call before the call times out. The current timeout value is 15 seconds. -This API does not end existing calls that have already been answered. Use [delete call](../api/call-delete.md) to end a call. +This API doesn't end existing calls that have already been answered. Use [delete call](../api/call-delete.md) to end a call. [!INCLUDE [national-cloud-support](../../includes/global-us.md)] diff --git a/api-reference/v1.0/api/channel-get-members.md b/api-reference/v1.0/api/channel-get-members.md index b937883b418..cc32924a72a 100644 --- a/api-reference/v1.0/api/channel-get-members.md +++ b/api-reference/v1.0/api/channel-get-members.md @@ -32,7 +32,7 @@ GET /teams/{team-id}/channels/{channel-id}/members/{membership-id} ## Optional query parameters -This operation does not support the [OData query parameters](/graph/query-parameters) to customize the response. +This operation doesn't support the [OData query parameters](/graph/query-parameters) to customize the response. ## Request headers diff --git a/api-reference/v1.0/api/chat-delete.md b/api-reference/v1.0/api/chat-delete.md index 6f54022ff6f..709fcf3bcc9 100644 --- a/api-reference/v1.0/api/chat-delete.md +++ b/api-reference/v1.0/api/chat-delete.md @@ -16,7 +16,7 @@ Soft-delete a [chat](../resources/chat.md). When invoked with delegated permissi > **Notes:** > This operation is not supported for non-admin users. > Only tenant admins for the user who initiated the chat can delete the chat. For example, if a user from tenant A creates a thread and then adds a user from tenant B, only the admin from tenant A can delete the thread. -> This API deletes 1:1 chats, meeting chats, and group chat threads. It does not delete channel chat threads. +> This API deletes 1:1 chats, meeting chats, and group chat threads. It doesn't delete channel chat threads. > After chats are deleted, tenant admins have seven days to restore them. Chats deleted for more than seven days can't be restored. > One delete request per second per tenant is allowed. diff --git a/api-reference/v1.0/api/chat-get-members.md b/api-reference/v1.0/api/chat-get-members.md index b3ecdb89b5a..b35ff28e373 100644 --- a/api-reference/v1.0/api/chat-get-members.md +++ b/api-reference/v1.0/api/chat-get-members.md @@ -40,7 +40,7 @@ GET /users/{user-id | user-principal-name}/chats/{chat-id}/members/{membership-i ## Optional query parameters -This operation does not support the [OData query parameters](/graph/query-parameters) to customize the response. +This operation doesn't support the [OData query parameters](/graph/query-parameters) to customize the response. ## Request headers diff --git a/api-reference/v1.0/api/chat-get.md b/api-reference/v1.0/api/chat-get.md index 4a93d6de601..cf6294c317a 100644 --- a/api-reference/v1.0/api/chat-get.md +++ b/api-reference/v1.0/api/chat-get.md @@ -39,7 +39,7 @@ GET /chats/{chat-id} ## Optional query parameters -This operation does not currently support [OData query parameters](/graph/query-parameters) to customize the response. +This operation doesn't currently support [OData query parameters](/graph/query-parameters) to customize the response. ## Request headers diff --git a/api-reference/v1.0/api/chat-list-members.md b/api-reference/v1.0/api/chat-list-members.md index a451a9c7b57..f4196ff0dab 100644 --- a/api-reference/v1.0/api/chat-list-members.md +++ b/api-reference/v1.0/api/chat-list-members.md @@ -39,7 +39,7 @@ GET /users/{user-id | user-principal-name}/chats/{chat-id}/members ## Optional query parameters -This operation does not support the [OData query parameters](/graph/query-parameters) to customize the response. +This operation doesn't support the [OData query parameters](/graph/query-parameters) to customize the response. ## Request headers diff --git a/api-reference/v1.0/api/contenttype-delete.md b/api-reference/v1.0/api/contenttype-delete.md index 7dd10a720ff..b8e7476522d 100644 --- a/api-reference/v1.0/api/contenttype-delete.md +++ b/api-reference/v1.0/api/contenttype-delete.md @@ -41,7 +41,7 @@ DELETE /sites/{site-id}/lists/{list-id}/contentTypes/{contentType-id} ## Request body -Do not supply a request body with this method. +Don't supply a request body with this method. ## Response diff --git a/api-reference/v1.0/api/conversationmember-list.md b/api-reference/v1.0/api/conversationmember-list.md index 1bd497984bc..7696e606f90 100644 --- a/api-reference/v1.0/api/conversationmember-list.md +++ b/api-reference/v1.0/api/conversationmember-list.md @@ -38,7 +38,7 @@ GET /chats/{id}/members ## Optional query parameters -This operation does not support the [OData query parameters](/graph/query-parameters) to customize the response. +This operation doesn't support the [OData query parameters](/graph/query-parameters) to customize the response. ## Request headers diff --git a/api-reference/v1.0/api/directory-list-customsecurityattributedefinitions.md b/api-reference/v1.0/api/directory-list-customsecurityattributedefinitions.md index 42d29ef2a85..0bca2ce915c 100644 --- a/api-reference/v1.0/api/directory-list-customsecurityattributedefinitions.md +++ b/api-reference/v1.0/api/directory-list-customsecurityattributedefinitions.md @@ -30,7 +30,7 @@ The signed-in user must also be assigned one of the following [directory roles]( + Attribute Assignment Administrator + Attribute Definition Administrator -By default, Global Administrator and other administrator roles do not have permissions to read, define, or assign custom security attributes. +By default, Global Administrator and other administrator roles don't have permissions to read, define, or assign custom security attributes. ## HTTP request diff --git a/api-reference/v1.0/api/directoryobject-delta.md b/api-reference/v1.0/api/directoryobject-delta.md index ec7ef8fe858..966ff83beb9 100644 --- a/api-reference/v1.0/api/directoryobject-delta.md +++ b/api-reference/v1.0/api/directoryobject-delta.md @@ -106,7 +106,7 @@ Adding an optional `prefer:return=minimal` request header results in the followi - If the property has changed, the new value is included in the response. This includes properties being set to null value. - If the property hasn't changed, the property isn't included in the response at all. This is different from the default behavior. -> **Note:** The header can be added to a `@odata.deltaLink` request at any point in time in the delta cycle. The header only affects the set of properties included in the response and it does not affect how the delta query is executed. See [Example 4](#example-4-retrieve-specific-properties-only-if-they-changed-for-a-collection-of-users-and-groups). +> **Note:** The header can be added to a `@odata.deltaLink` request at any point in time in the delta cycle. The header only affects the set of properties included in the response and it doesn't affect how the delta query is executed. See [Example 4](#example-4-retrieve-specific-properties-only-if-they-changed-for-a-collection-of-users-and-groups). ## Examples diff --git a/api-reference/v1.0/api/domain-delete.md b/api-reference/v1.0/api/domain-delete.md index a645481e523..ff9fbf02a0d 100644 --- a/api-reference/v1.0/api/domain-delete.md +++ b/api-reference/v1.0/api/domain-delete.md @@ -51,7 +51,7 @@ Don't supply a request body for this method. ## Response -If successful, this method returns `204 No Content` response code. It does not return a response body. +If successful, this method returns `204 No Content` response code. It doesn't return a response body. ## Example ### Request diff --git a/api-reference/v1.0/api/domain-get-rootdomain.md b/api-reference/v1.0/api/domain-get-rootdomain.md index 89be4f79ac1..c5cb8b06682 100644 --- a/api-reference/v1.0/api/domain-get-rootdomain.md +++ b/api-reference/v1.0/api/domain-get-rootdomain.md @@ -40,7 +40,7 @@ GET /domains/{id}/rootDomain ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers diff --git a/api-reference/v1.0/api/domain-list-federationconfiguration.md b/api-reference/v1.0/api/domain-list-federationconfiguration.md index 5c973bed47f..ea9f2d2fe28 100644 --- a/api-reference/v1.0/api/domain-list-federationconfiguration.md +++ b/api-reference/v1.0/api/domain-list-federationconfiguration.md @@ -34,7 +34,7 @@ GET /domains/{domainsId}/federationConfiguration ``` ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers |Name|Description| diff --git a/api-reference/v1.0/api/drive-get-specialfolder.md b/api-reference/v1.0/api/drive-get-specialfolder.md index 2f5cc6b2795..b0806f3a8f8 100644 --- a/api-reference/v1.0/api/drive-get-specialfolder.md +++ b/api-reference/v1.0/api/drive-get-specialfolder.md @@ -192,7 +192,7 @@ Content-Type: application/json If your app has read-only permissions, the request to get a special folder or the children of a special folder may fail with a `404 Not Found` or a `403 Forbidden` -error if the special folder does not already exist. +error if the special folder doesn't already exist. diff --git a/api-reference/v1.0/api/driveitem-createlink.md b/api-reference/v1.0/api/driveitem-createlink.md index 6f9ea623948..6abb9cdfd19 100644 --- a/api-reference/v1.0/api/driveitem-createlink.md +++ b/api-reference/v1.0/api/driveitem-createlink.md @@ -324,7 +324,7 @@ Content-Type: application/json ## Remarks -* Links created using this action do not expire unless a default expiration policy is enforced for the organization. +* Links created using this action don't expire unless a default expiration policy is enforced for the organization. * Links are visible in the sharing permissions for the item and can be removed by an owner of the item. * Links always point to the current version of a item unless the item is checked out (SharePoint only). diff --git a/api-reference/v1.0/api/driveitem-search.md b/api-reference/v1.0/api/driveitem-search.md index 5c6c1fea04c..2b6ca290d4a 100644 --- a/api-reference/v1.0/api/driveitem-search.md +++ b/api-reference/v1.0/api/driveitem-search.md @@ -21,7 +21,7 @@ Choose the permission or permissions marked as least privileged for this API. Us [!INCLUDE [permissions-table](../includes/permissions/driveitem-search-permissions.md)] ->**Note:** This method does not support the Sites.Selected application permission. +>**Note:** This method doesn't support the Sites.Selected application permission. ## HTTP request diff --git a/api-reference/v1.0/api/driveitemversion-get.md b/api-reference/v1.0/api/driveitemversion-get.md index 44a9166558f..bd13b0fd299 100644 --- a/api-reference/v1.0/api/driveitemversion-get.md +++ b/api-reference/v1.0/api/driveitemversion-get.md @@ -189,7 +189,7 @@ Content-Type: application/json ## Remarks -OneDrive does not preserve the complete metadata for previous versions of a file. +OneDrive doesn't preserve the complete metadata for previous versions of a file. When your app retrieves the list of available versions for a file, a [DriveItemVersion](../resources/driveitemversion.md) resource is returned that provides the available information about the specific version. diff --git a/api-reference/v1.0/api/educationclass-delta.md b/api-reference/v1.0/api/educationclass-delta.md index b4429d0bfdc..444405cacd4 100644 --- a/api-reference/v1.0/api/educationclass-delta.md +++ b/api-reference/v1.0/api/educationclass-delta.md @@ -54,7 +54,7 @@ If successful, this function returns an `200 OK` response code and an [education For details, see [Using delta query](/graph/delta-query-overview). For example requests, see [Get incremental changes for users](/graph/delta-query-users). > [!IMPORTANT] -> educationClass deltas do not include deleted classes. +> educationClass deltas don't include deleted classes. ## Examples diff --git a/api-reference/v1.0/api/educationclass-post.md b/api-reference/v1.0/api/educationclass-post.md index 92395caf4f4..d3b8ef87f72 100644 --- a/api-reference/v1.0/api/educationclass-post.md +++ b/api-reference/v1.0/api/educationclass-post.md @@ -15,7 +15,7 @@ Namespace: microsoft.graph Create a new [educationClass](../resources/educationclass.md) object. > [!NOTE] -> This will also create a universal group. When you use this API to create a class, it will add special properties to the group, which will add features such as assignments and special handling within Microsoft Teams when teams are created using the group. Please note that this API only creates the universal group and does not create a team. Microsoft Teams provides a user interface for teachers to create teams for their own classes using the groups created by this API. +> This will also create a universal group. When you use this API to create a class, it will add special properties to the group, which will add features such as assignments and special handling within Microsoft Teams when teams are created using the group. Please note that this API only creates the universal group and doesn't create a team. Microsoft Teams provides a user interface for teachers to create teams for their own classes using the groups created by this API. [!INCLUDE [national-cloud-support](../../includes/global-only.md)] diff --git a/api-reference/v1.0/api/entitlementmanagementsettings-get.md b/api-reference/v1.0/api/entitlementmanagementsettings-get.md index 94e40ce7f3d..477b65db513 100644 --- a/api-reference/v1.0/api/entitlementmanagementsettings-get.md +++ b/api-reference/v1.0/api/entitlementmanagementsettings-get.md @@ -36,7 +36,7 @@ GET /identityGovernance/entitlementManagement/settings ## Optional query parameters -This method does not support the OData query parameters to customize the response. +This method doesn't support the OData query parameters to customize the response. ## Request headers diff --git a/api-reference/v1.0/api/externalauthenticationmethodconfiguration-get.md b/api-reference/v1.0/api/externalauthenticationmethodconfiguration-get.md index 4dd310cf3ed..24f37698253 100644 --- a/api-reference/v1.0/api/externalauthenticationmethodconfiguration-get.md +++ b/api-reference/v1.0/api/externalauthenticationmethodconfiguration-get.md @@ -37,7 +37,7 @@ GET /policies/authenticationMethodsPolicy/authenticationMethodConfigurations/{id ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers diff --git a/api-reference/v1.0/api/externalconnectors-externalgroup-update.md b/api-reference/v1.0/api/externalconnectors-externalgroup-update.md index 06940a6ee17..c3e4cbecd31 100644 --- a/api-reference/v1.0/api/externalconnectors-externalgroup-update.md +++ b/api-reference/v1.0/api/externalconnectors-externalgroup-update.md @@ -42,7 +42,7 @@ PATCH /external/connections/{connectionsId}/groups/{externalGroupId} | Content-Type | application/json. Required. | ## Request body -In the request body, supply the values for relevant properties that should be updated. Existing properties that are not included in the request body will maintain their previous values or be recalculated based on changes to other property values. For best performance, do not include properties that are not changing. +In the request body, supply the values for relevant properties that should be updated. Existing properties that are not included in the request body will maintain their previous values or be recalculated based on changes to other property values. For best performance, don't include properties that are not changing. | Property | Type | Description | |:------------|:-------|:-------------------------------------------------------------------------------------------------------------------------| diff --git a/api-reference/v1.0/api/externalconnectors-externalitem-get.md b/api-reference/v1.0/api/externalconnectors-externalitem-get.md index ff29dc1d10d..05ad2fa92f6 100644 --- a/api-reference/v1.0/api/externalconnectors-externalitem-get.md +++ b/api-reference/v1.0/api/externalconnectors-externalitem-get.md @@ -34,7 +34,7 @@ GET /external/connections/{connectionsId}/items/{externalItemId} ``` ## Optional query parameters -This method does not support optional query parameters to customize the response. +This method doesn't support optional query parameters to customize the response. ## Request headers |Name|Description| diff --git a/api-reference/v1.0/api/externalconnectors-schema-get.md b/api-reference/v1.0/api/externalconnectors-schema-get.md index 9d775c1bfee..3f6936d8bd7 100644 --- a/api-reference/v1.0/api/externalconnectors-schema-get.md +++ b/api-reference/v1.0/api/externalconnectors-schema-get.md @@ -33,7 +33,7 @@ GET /external/connections/{connectionsId}/schema ## Optional query parameters -This method does not support [OData query parameters](/graph/query-parameters) to customize the response. +This method doesn't support [OData query parameters](/graph/query-parameters) to customize the response. ## Request headers |Name|Description| diff --git a/api-reference/v1.0/api/fido2authenticationmethod-list.md b/api-reference/v1.0/api/fido2authenticationmethod-list.md index 9d2b159da3b..49fd5b14a4c 100644 --- a/api-reference/v1.0/api/fido2authenticationmethod-list.md +++ b/api-reference/v1.0/api/fido2authenticationmethod-list.md @@ -50,7 +50,7 @@ GET /users/{id | userPrincipalName}/authentication/fido2Methods ``` ## Optional query parameters -This method does not support optional query parameters to customize the response. +This method doesn't support optional query parameters to customize the response. ## Request headers |Name|Description| diff --git a/api-reference/v1.0/api/group-delta.md b/api-reference/v1.0/api/group-delta.md index dbcae193299..5d2556954a1 100644 --- a/api-reference/v1.0/api/group-delta.md +++ b/api-reference/v1.0/api/group-delta.md @@ -100,7 +100,7 @@ Adding an optional request header - `prefer:return=minimal` - results in the fol - If the property has changed, the new value is included in the response. This includes properties being set to null value. - If the property hasn't changed, the property isn't included in the response at all. (Different from the default behavior.) -> **Note:** The header can be added to a `@odata.deltaLink` request at any point in time in the delta cycle. The header only affects the set of properties included in the response and it does not affect how the delta query is executed. See the [third example](#request-3) below. +> **Note:** The header can be added to a `@odata.deltaLink` request at any point in time in the delta cycle. The header only affects the set of properties included in the response and it doesn't affect how the delta query is executed. See the [third example](#request-3) below. ### Example diff --git a/api-reference/v1.0/api/group-list-acceptedsenders.md b/api-reference/v1.0/api/group-list-acceptedsenders.md index 442abf8f4a6..096d0f1197b 100644 --- a/api-reference/v1.0/api/group-list-acceptedsenders.md +++ b/api-reference/v1.0/api/group-list-acceptedsenders.md @@ -15,7 +15,7 @@ Namespace: microsoft.graph Get a list of users or groups that are in the accepted-senders list for this group. Users in the accepted senders list can post to conversations of the group (identified in the GET request URL). -Make sure you do not specify the same user or group in the accepted senders and rejected senders lists, otherwise you will get an error. +Make sure you don't specify the same user or group in the accepted senders and rejected senders lists, otherwise you will get an error. [!INCLUDE [national-cloud-support](../../includes/all-clouds.md)] diff --git a/api-reference/v1.0/api/group-list-calendarview.md b/api-reference/v1.0/api/group-list-calendarview.md index b88cd9954e3..a17fb43dfc7 100644 --- a/api-reference/v1.0/api/group-list-calendarview.md +++ b/api-reference/v1.0/api/group-list-calendarview.md @@ -46,7 +46,7 @@ The values of `startDateTime` and `endDateTime` are interpreted using the timezo This method also supports some of the [OData Query Parameters](/graph/query-parameters) to help customize the response. > [!NOTE] -> The **createdDateTime** and **lastModifiedDateTime** properties of [event](../resources/event.md) do not support `$select`. To get their values, simply query on **calendarView** without applying `$select`. +> The **createdDateTime** and **lastModifiedDateTime** properties of [event](../resources/event.md) don't support `$select`. To get their values, simply query on **calendarView** without applying `$select`. ## Request headers diff --git a/api-reference/v1.0/api/group-post-members.md b/api-reference/v1.0/api/group-post-members.md index e3ef3e5d0c2..0b923889460 100644 --- a/api-reference/v1.0/api/group-post-members.md +++ b/api-reference/v1.0/api/group-post-members.md @@ -16,7 +16,7 @@ Namespace: microsoft.graph Add a member to a security or Microsoft 365 [group](../resources/group.md). When using the API to add multiple members in one request, you can add up to only 20 members. > [!NOTE] -> This request might have replication delays for groups that were recently created. When a group is created, it can take a short time for the object to fully replicate across Microsoft Entra ID directory replicas. During this window, requests to add members to the group might return a `400 Bad Request` error with the message: *"The source resource object or one of the objects being referenced do not exist."* +> This request might have replication delays for groups that were recently created. When a group is created, it can take a short time for the object to fully replicate across Microsoft Entra ID directory replicas. During this window, requests to add members to the group might return a `400 Bad Request` error with the message: *"The source resource object or one of the objects being referenced don't exist."* > > To mitigate this behavior: > - **Retry after a brief delay** — wait a few seconds and retry the request. The delay is typically brief. @@ -86,7 +86,7 @@ When using the `PATCH /groups/{group-id}` syntax, supply a JSON object that cont ## Response -If successful, this method returns a `204 No Content` response code. It returns a `400 Bad Request` response code when the object is already a member of the group, is unsupported as a group member, or when the group was recently created and hasn't fully replicated (error message: *"The source resource object or one of the objects being referenced do not exist."* — retry after a brief delay). It returns a `404 Not Found` response code when the object being added doesn't exist. It returns `403 Forbidden` in one of the following scenarios: +If successful, this method returns a `204 No Content` response code. It returns a `400 Bad Request` response code when the object is already a member of the group, is unsupported as a group member, or when the group was recently created and hasn't fully replicated (error message: *"The source resource object or one of the objects being referenced don't exist."* — retry after a brief delay). It returns a `404 Not Found` response code when the object being added doesn't exist. It returns `403 Forbidden` in one of the following scenarios: - You're attempting to add a member to a [group that can't be managed through Microsoft Graph](../resources/groups-overview.md#types-of-groups-supported-in-microsoft-graph). This API supports only security and Microsoft 365 groups. - You're attempting to add a member you don't have permissions to add. Refer to the preceding [Permissions](#permissions) section for the permissions required to add different member types. - You're attempting to add a member to a role-assignable group and you don't have the required permissions. diff --git a/api-reference/v1.0/api/group-update.md b/api-reference/v1.0/api/group-update.md index bec0f1d70a6..db76cb49f30 100644 --- a/api-reference/v1.0/api/group-update.md +++ b/api-reference/v1.0/api/group-update.md @@ -16,7 +16,7 @@ Namespace: microsoft.graph Update the properties of a [group](../resources/group.md) object. > [!NOTE] -> When you use `members@odata.bind` to add members via `PATCH`, this request might have replication delays for groups that were recently created. It can take a short time for the group object to fully replicate across Microsoft Entra ID directory replicas. During this window, requests to add members to the group might return a `400 Bad Request` error with the message: *"The source resource object or one of the objects being referenced do not exist."* +> When you use `members@odata.bind` to add members via `PATCH`, this request might have replication delays for groups that were recently created. It can take a short time for the group object to fully replicate across Microsoft Entra ID directory replicas. During this window, requests to add members to the group might return a `400 Bad Request` error with the message: *"The source resource object or one of the objects being referenced don't exist."* > > To mitigate this behavior: > - **Retry after a brief delay** — wait a few seconds and retry the request. The delay is typically brief. @@ -88,7 +88,7 @@ If successful, this method returns a `204 No Content` response code—except a ` | Status code | Error code | Error message | Description | |-------------|------------|---------------|-------------| -| `400 Bad Request` | `Request_BadRequest` | "The source resource object or one of the objects being referenced do not exist." | The group was recently created and hasn't fully replicated across all directory replicas. This error is specific to link-write operations (adding members via `members@odata.bind`). Retry the request after a brief delay. | +| `400 Bad Request` | `Request_BadRequest` | "The source resource object or one of the objects being referenced don't exist." | The group was recently created and hasn't fully replicated across all directory replicas. This error is specific to link-write operations (adding members via `members@odata.bind`). Retry the request after a brief delay. | ## Example diff --git a/api-reference/v1.0/api/identitygovernance-insights-workflowsprocessedsummary.md b/api-reference/v1.0/api/identitygovernance-insights-workflowsprocessedsummary.md index e5ce9c312ff..fb74be4d89f 100644 --- a/api-reference/v1.0/api/identitygovernance-insights-workflowsprocessedsummary.md +++ b/api-reference/v1.0/api/identitygovernance-insights-workflowsprocessedsummary.md @@ -12,7 +12,7 @@ ms.date: 10/28/2024 Namespace: microsoft.graph.identityGovernance -Provide a summary of all workflows processed within a tenant for a specified period. Because the amount of results for listed workflows as returned by the [List workflows](../api/identitygovernance-lifecycleworkflowscontainer-list-workflows.md) does not tell you which workflows were processed from the list of created workflows, this summary gives you a quick overview of processed status based on counts. +Provide a summary of all workflows processed within a tenant for a specified period. Because the amount of results for listed workflows as returned by the [List workflows](../api/identitygovernance-lifecycleworkflowscontainer-list-workflows.md) doesn't tell you which workflows were processed from the list of created workflows, this summary gives you a quick overview of processed status based on counts. [!INCLUDE [national-cloud-support](../../includes/all-clouds.md)] diff --git a/api-reference/v1.0/api/identitygovernance-task-get.md b/api-reference/v1.0/api/identitygovernance-task-get.md index 90e4a9aa167..ec878d3a1f7 100644 --- a/api-reference/v1.0/api/identitygovernance-task-get.md +++ b/api-reference/v1.0/api/identitygovernance-task-get.md @@ -49,7 +49,7 @@ GET /identityGovernance/lifecycleWorkflows/workflows/{workflowId}/versions/{vers ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers diff --git a/api-reference/v1.0/api/identitygovernance-workflowtemplate-get.md b/api-reference/v1.0/api/identitygovernance-workflowtemplate-get.md index 05c643a543f..e51d3fc95a3 100644 --- a/api-reference/v1.0/api/identitygovernance-workflowtemplate-get.md +++ b/api-reference/v1.0/api/identitygovernance-workflowtemplate-get.md @@ -37,7 +37,7 @@ GET /identityGovernance/lifecycleWorkflows/workflowTemplates/{workflowTemplateId ## Optional query parameters -This method does not support any OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support any OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers diff --git a/api-reference/v1.0/api/identityuserflowattributeassignment-update.md b/api-reference/v1.0/api/identityuserflowattributeassignment-update.md index f202b97b12a..212899ef30b 100644 --- a/api-reference/v1.0/api/identityuserflowattributeassignment-update.md +++ b/api-reference/v1.0/api/identityuserflowattributeassignment-update.md @@ -52,7 +52,7 @@ The following table shows the properties that are available to update in the [id |Property|Type|Description| |:---|:---|:---| |displayName|String|The display name of the identityUserFlowAttribute within a user flow.| -|isOptional|Boolean|Determines whether the identityUserFlowAttribute is optional. `true` means the user does not have to provide a value. `false` means the user cannot complete sign up without providing a value.| +|isOptional|Boolean|Determines whether the identityUserFlowAttribute is optional. `true` means the user doesn't have to provide a value. `false` means the user cannot complete sign up without providing a value.| |requiresVerification|Boolean|Determines whether the identityUserFlowAttribute requires verification. This is only used for verifying the user's phone number or email address.| |userAttributeValues|[userAttributeValuesItem](../resources/userattributevaluesitem.md) collection|The input options for the user flow attribute. Only applicable when the userInputType is `radioSingleSelect`, `dropdownSingleSelect`, or `checkboxMultiSelect`.| |userInputType|identityUserFlowAttributeInputType|The input type of the user flow attribute. The possible values are: `textBox`, `dateTimeDropdown`, `radioSingleSelect`, `dropdownSingleSelect`, `emailBox`, `checkboxMultiSelect`.| diff --git a/api-reference/v1.0/api/inferenceclassification-list-overrides.md b/api-reference/v1.0/api/inferenceclassification-list-overrides.md index cff1e5da944..44abc72aef3 100644 --- a/api-reference/v1.0/api/inferenceclassification-list-overrides.md +++ b/api-reference/v1.0/api/inferenceclassification-list-overrides.md @@ -14,7 +14,7 @@ Namespace: microsoft.graph Get the overrides that a user has set up to always classify messages from certain senders in specific ways. -Each override corresponds to an SMTP address of a sender. Initially, a user does not have any overrides. +Each override corresponds to an SMTP address of a sender. Initially, a user doesn't have any overrides. [!INCLUDE [national-cloud-support](../../includes/all-clouds.md)] diff --git a/api-reference/v1.0/api/internaldomainfederation-get.md b/api-reference/v1.0/api/internaldomainfederation-get.md index 83a11d80efa..adb9a8a2ed5 100644 --- a/api-reference/v1.0/api/internaldomainfederation-get.md +++ b/api-reference/v1.0/api/internaldomainfederation-get.md @@ -37,7 +37,7 @@ GET /domains/{domainsId}/federationConfiguration/{internalDomainFederationId} ``` ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers |Name|Description| diff --git a/api-reference/v1.0/api/learningcourseactivity-update.md b/api-reference/v1.0/api/learningcourseactivity-update.md index d00e927376c..0c300b9613f 100644 --- a/api-reference/v1.0/api/learningcourseactivity-update.md +++ b/api-reference/v1.0/api/learningcourseactivity-update.md @@ -87,7 +87,7 @@ If unsuccessful, this method returns one of the responses below: |Bad request|400|badRequest|Input fields are invalid|{"code": "badRequest","message": "Input field {fieldName} is invalid"}.| |Bad request|400|badRequest|badRequest|{"code": "badRequest","message": "Input field {fieldName} shouldn't be empty"}.| |Forbidden|403|Forbidden|The provider isn't valid to create course activity for the given learning content|When the registrationId/learningProviderId doesn't match with the provider with which the learningContent is created.| -|Forbidden|403|Forbidden|The user license is not valid to perform the operation|When the user for which the assignment is being created does not have a premium license.| +|Forbidden|403|Forbidden|The user license is not valid to perform the operation|When the user for which the assignment is being created doesn't have a premium license.| ## Examples diff --git a/api-reference/v1.0/api/list-get.md b/api-reference/v1.0/api/list-get.md index c61d60dc909..1630398cbdf 100644 --- a/api-reference/v1.0/api/list-get.md +++ b/api-reference/v1.0/api/list-get.md @@ -40,7 +40,7 @@ GET /sites/{site-id}/lists/{list-id}?expand=columns,items(expand=fields) ## Request body -Do not supply a request body with this method. +Don't supply a request body with this method. ## Example diff --git a/api-reference/v1.0/api/listitem-delete.md b/api-reference/v1.0/api/listitem-delete.md index 33615e14f20..d749084f4d9 100644 --- a/api-reference/v1.0/api/listitem-delete.md +++ b/api-reference/v1.0/api/listitem-delete.md @@ -37,11 +37,11 @@ DELETE /sites/{site-id}/lists/{list-id}/items/{item-id} |Name|Description| |:---|:---| |Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| -| _if-match_ | ``etag`If this request header is included and the eTag provided does not match the current tag on the item, a `412 Precondition Failed` response is returned and the item will not be deleted.| +| _if-match_ | ``etag`If this request header is included and the eTag provided doesn't match the current tag on the item, a `412 Precondition Failed` response is returned and the item will not be deleted.| ## Request body -Do not supply a request body with this method. +Don't supply a request body with this method. ## Example diff --git a/api-reference/v1.0/api/listitem-update.md b/api-reference/v1.0/api/listitem-update.md index 17468c3e1c5..ff6309d4c17 100644 --- a/api-reference/v1.0/api/listitem-update.md +++ b/api-reference/v1.0/api/listitem-update.md @@ -42,7 +42,7 @@ PATCH /sites/{site-id}/lists/{list-id}/items/{item-id}/fields |:---|:---| |Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| |Content-Type|application/json. Required.| -| _if-match_ | `etag`. If this request header is included and the eTag provided does not match the current eTag on the item, a `412 Precondition Failed` response is returned and the item will not be updated.| +| _if-match_ | `etag`. If this request header is included and the eTag provided doesn't match the current eTag on the item, a `412 Precondition Failed` response is returned and the item will not be updated.| ## Request body In the request body, supply a JSON representation of a [fieldValueSet][] specifying the fields to update. diff --git a/api-reference/v1.0/api/mailfolder-list-childfolders.md b/api-reference/v1.0/api/mailfolder-list-childfolders.md index 274b2b6c0cf..9e49ee85517 100644 --- a/api-reference/v1.0/api/mailfolder-list-childfolders.md +++ b/api-reference/v1.0/api/mailfolder-list-childfolders.md @@ -15,7 +15,7 @@ Namespace: microsoft.graph Get the folder collection under the specified folder. You can use the `.../me/mailFolders` shortcut to get the top-level folder collection and navigate to another folder. -By default, this operation does not return hidden folders. Use a query parameter _includeHiddenFolders_ to include them in the response. +By default, this operation doesn't return hidden folders. Use a query parameter _includeHiddenFolders_ to include them in the response. [!INCLUDE [national-cloud-support](../../includes/all-clouds.md)] diff --git a/api-reference/v1.0/api/message-createreply.md b/api-reference/v1.0/api/message-createreply.md index 8dba847cb51..e9540340ba8 100644 --- a/api-reference/v1.0/api/message-createreply.md +++ b/api-reference/v1.0/api/message-createreply.md @@ -54,7 +54,7 @@ POST /users/{id | userPrincipalName}/mailFolders/{id}/messages/{id}/createReply | Prefer: outlook.timezone | string | Sets the timezone in the email thread to the desired format while replying to an email. Values can be any of the outlook [supportedTimeZones](outlookuser-supportedtimezones.md). If the header is not specified, by default UTC timezone is followed. Optional.| ## Request body -This method does not require a request body. +This method doesn't require a request body. However, for creating a reply draft using MIME format, provide the MIME content with the applicable Internet message headers, all encoded in **base64** format in the request body. diff --git a/api-reference/v1.0/api/message-createreplyall.md b/api-reference/v1.0/api/message-createreplyall.md index 5dd739fc468..b1887e160e3 100644 --- a/api-reference/v1.0/api/message-createreplyall.md +++ b/api-reference/v1.0/api/message-createreplyall.md @@ -49,10 +49,10 @@ POST /users/{id | userPrincipalName}/mailFolders/{id}/messages/{id}/createReplyA |:---------------|:--------|:----------| | Authorization | string | Bearer {token}. Required | | Content-Type | string | Nature of the data in the body of an entity.
Use `application/json` for a JSON object and `text/plain` for MIME content. | -| Prefer: outlook.timezone | string | Sets the time zone for the `Sent` field of the reply draft message in HTML that this API creates based on the request body. The value can be any of the [supportedTimeZones](outlookuser-supportedtimezones.md) configured for the user. If not specified, that `Sent` field is in UTC.

Use this header only if you're specifying the `Content-Type: application/json` header to create the reply draft message in HTML. If you use the `Content-Type: text/plain` header, this `Prefer` header does not have any effect. Optional.| +| Prefer: outlook.timezone | string | Sets the time zone for the `Sent` field of the reply draft message in HTML that this API creates based on the request body. The value can be any of the [supportedTimeZones](outlookuser-supportedtimezones.md) configured for the user. If not specified, that `Sent` field is in UTC.

Use this header only if you're specifying the `Content-Type: application/json` header to create the reply draft message in HTML. If you use the `Content-Type: text/plain` header, this `Prefer` header doesn't have any effect. Optional.| ## Request body -This method does not require a request body. +This method doesn't require a request body. However, for creating a replyAll draft using MIME format, provide the MIME content with the applicable Internet message headers, all encoded in **base64** format in the request body. diff --git a/api-reference/v1.0/api/message-delta.md b/api-reference/v1.0/api/message-delta.md index 36c3f287f45..f3f3474bf6a 100644 --- a/api-reference/v1.0/api/message-delta.md +++ b/api-reference/v1.0/api/message-delta.md @@ -70,7 +70,7 @@ _id_ property is always returned. - There is limited support for `$filter` and `$orderby`: * The only supported `$filter` expresssions are `$filter=receivedDateTime+ge+{value}` or `$filter=receivedDateTime+gt+{value}`. - * The only supported `$orderby` expression is `$orderby=receivedDateTime+desc`. If you do not include + * The only supported `$orderby` expression is `$orderby=receivedDateTime+desc`. If you don't include an `$orderby` expression, the return order is not guaranteed. - There is no support for `$search`. diff --git a/api-reference/v1.0/api/message-reply.md b/api-reference/v1.0/api/message-reply.md index d2db41368d5..3f891de691e 100644 --- a/api-reference/v1.0/api/message-reply.md +++ b/api-reference/v1.0/api/message-reply.md @@ -48,7 +48,7 @@ POST /users/{id | userPrincipalName}/mailFolders/{id}/messages/{id}/reply |:---------------|:--------|:----------| | Authorization | string | Bearer {token}. Required | | Content-Type | string | Nature of the data in the body of an entity. Required
Use `application/json` for a JSON object and `text/plain` for MIME content. | -| Prefer: outlook.timezone | string | Sets the time zone for the `Sent` field of the reply message in HTML that this API creates based on the request body. The value can be any of the [supportedTimeZones](outlookuser-supportedtimezones.md) configured for the user. If not specified, that `Sent` field is in UTC.

Use this header only if you're specifying the `Content-Type: application/json` header to create the reply message in HTML. If you use the `Content-Type: text/plain` header, this `Prefer` header does not have any effect. Optional.| +| Prefer: outlook.timezone | string | Sets the time zone for the `Sent` field of the reply message in HTML that this API creates based on the request body. The value can be any of the [supportedTimeZones](outlookuser-supportedtimezones.md) configured for the user. If not specified, that `Sent` field is in UTC.

Use this header only if you're specifying the `Content-Type: application/json` header to create the reply message in HTML. If you use the `Content-Type: text/plain` header, this `Prefer` header doesn't have any effect. Optional.| ## Request body When using JSON format, provide a JSON object in the request body with the following parameters. diff --git a/api-reference/v1.0/api/message-replyall.md b/api-reference/v1.0/api/message-replyall.md index 8029bbb82b5..8870cb760e7 100644 --- a/api-reference/v1.0/api/message-replyall.md +++ b/api-reference/v1.0/api/message-replyall.md @@ -47,7 +47,7 @@ POST /users/{id | userPrincipalName}/mailFolders/{id}/messages/{id}/replyAll |:---------------|:--------|:----------| | Authorization | string | Bearer {token}. Required | | Content-Type | string | Nature of the data in the body of an entity. Required.
Use `application/json` for a JSON object and `text/plain` for MIME content. | -| Prefer: outlook.timezone | string | Sets the time zone for the `Sent` field of the reply message in HTML that this API creates based on the request body. The value can be any of the [supportedTimeZones](outlookuser-supportedtimezones.md) configured for the user. If not specified, that `Sent` field is in UTC.

Use this header only if you're specifying the `Content-Type: application/json` header to create the reply message in HTML. If you use the `Content-Type: text/plain` header, this `Prefer` header does not have any effect. Optional.| +| Prefer: outlook.timezone | string | Sets the time zone for the `Sent` field of the reply message in HTML that this API creates based on the request body. The value can be any of the [supportedTimeZones](outlookuser-supportedtimezones.md) configured for the user. If not specified, that `Sent` field is in UTC.

Use this header only if you're specifying the `Content-Type: application/json` header to create the reply message in HTML. If you use the `Content-Type: text/plain` header, this `Prefer` header doesn't have any effect. Optional.| ## Request body When using JSON format, provide a JSON object in the request body with the following parameters. diff --git a/api-reference/v1.0/api/offershiftrequest-get.md b/api-reference/v1.0/api/offershiftrequest-get.md index 7644948b051..6b33cf0c427 100644 --- a/api-reference/v1.0/api/offershiftrequest-get.md +++ b/api-reference/v1.0/api/offershiftrequest-get.md @@ -33,7 +33,7 @@ GET /teams/{teamId}/schedule/offerShiftRequests/{offerShiftRequestId} ## Optional query parameters -This method does not support OData query parameters to customize the response. +This method doesn't support OData query parameters to customize the response. ## Request headers diff --git a/api-reference/v1.0/api/onlinemeeting-createorget.md b/api-reference/v1.0/api/onlinemeeting-createorget.md index 9e3669c5b8b..7641b797415 100644 --- a/api-reference/v1.0/api/onlinemeeting-createorget.md +++ b/api-reference/v1.0/api/onlinemeeting-createorget.md @@ -14,7 +14,7 @@ Namespace: microsoft.graph Create an [onlineMeeting](../resources/onlinemeeting.md) object with a custom specified external ID. If the external ID already exists, this API will return the [onlineMeeting](../resources/onlinemeeting.md) object with that external ID. -> **Note**: The meeting does not show on the user's calendar. +> **Note**: The meeting doesn't show on the user's calendar. [!INCLUDE [national-cloud-support](../../includes/global-us.md)] diff --git a/api-reference/v1.0/api/orgcontact-delta.md b/api-reference/v1.0/api/orgcontact-delta.md index 1f61e2d0beb..b6685831e3d 100644 --- a/api-reference/v1.0/api/orgcontact-delta.md +++ b/api-reference/v1.0/api/orgcontact-delta.md @@ -95,7 +95,7 @@ Adding an optional request header - `prefer:return=minimal` - results in the fol - If the property has changed, the new value is included in the response. This includes properties being set to null value. - If the property hasn't changed, the property isn't included in the response at all. (Different from the default behavior.) -> **Note:** The header can be added to a `@odata.deltaLink` request at any point in time in the delta cycle. The header only affects the set of properties included in the response and it does not affect how the delta query is run. See [Example 3](#example-3-alternative-minimal-response-behavior). +> **Note:** The header can be added to a `@odata.deltaLink` request at any point in time in the delta cycle. The header only affects the set of properties included in the response and it doesn't affect how the delta query is run. See [Example 3](#example-3-alternative-minimal-response-behavior). ## Examples diff --git a/api-reference/v1.0/api/outlookuser-supportedtimezones.md b/api-reference/v1.0/api/outlookuser-supportedtimezones.md index 525a1dc34b1..049f0f4fbae 100644 --- a/api-reference/v1.0/api/outlookuser-supportedtimezones.md +++ b/api-reference/v1.0/api/outlookuser-supportedtimezones.md @@ -57,7 +57,7 @@ If successful, this method returns `200 OK` response code and a collection of [t ## Example ##### Request 1 -The following example does not specify the `timeZoneStandard` parameter, and gets the list of supported time zones represented in the Windows time zone format. +The following example doesn't specify the `timeZoneStandard` parameter, and gets the list of supported time zones represented in the Windows time zone format. # [HTTP](#tab/http) [!INCLUDE [permissions-table](../includes/permissions/site-search-permissions.md)] ->**Note:** This method does not support the Sites.Selected application permission. +>**Note:** This method doesn't support the Sites.Selected application permission. ## HTTP request diff --git a/api-reference/v1.0/api/sitepage-publish.md b/api-reference/v1.0/api/sitepage-publish.md index 2dac0cb08fe..8247b89802c 100644 --- a/api-reference/v1.0/api/sitepage-publish.md +++ b/api-reference/v1.0/api/sitepage-publish.md @@ -43,7 +43,7 @@ Don't supply a request body for this method. ## Response -If successful, this method returns a `204 No Content`. It does not return anything in the response body. +If successful, this method returns a `204 No Content`. It doesn't return anything in the response body. diff --git a/api-reference/v1.0/api/sitepage-update.md b/api-reference/v1.0/api/sitepage-update.md index 146ef11fe84..9dce2405e91 100644 --- a/api-reference/v1.0/api/sitepage-update.md +++ b/api-reference/v1.0/api/sitepage-update.md @@ -56,7 +56,7 @@ These fields and be used in update requests. | showRecommendedPages | Boolean | Boolean to determine whether or not to show recommended pages at the bottom of the page. Optional. | | promotionKind | [PagePromotionType](../resources/sitepage.md#pagepromotiontype-values) | Promotion kind of the SharePoint page. Optional. Only support promote a page (e.g from `page` to `newsPost`). Demote is not supported. | | titleArea | [titleArea](../resources/titlearea.md) | Title area on the site page. Optional. | -| canvasLayout | [canvasLayout](../resources/canvaslayout.md) | The layout of the content in a page, including horizontal sections and vertical section. A content of the entire page layout needs to be provided, the update function does not support partial updates. Optional. | +| canvasLayout | [canvasLayout](../resources/canvaslayout.md) | The layout of the content in a page, including horizontal sections and vertical section. A content of the entire page layout needs to be provided, the update function doesn't support partial updates. Optional. | > **Notes:** : > 1. To ensure successful parsing of the request body, the `@odata.type=#microsoft.graph.sitePage` must be included in the request body. diff --git a/api-reference/v1.0/api/subjectrightsrequest-list-notes.md b/api-reference/v1.0/api/subjectrightsrequest-list-notes.md index 079904674b5..b632b832aa8 100644 --- a/api-reference/v1.0/api/subjectrightsrequest-list-notes.md +++ b/api-reference/v1.0/api/subjectrightsrequest-list-notes.md @@ -35,7 +35,7 @@ GET /privacy/subjectRightsRequests/{subjectRightsRequestId}/notes ``` ## Optional query parameters -This method does not support the [OData query parameters](/graph/query-parameters) to help customize the response. +This method doesn't support the [OData query parameters](/graph/query-parameters) to help customize the response. ## Request headers |Name|Description| diff --git a/api-reference/v1.0/api/subscribedsku-list.md b/api-reference/v1.0/api/subscribedsku-list.md index 2d9f0ff3ae2..1f513f971db 100644 --- a/api-reference/v1.0/api/subscribedsku-list.md +++ b/api-reference/v1.0/api/subscribedsku-list.md @@ -35,7 +35,7 @@ GET /subscribedSkus ## Optional query parameters -This method supports only the `$select` [OData query parameter](/graph//query-parameters) to help customize the response. It does not support `$filter`. +This method supports only the `$select` [OData query parameter](/graph//query-parameters) to help customize the response. It doesn't support `$filter`. > [!NOTE] > This API has a [known issue](/graph/known-issues#use-of-specific-query-parameters-on-subscribedskus-and-domains-doesnt-return-the-expected-results) related to the `$search` parameter. diff --git a/api-reference/v1.0/api/synchronization-synchronizationschema-delete.md b/api-reference/v1.0/api/synchronization-synchronizationschema-delete.md index df7f7ddb6fa..1a5ff36bc63 100644 --- a/api-reference/v1.0/api/synchronization-synchronizationschema-delete.md +++ b/api-reference/v1.0/api/synchronization-synchronizationschema-delete.md @@ -43,7 +43,7 @@ Don't supply a request body for this method. ## Response -If successful, this method returns a `201 No Content` response code. It does not return anything in response body. +If successful, this method returns a `201 No Content` response code. It doesn't return anything in response body. ## Example diff --git a/api-reference/v1.0/api/synchronization-synchronizationschema-update.md b/api-reference/v1.0/api/synchronization-synchronizationschema-update.md index d89ad744592..0a7574d1ce4 100644 --- a/api-reference/v1.0/api/synchronization-synchronizationschema-update.md +++ b/api-reference/v1.0/api/synchronization-synchronizationschema-update.md @@ -122,7 +122,7 @@ HTTP/1.1 204 No Content ### Example 2: Add attribute "CustomAttribute" to the target system schema #### Request -The following example shows a request. It assumes that the attribute "CustomAttribute" does not exist in the target directory schema. If it does exist, the attribute is updated. +The following example shows a request. It assumes that the attribute "CustomAttribute" doesn't exist in the target directory schema. If it does exist, the attribute is updated. >**Note:** The request object shown here is shortened for readability. Supply all the properties in an actual call. diff --git a/api-reference/v1.0/api/teamsapp-delete.md b/api-reference/v1.0/api/teamsapp-delete.md index fb548ab8943..d67c34b3bfb 100644 --- a/api-reference/v1.0/api/teamsapp-delete.md +++ b/api-reference/v1.0/api/teamsapp-delete.md @@ -58,7 +58,7 @@ DELETE appCatalogs/teamsApps/{appId}/appDefinitions/{appDefinitionId} Don't supply a request body for this method. ->**Note:** Use the ID returned from the [List published apps](./appcatalogs-list-teamsapps.md) call to reference the app you'd like to delete. Do not use the ID from the manifest of the zip app package. +>**Note:** Use the ID returned from the [List published apps](./appcatalogs-list-teamsapps.md) call to reference the app you'd like to delete. Don't use the ID from the manifest of the zip app package. ## Response diff --git a/api-reference/v1.0/api/teamsapp-publish.md b/api-reference/v1.0/api/teamsapp-publish.md index a1e72352c45..854f8449384 100644 --- a/api-reference/v1.0/api/teamsapp-publish.md +++ b/api-reference/v1.0/api/teamsapp-publish.md @@ -124,7 +124,7 @@ If you send a request to upload an app manifest that contains missing informatio | `InvalidOutlineIconHeightAndWidth` | Small icon should be 32x32 with only white and transparent. | The dimensions of the outline icon are incorrect. | | `InvalidOutlineIconTransparency` | Outline icon isn't transparent. It's Alpha. | The outline icon contains pixels that are neither transparent nor white, with Alpha, R, G, B values of {0}, {1}, {2}, and {3}. | | `LocalizationSchemaIsMissing` |The "schema" property is missing from the localization file.| The localization file is missing the "schema" property.| -| `LocalizationSchemaDoesNotFollowConventionalSchemaRegex` |Localization file does not use the correct schema URL: developer.microsoft.jsonschema URL. | The schema URL in the localization file doesn't match the expected format: developer.microsoft.json.| +| `LocalizationSchemaDoesNotFollowConventionalSchemaRegex` |Localization file doesn't use the correct schema URL: developer.microsoft.jsonschema URL. | The schema URL in the localization file doesn't match the expected format: developer.microsoft.json.| | `LocalizationSchemaVersionIsNotTheSameAsTheManifestSchemaVersion` | Localization file schema version is different from app manifest schema version.| The schema version in the localization file doesn't match the version in the app manifest.| | `MsftEntraAuthTypeComposeExtensionContainsApiSecretServiceConfiguration` | API-based compose extension with microsoftEntra authType have apiSecretServiceConfiguration defined. | The API-based compose extension has `apiSecretServiceConfiguration` defined in the manifest. | | `MsftEntraAuthTypeComposeExtensionContainsNoMsftEntraConfiguration` | API-based compose extension with microsoftEntra authType have no microsoftEntraConfiguration defined. | The API-based compose extension doesn't have `microsoftEntraConfiguration` defined in the app manifest. | diff --git a/api-reference/v1.0/api/teamsapp-update.md b/api-reference/v1.0/api/teamsapp-update.md index b1c64fe60b3..403199cbdf6 100644 --- a/api-reference/v1.0/api/teamsapp-update.md +++ b/api-reference/v1.0/api/teamsapp-update.md @@ -56,7 +56,7 @@ POST /appCatalogs/teamsApps/{id}/appDefinitions In the request body, include a Teams zip manifest payload. For details, see [Create an app package](/microsoftteams/platform/concepts/apps/apps-package). ->**Note:** Use the ID returned from the [List published apps](./appcatalogs-list-teamsapps.md) call to reference the app you'd like to update. Do not use the ID from the manifest of the zip app package. +>**Note:** Use the ID returned from the [List published apps](./appcatalogs-list-teamsapps.md) call to reference the app you'd like to update. Don't use the ID from the manifest of the zip app package. ## Response diff --git a/api-reference/v1.0/api/teamworktag-get.md b/api-reference/v1.0/api/teamworktag-get.md index 2218c106ac4..395f7d200ff 100644 --- a/api-reference/v1.0/api/teamworktag-get.md +++ b/api-reference/v1.0/api/teamworktag-get.md @@ -32,7 +32,7 @@ GET /teams/{team-id}/tags/{teamworkTag-id} ``` ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers |Name|Description| diff --git a/api-reference/v1.0/api/tenantappmanagementpolicy-update.md b/api-reference/v1.0/api/tenantappmanagementpolicy-update.md index 5575d7780bb..dabecb28433 100644 --- a/api-reference/v1.0/api/tenantappmanagementpolicy-update.md +++ b/api-reference/v1.0/api/tenantappmanagementpolicy-update.md @@ -45,7 +45,7 @@ PATCH /policies/defaultAppManagementPolicy ## Request body -In the request body, supply the values for relevant fields from the [tenantAppManagementPolicy](../resources/tenantAppManagementPolicy.md) that should be updated. Existing properties that are not included in the request body will maintain their previous values. For best performance, do not include unchanged values in the request payload. +In the request body, supply the values for relevant fields from the [tenantAppManagementPolicy](../resources/tenantAppManagementPolicy.md) that should be updated. Existing properties that are not included in the request body will maintain their previous values. For best performance, don't include unchanged values in the request payload. | Property | Type | Description | | :--------------------------- | :----------------------------------------------------------------------- | :----------------------------------------------------------------------------------------------- | diff --git a/api-reference/v1.0/api/tenantdatasecurityandgovernance-processcontentasync.md b/api-reference/v1.0/api/tenantdatasecurityandgovernance-processcontentasync.md index fdd0531beae..74cb17ff0cc 100644 --- a/api-reference/v1.0/api/tenantdatasecurityandgovernance-processcontentasync.md +++ b/api-reference/v1.0/api/tenantdatasecurityandgovernance-processcontentasync.md @@ -46,7 +46,7 @@ In the request body, provide a JSON object with the following parameters. | :-------------------- | :---------------------------------------------- | :------------------------------------------------------ | | processContentRequests| [processContentBatchRequest](../resources/processcontentbatchrequest.md) collection | Required. A collection of individual content processing requests, each with its own user context, content, and request ID. | -The size of the text in each content entry is limited to 2 MB. The maximum number of content entries per request is 64. These could be spread across up to 64 **processContentRequests**, each containing one content entry or 2 **processContentRequests**, each containing 32 content entries or some other combination that does not exceed 64 content entries. +The size of the text in each content entry is limited to 2 MB. The maximum number of content entries per request is 64. These could be spread across up to 64 **processContentRequests**, each containing one content entry or 2 **processContentRequests**, each containing 32 content entries or some other combination that doesn't exceed 64 content entries. ## Response diff --git a/api-reference/v1.0/api/timeoffrequest-get.md b/api-reference/v1.0/api/timeoffrequest-get.md index 4651384c98a..1a4347d8f4d 100644 --- a/api-reference/v1.0/api/timeoffrequest-get.md +++ b/api-reference/v1.0/api/timeoffrequest-get.md @@ -35,7 +35,7 @@ GET /teams/{teamId}/schedule/timeOffRequests/{timeOffRequestId} ## Optional query parameters -This method does not support OData query parameters to customize the response. +This method doesn't support OData query parameters to customize the response. ## Request headers diff --git a/api-reference/v1.0/api/todotask-delta.md b/api-reference/v1.0/api/todotask-delta.md index 6c0b859cf1d..bc3b3b8608e 100644 --- a/api-reference/v1.0/api/todotask-delta.md +++ b/api-reference/v1.0/api/todotask-delta.md @@ -54,7 +54,7 @@ _id_ property is always returned. - There is limited support for `$filter` and `$orderby`: * The only supported `$filter` expressions are `$filter=receivedDateTime+ge+{value}` or `$filter=receivedDateTime+gt+{value}`. - * The only supported `$orderby` expression is `$orderby=receivedDateTime+desc`. If you do not include + * The only supported `$orderby` expression is `$orderby=receivedDateTime+desc`. If you don't include an `$orderby` expression, the return order is not guaranteed. - There is no support for `$search`. diff --git a/api-reference/v1.0/api/todotask-list-checklistitems.md b/api-reference/v1.0/api/todotask-list-checklistitems.md index f61e8677b27..5d7282af97b 100644 --- a/api-reference/v1.0/api/todotask-list-checklistitems.md +++ b/api-reference/v1.0/api/todotask-list-checklistitems.md @@ -33,7 +33,7 @@ GET /users/{id | userPrincipalName}/todo/lists/{todoTaskListId}/tasks/{todoTaskI ``` ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers |Name|Description| diff --git a/api-reference/v1.0/api/todotask-post-attachments.md b/api-reference/v1.0/api/todotask-post-attachments.md index 767e1109ded..dceadc96939 100644 --- a/api-reference/v1.0/api/todotask-post-attachments.md +++ b/api-reference/v1.0/api/todotask-post-attachments.md @@ -50,7 +50,7 @@ When you create a file attachment, include `"@odata.type": "#microsoft.graph.tas |:---|:---|:---| |contentBytes|Binary|The base64-encoded contents of the file. Required.| |contentType|String|The content type of the attachment. | -|name|String|The name of the text displayed under the icon that represents the embedded attachment. This does not need to be the actual file name. Required. | +|name|String|The name of the text displayed under the icon that represents the embedded attachment. This doesn't need to be the actual file name. Required. | |size|Int32|The size in bytes of the attachment. | ## Response diff --git a/api-reference/v1.0/api/user-delta.md b/api-reference/v1.0/api/user-delta.md index 2befe9d5715..2e8d74721b0 100644 --- a/api-reference/v1.0/api/user-delta.md +++ b/api-reference/v1.0/api/user-delta.md @@ -98,7 +98,7 @@ Adding an optional request header - `prefer:return=minimal` - results in the fol - If the property has changed, the new value is included in the response. This includes properties being set to null value. - If the property hasn't changed, the property isn't included in the response at all. (Different from the default behavior.) -> **Note:** The header can be added to a `@odata.deltaLink` request at any point in time in the delta cycle. The header only affects the set of properties included in the response and it does not affect how the delta query is executed. See [Example 3](#example-3-alternative-minimal-response-behavior). +> **Note:** The header can be added to a `@odata.deltaLink` request at any point in time in the delta cycle. The header only affects the set of properties included in the response and it doesn't affect how the delta query is executed. See [Example 3](#example-3-alternative-minimal-response-behavior). ## Examples diff --git a/api-reference/v1.0/api/user-findmeetingtimes.md b/api-reference/v1.0/api/user-findmeetingtimes.md index f66fd97c367..92c1bab5123 100644 --- a/api-reference/v1.0/api/user-findmeetingtimes.md +++ b/api-reference/v1.0/api/user-findmeetingtimes.md @@ -62,7 +62,7 @@ The following table describes the **activityDomain** restrictions you can furthe |work| Suggestions are within the user's work hours which are defined in the user’s calendar configuration and can be customized by the user or administrator. The default work hours are Monday to Friday, 8am to 5pm in the time zone set for the mailbox. This is the default value if no **activityDomain** is specified. | |personal| Suggestions are within the user's work hours, and Saturday and Sunday. The default is Monday to Sunday, 8am to 5pm, in the time zone setting for the mailbox.| |unrestricted | Suggestions can be from all hours of a day, all days of a week.| -|unknown | Do not use this value as it will be deprecated in the future. Currently behaves the same as `work`. Change any existing code to use `work`, `personal` or `unrestricted` as appropriate.| +|unknown | Don't use this value as it will be deprecated in the future. Currently behaves the same as `work`. Change any existing code to use `work`, `personal` or `unrestricted` as appropriate.| Based on the specified parameters,**findMeetingTimes** checks the free/busy status in the primary calendars of the organizer and attendees. The action @@ -90,7 +90,7 @@ based on each of their individual free/busy status: - The confidence of a meeting time suggestion is computed by averaging the chance of attendance over all the attendees specified for that meeting. - You can use the **minimumAttendeePercentage** optional parameter for **findMeetingTimes** to specify only meeting time suggestions of at least certain confidence level should be returned. For example, you can specify a **minimumAttendeePercentage** of 80% if you want only -suggestions that have an 80% chance or more that all the attendees are attending. If you do not specify **minimumAttendeePercentage**, +suggestions that have an 80% chance or more that all the attendees are attending. If you don't specify **minimumAttendeePercentage**, **findMeetingTimes** assumes a value of 50%. - If there are multiple meeting time suggestions, the **findMeetingTimes** action first orders the suggestions by their computed confidence value from high to low. If there are suggestions with the same confidence, the action then orders these suggestions chronologically. diff --git a/api-reference/v1.0/api/user-list-calendarview.md b/api-reference/v1.0/api/user-list-calendarview.md index 75151486470..ce970f72bdb 100644 --- a/api-reference/v1.0/api/user-list-calendarview.md +++ b/api-reference/v1.0/api/user-list-calendarview.md @@ -60,7 +60,7 @@ The values of `startDateTime` and `endDateTime` are interpreted using the timezo This method also supports some of the [OData Query Parameters](/graph/query-parameters) to help customize the response. > [!NOTE] -> The **createdDateTime** and **lastModifiedDateTime** properties of [event](../resources/event.md) do not support `$select`. To get their values, simply query on **calendarView** without applying `$select`. +> The **createdDateTime** and **lastModifiedDateTime** properties of [event](../resources/event.md) don't support `$select`. To get their values, simply query on **calendarView** without applying `$select`. ## Request headers | Name | Type | Description | diff --git a/api-reference/v1.0/api/user-list-mailfolders.md b/api-reference/v1.0/api/user-list-mailfolders.md index e76cfa82b53..e726aba7bde 100644 --- a/api-reference/v1.0/api/user-list-mailfolders.md +++ b/api-reference/v1.0/api/user-list-mailfolders.md @@ -16,7 +16,7 @@ Namespace: microsoft.graph Get the mail folder collection directly under the root folder of the signed-in user. The returned collection includes any [mail search folders](../resources/mailsearchfolder.md) directly under the root. -By default, this operation does not return hidden folders. Use a query parameter `includeHiddenFolders` to include them in the response. This operation does not return all mail folders in a mailbox, only the child folders of the root folder. To return all mail folders in a mailbox, each child folder must be [traversed separately](mailfolder-list-childfolders.md). +By default, this operation doesn't return hidden folders. Use a query parameter `includeHiddenFolders` to include them in the response. This operation doesn't return all mail folders in a mailbox, only the child folders of the root folder. To return all mail folders in a mailbox, each child folder must be [traversed separately](mailfolder-list-childfolders.md). [!INCLUDE [national-cloud-support](../../includes/all-clouds.md)] diff --git a/api-reference/v1.0/api/user-list-messages.md b/api-reference/v1.0/api/user-list-messages.md index 58e85e53b3f..e330a3e74c6 100644 --- a/api-reference/v1.0/api/user-list-messages.md +++ b/api-reference/v1.0/api/user-list-messages.md @@ -20,7 +20,7 @@ To improve the operation response time, use `$select` to specify the exact prope To get the next page of messages, simply apply the entire URL returned in `@odata.nextLink` to the next get-messages request. This URL includes any query parameters you may have specified in the initial request. -Do not try to extract the `$skip` value from the `@odata.nextLink` URL to manipulate responses. This API uses the `$skip` value to keep count of all the items it has gone through in the user's mailbox to return a page of message-type items. It's therefore possible that even in the initial response, the `$skip` value is larger than the page size. For more information, see [Paging Microsoft Graph data in your app](/graph/paging). +Don't try to extract the `$skip` value from the `@odata.nextLink` URL to manipulate responses. This API uses the `$skip` value to keep count of all the items it has gone through in the user's mailbox to return a page of message-type items. It's therefore possible that even in the initial response, the `$skip` value is larger than the page size. For more information, see [Paging Microsoft Graph data in your app](/graph/paging). Currently, this operation returns message bodies in only HTML format. diff --git a/api-reference/v1.0/api/user-sendmail.md b/api-reference/v1.0/api/user-sendmail.md index 566be079718..512a08f2df7 100644 --- a/api-reference/v1.0/api/user-sendmail.md +++ b/api-reference/v1.0/api/user-sendmail.md @@ -69,7 +69,7 @@ When specifying the body in MIME format, provide the MIME content as **a base64- If successful, this method returns `202 Accepted` response code. It doesn't return anything in the response body. -> **Note**: A `202 Accepted` response code indicates that the request has been accepted; however, it does not indicate that the request processing has completed. Delivery of the message is subject to [Exchange Online limitations and throttling](/office365/servicedescriptions/exchange-online-service-description/exchange-online-limits). +> **Note**: A `202 Accepted` response code indicates that the request has been accepted; however, it doesn't indicate that the request processing has completed. Delivery of the message is subject to [Exchange Online limitations and throttling](/office365/servicedescriptions/exchange-online-service-description/exchange-online-limits). If the request body includes malformed MIME content, this method returns `400 Bad request` and the following error message: "Invalid base64 string for MIME content." diff --git a/api-reference/v1.0/api/userdatasecurityandgovernance-processcontent.md b/api-reference/v1.0/api/userdatasecurityandgovernance-processcontent.md index d9c3da6215c..380adbc6f21 100644 --- a/api-reference/v1.0/api/userdatasecurityandgovernance-processcontent.md +++ b/api-reference/v1.0/api/userdatasecurityandgovernance-processcontent.md @@ -44,7 +44,7 @@ POST /users/{userId}/dataSecurityAndGovernance/processContent |:---|:---| |Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| |Content-Type|application/json. Required.| -| If-None-Match | Optional. This value is used by the API to determine if the policy state changed since the last call to the API. The value is from the Etag header returned from [protectionScopes compute](../api/userprotectionscopecontainer-compute.md). If newly computed Etag value does not match the value passsed in this header, protectionScopeState property returned will be "modified" and the app needs to refresh by calling [protectionScopes compute](../api/userprotectionscopecontainer-compute.md). | +| If-None-Match | Optional. This value is used by the API to determine if the policy state changed since the last call to the API. The value is from the Etag header returned from [protectionScopes compute](../api/userprotectionscopecontainer-compute.md). If newly computed Etag value doesn't match the value passsed in this header, protectionScopeState property returned will be "modified" and the app needs to refresh by calling [protectionScopes compute](../api/userprotectionscopecontainer-compute.md). | | Client-Request-Id | String (GUID recommended). Optional. Unique identifier for this request, which is used for tracing and debugging in logs and support interactions. If an ID is not provided, one may be generated automatically. We recommend that you specify the ID to make tracing and debugging easier. The same ID that was sent in the request will be returned in the response. | ## Request body diff --git a/api-reference/v1.0/api/userregistrationdetails-get.md b/api-reference/v1.0/api/userregistrationdetails-get.md index ed4827cc555..ff8487a34f1 100644 --- a/api-reference/v1.0/api/userregistrationdetails-get.md +++ b/api-reference/v1.0/api/userregistrationdetails-get.md @@ -37,7 +37,7 @@ GET /reports/authenticationMethods/userRegistrationDetails/{userId} ## Optional query parameters -This method does not support the OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support the OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers diff --git a/api-reference/v1.0/api/verticalsection-update.md b/api-reference/v1.0/api/verticalsection-update.md index f58abea9083..e781445c594 100644 --- a/api-reference/v1.0/api/verticalsection-update.md +++ b/api-reference/v1.0/api/verticalsection-update.md @@ -13,7 +13,7 @@ Namespace: microsoft.graph Update the properties of a [verticalSection](../resources/verticalSection.md) object. -If the vertical section does not exist, this method returns a `404 NotFound` response code. +If the vertical section doesn't exist, this method returns a `404 NotFound` response code. [!INCLUDE [national-cloud-support](../../includes/all-clouds.md)] @@ -50,7 +50,7 @@ In the request body, supply a JSON representation of the [verticalSection](../re If successful, this method returns a `200 OK` response code and an updated [verticalSection](../resources/verticalSection.md) object in the response body. -If the vertical section does not exist, this method returns a `404 NotFound` response code. +If the vertical section doesn't exist, this method returns a `404 NotFound` response code. ## Examples diff --git a/api-reference/v1.0/api/virtualeventregistration-list-sessions.md b/api-reference/v1.0/api/virtualeventregistration-list-sessions.md index 48fd24ec98f..062a24608ed 100644 --- a/api-reference/v1.0/api/virtualeventregistration-list-sessions.md +++ b/api-reference/v1.0/api/virtualeventregistration-list-sessions.md @@ -47,7 +47,7 @@ GET /solutions/virtualEvents/webinars/{webinarId}/registrations/{registrationId} |Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| ## Request body -Do not supply a request body for this method. +Don't supply a request body for this method. ## Response diff --git a/api-reference/v1.0/api/virtualeventregistration-list.md b/api-reference/v1.0/api/virtualeventregistration-list.md index f0df51e93ba..49812439226 100644 --- a/api-reference/v1.0/api/virtualeventregistration-list.md +++ b/api-reference/v1.0/api/virtualeventregistration-list.md @@ -39,7 +39,7 @@ GET /solutions/virtualEvents/webinars/{webinarId}/registrations ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers diff --git a/api-reference/v1.0/api/virtualeventregistrationconfiguration-list-questions.md b/api-reference/v1.0/api/virtualeventregistrationconfiguration-list-questions.md index caa3951d223..7736e4f482f 100644 --- a/api-reference/v1.0/api/virtualeventregistrationconfiguration-list-questions.md +++ b/api-reference/v1.0/api/virtualeventregistrationconfiguration-list-questions.md @@ -40,7 +40,7 @@ GET /solutions/virtualEvents/webinars/{webinarId}/registrationConfiguration/ques ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers diff --git a/api-reference/v1.0/api/virtualeventwebinar-post-registrations.md b/api-reference/v1.0/api/virtualeventwebinar-post-registrations.md index 2f7ab97fd18..c0a6dcff32b 100644 --- a/api-reference/v1.0/api/virtualeventwebinar-post-registrations.md +++ b/api-reference/v1.0/api/virtualeventwebinar-post-registrations.md @@ -219,7 +219,7 @@ Content-Type: application/json ### Example 2: Creating registration record with application permission -Use application permission to create a registration record for a person who does not have a [Microsoft Entra ID](/entra/fundamentals/whatis) as a way to register an anonymous user for a webinar. +Use application permission to create a registration record for a person who doesn't have a [Microsoft Entra ID](/entra/fundamentals/whatis) as a way to register an anonymous user for a webinar. #### Request The following example shows a request. diff --git a/api-reference/v1.0/api/webpart-delete.md b/api-reference/v1.0/api/webpart-delete.md index 3e4e153f49f..0bced42f169 100644 --- a/api-reference/v1.0/api/webpart-delete.md +++ b/api-reference/v1.0/api/webpart-delete.md @@ -40,7 +40,7 @@ DELETE /sites/{site-id}/pages/{page-id}/microsoft.graph.sitePage/canvasLayout/ho |Name|Description| |:------|:------------| |Authorization| Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| -| _if-match_ | eTag. If this request header is included and the eTag provided does not match the current tag on the item, a `412 Precondition Failed` response is returned and the item will not be deleted.| +| _if-match_ | eTag. If this request header is included and the eTag provided doesn't match the current tag on the item, a `412 Precondition Failed` response is returned and the item will not be deleted.| ## Request body @@ -48,7 +48,7 @@ Don't supply a request body with this method. ## Response -If successful, this method returns a `204 No Content`. It does not return anything in the response body. +If successful, this method returns a `204 No Content`. It doesn't return anything in the response body. ## Example diff --git a/api-reference/v1.0/api/workbook-tablerowoperationresult.md b/api-reference/v1.0/api/workbook-tablerowoperationresult.md index ad054b0ffb1..7e14227aeac 100644 --- a/api-reference/v1.0/api/workbook-tablerowoperationresult.md +++ b/api-reference/v1.0/api/workbook-tablerowoperationresult.md @@ -21,7 +21,7 @@ An asynchronous request to create table rows involves the following steps: Alternatively, for convenience, after you get a `succeeded` **operationStatus** result, you can get the query URL from the **resourceLocation** property of the [workbookOperation](../resources/workbookoperation.md) returned in the response, and apply the query URL to step 3. 3. Use the query URL returned from step 2 as the GET request URL for this function **tableRowOperationResult**. A successful function call returns the new table rows in a [workbookTableRow](../resources/workbooktablerow.md) resource. -This function does not do anything if called independently. +This function doesn't do anything if called independently. [!INCLUDE [national-cloud-support](../../includes/global-us.md)] diff --git a/api-reference/v1.0/api/x509certificateauthenticationmethodconfiguration-get.md b/api-reference/v1.0/api/x509certificateauthenticationmethodconfiguration-get.md index d8093fdcb68..ac24789f345 100644 --- a/api-reference/v1.0/api/x509certificateauthenticationmethodconfiguration-get.md +++ b/api-reference/v1.0/api/x509certificateauthenticationmethodconfiguration-get.md @@ -33,7 +33,7 @@ GET /policies/authenticationMethodsPolicy/authenticationMethodConfigurations/x50 ``` ## Optional query parameters -This method does not support the OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support the OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers |Name|Description| From 4077dba2d47c75ec246dda87788c4ec7ce4893cf Mon Sep 17 00:00:00 2001 From: "snippet-gen-pull-automation[bot]" <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Date: Thu, 18 Jun 2026 09:11:51 -0600 Subject: [PATCH 02/52] Update generated permissions tables with build 223476 (#29101) Co-authored-by: Microsoft Graph DevX Tooling --- .../distributionlist-addmembers-permissions.md | 3 ++- .../permissions/distributionlist-delete-permissions.md | 3 ++- .../distributionlist-deletemembers-permissions.md | 3 ++- ...ibutionlist-get-distributionlistmember-permissions.md | 9 +++++---- .../permissions/distributionlist-get-permissions.md | 3 ++- ...utionlist-list-distributionlistmembers-permissions.md | 9 +++++---- .../permissions/distributionlist-update-permissions.md | 3 ++- .../user-list-distributionlists-permissions.md | 3 ++- .../user-post-distributionlists-permissions.md | 3 ++- 9 files changed, 24 insertions(+), 15 deletions(-) diff --git a/api-reference/beta/includes/permissions/distributionlist-addmembers-permissions.md b/api-reference/beta/includes/permissions/distributionlist-addmembers-permissions.md index 95cf3022318..d4eff6bacb2 100644 --- a/api-reference/beta/includes/permissions/distributionlist-addmembers-permissions.md +++ b/api-reference/beta/includes/permissions/distributionlist-addmembers-permissions.md @@ -1,5 +1,5 @@ --- -description: "Permissions for adding members to a distribution list" +description: "Automatically generated file. DO NOT MODIFY" ms.topic: include ms.localizationpriority: medium --- @@ -9,3 +9,4 @@ ms.localizationpriority: medium |Delegated (work or school account)|Contacts.ReadWrite|Not available.| |Delegated (personal Microsoft account)|Contacts.ReadWrite|Not available.| |Application|Contacts.ReadWrite|Not available.| + diff --git a/api-reference/beta/includes/permissions/distributionlist-delete-permissions.md b/api-reference/beta/includes/permissions/distributionlist-delete-permissions.md index 4f5c73d11b3..d4eff6bacb2 100644 --- a/api-reference/beta/includes/permissions/distributionlist-delete-permissions.md +++ b/api-reference/beta/includes/permissions/distributionlist-delete-permissions.md @@ -1,5 +1,5 @@ --- -description: "Permissions for deleting a distribution list" +description: "Automatically generated file. DO NOT MODIFY" ms.topic: include ms.localizationpriority: medium --- @@ -9,3 +9,4 @@ ms.localizationpriority: medium |Delegated (work or school account)|Contacts.ReadWrite|Not available.| |Delegated (personal Microsoft account)|Contacts.ReadWrite|Not available.| |Application|Contacts.ReadWrite|Not available.| + diff --git a/api-reference/beta/includes/permissions/distributionlist-deletemembers-permissions.md b/api-reference/beta/includes/permissions/distributionlist-deletemembers-permissions.md index 0248cb6bdd2..d4eff6bacb2 100644 --- a/api-reference/beta/includes/permissions/distributionlist-deletemembers-permissions.md +++ b/api-reference/beta/includes/permissions/distributionlist-deletemembers-permissions.md @@ -1,5 +1,5 @@ --- -description: "Permissions for deleting members from a distribution list" +description: "Automatically generated file. DO NOT MODIFY" ms.topic: include ms.localizationpriority: medium --- @@ -9,3 +9,4 @@ ms.localizationpriority: medium |Delegated (work or school account)|Contacts.ReadWrite|Not available.| |Delegated (personal Microsoft account)|Contacts.ReadWrite|Not available.| |Application|Contacts.ReadWrite|Not available.| + diff --git a/api-reference/beta/includes/permissions/distributionlist-get-distributionlistmember-permissions.md b/api-reference/beta/includes/permissions/distributionlist-get-distributionlistmember-permissions.md index 7dba9c3366a..97a6fd97d1c 100644 --- a/api-reference/beta/includes/permissions/distributionlist-get-distributionlistmember-permissions.md +++ b/api-reference/beta/includes/permissions/distributionlist-get-distributionlistmember-permissions.md @@ -1,11 +1,12 @@ --- -description: "Permissions for getting a distribution list member" +description: "Automatically generated file. DO NOT MODIFY" ms.topic: include ms.localizationpriority: medium --- |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|Contacts.Read|Contacts.ReadWrite| -|Delegated (personal Microsoft account)|Contacts.Read|Contacts.ReadWrite| -|Application|Contacts.Read|Contacts.ReadWrite| +|Delegated (work or school account)|Contacts.Read|Not available.| +|Delegated (personal Microsoft account)|Contacts.Read|Not available.| +|Application|Contacts.Read|Not available.| + diff --git a/api-reference/beta/includes/permissions/distributionlist-get-permissions.md b/api-reference/beta/includes/permissions/distributionlist-get-permissions.md index 2e7f9bde786..517a90db85d 100644 --- a/api-reference/beta/includes/permissions/distributionlist-get-permissions.md +++ b/api-reference/beta/includes/permissions/distributionlist-get-permissions.md @@ -1,5 +1,5 @@ --- -description: "Permissions for getting a distribution list" +description: "Automatically generated file. DO NOT MODIFY" ms.topic: include ms.localizationpriority: medium --- @@ -9,3 +9,4 @@ ms.localizationpriority: medium |Delegated (work or school account)|Contacts.Read|Contacts.ReadWrite| |Delegated (personal Microsoft account)|Contacts.Read|Contacts.ReadWrite| |Application|Contacts.Read|Contacts.ReadWrite| + diff --git a/api-reference/beta/includes/permissions/distributionlist-list-distributionlistmembers-permissions.md b/api-reference/beta/includes/permissions/distributionlist-list-distributionlistmembers-permissions.md index b6f79027075..97a6fd97d1c 100644 --- a/api-reference/beta/includes/permissions/distributionlist-list-distributionlistmembers-permissions.md +++ b/api-reference/beta/includes/permissions/distributionlist-list-distributionlistmembers-permissions.md @@ -1,11 +1,12 @@ --- -description: "Permissions for listing distribution list members" +description: "Automatically generated file. DO NOT MODIFY" ms.topic: include ms.localizationpriority: medium --- |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|Contacts.Read|Contacts.ReadWrite| -|Delegated (personal Microsoft account)|Contacts.Read|Contacts.ReadWrite| -|Application|Contacts.Read|Contacts.ReadWrite| +|Delegated (work or school account)|Contacts.Read|Not available.| +|Delegated (personal Microsoft account)|Contacts.Read|Not available.| +|Application|Contacts.Read|Not available.| + diff --git a/api-reference/beta/includes/permissions/distributionlist-update-permissions.md b/api-reference/beta/includes/permissions/distributionlist-update-permissions.md index 4c86977b3cc..d4eff6bacb2 100644 --- a/api-reference/beta/includes/permissions/distributionlist-update-permissions.md +++ b/api-reference/beta/includes/permissions/distributionlist-update-permissions.md @@ -1,5 +1,5 @@ --- -description: "Permissions for updating a distribution list" +description: "Automatically generated file. DO NOT MODIFY" ms.topic: include ms.localizationpriority: medium --- @@ -9,3 +9,4 @@ ms.localizationpriority: medium |Delegated (work or school account)|Contacts.ReadWrite|Not available.| |Delegated (personal Microsoft account)|Contacts.ReadWrite|Not available.| |Application|Contacts.ReadWrite|Not available.| + diff --git a/api-reference/beta/includes/permissions/user-list-distributionlists-permissions.md b/api-reference/beta/includes/permissions/user-list-distributionlists-permissions.md index b8c7bbb33a6..517a90db85d 100644 --- a/api-reference/beta/includes/permissions/user-list-distributionlists-permissions.md +++ b/api-reference/beta/includes/permissions/user-list-distributionlists-permissions.md @@ -1,5 +1,5 @@ --- -description: "Permissions for listing distribution lists" +description: "Automatically generated file. DO NOT MODIFY" ms.topic: include ms.localizationpriority: medium --- @@ -9,3 +9,4 @@ ms.localizationpriority: medium |Delegated (work or school account)|Contacts.Read|Contacts.ReadWrite| |Delegated (personal Microsoft account)|Contacts.Read|Contacts.ReadWrite| |Application|Contacts.Read|Contacts.ReadWrite| + diff --git a/api-reference/beta/includes/permissions/user-post-distributionlists-permissions.md b/api-reference/beta/includes/permissions/user-post-distributionlists-permissions.md index 6a6621a7763..d4eff6bacb2 100644 --- a/api-reference/beta/includes/permissions/user-post-distributionlists-permissions.md +++ b/api-reference/beta/includes/permissions/user-post-distributionlists-permissions.md @@ -1,5 +1,5 @@ --- -description: "Permissions for creating a distribution list" +description: "Automatically generated file. DO NOT MODIFY" ms.topic: include ms.localizationpriority: medium --- @@ -9,3 +9,4 @@ ms.localizationpriority: medium |Delegated (work or school account)|Contacts.ReadWrite|Not available.| |Delegated (personal Microsoft account)|Contacts.ReadWrite|Not available.| |Application|Contacts.ReadWrite|Not available.| + From 4392e4d47b5358bf8a749a928a01346e83f0d951 Mon Sep 17 00:00:00 2001 From: Hiro7 <75809971+garchiro7@users.noreply.github.com> Date: Thu, 18 Jun 2026 10:20:39 -0600 Subject: [PATCH 03/52] Add meetingType property and onlineMeetingType enum (beta) (#29011) * Add meetingType property and onlineMeetingType enum (beta) Documents the new meetingType property on onlineMeetingBase (inherited by onlineMeeting and virtualEventSession) and the onlineMeetingType enum (adhoc, scheduled, recurring, broadcast, meetnow, unknownFutureValue). Mirrors schema PR msazure/One/AD-AggregatorService-Workloads #15972364 (API review work item microsoftgraph #49116). Co-Authored-By: Claude Opus 4.8 (1M context) * Add changelog entry for meetingType property and onlineMeetingType enum (beta) Co-Authored-By: Claude Opus 4.8 (1M context) * Add onlineMeetingType enum to enums.md and whats-new entry (beta) Co-Authored-By: Claude Opus 4.8 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Fix code review comments * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Claude Opus 4.8 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --- .../beta/api/onlinemeeting-createorget.md | 5 ++- api-reference/beta/api/onlinemeeting-get.md | 12 +++-- api-reference/beta/resources/onlinemeeting.md | 4 +- .../beta/resources/onlinemeetingbase.md | 15 ++++++- .../beta/resources/virtualeventsession.md | 4 +- changelog/Microsoft.Skype.Calling.json | 44 ++++++++++++++++++- concepts/whats-new-overview.md | 4 ++ 7 files changed, 79 insertions(+), 9 deletions(-) diff --git a/api-reference/beta/api/onlinemeeting-createorget.md b/api-reference/beta/api/onlinemeeting-createorget.md index f118d035029..48dd3232724 100644 --- a/api-reference/beta/api/onlinemeeting-createorget.md +++ b/api-reference/beta/api/onlinemeeting-createorget.md @@ -207,6 +207,7 @@ Content-Type: application/json "messageId": "0", "replyChainMessageId": null }, + "meetingType": "scheduled" } ``` @@ -244,7 +245,8 @@ Content-Type: application/json } ] }, - "subject": "Create a meeting with customId provided" + "subject": "Create a meeting with customId provided", + "meetingType": "scheduled" } ``` @@ -340,6 +342,7 @@ Content-Type: application/json "messageId": "1599805818399", "replyChainMessageId": null }, + "meetingType": "scheduled" } ``` diff --git a/api-reference/beta/api/onlinemeeting-get.md b/api-reference/beta/api/onlinemeeting-get.md index bf485d9a62c..bcaa2c1951d 100644 --- a/api-reference/beta/api/onlinemeeting-get.md +++ b/api-reference/beta/api/onlinemeeting-get.md @@ -342,7 +342,8 @@ Content-Length: 1574 "allowedPresenters": "everyone", "allowMeetingChat": "enabled", "allowTeamworkReactions": true, - "meetingOptionsWebUrl": "https://teams.microsoft.com/meetingOptions/?meetingId=abc123" + "meetingOptionsWebUrl": "https://teams.microsoft.com/meetingOptions/?meetingId=abc123", + "meetingType": "scheduled" } ``` >**Note:** If 'Accept-Language: ja' is specified to indicate Japanese, for example, the response will include the following. @@ -426,7 +427,8 @@ The following example shows the response. "passcode": null }, "meetingOptionsWebUrl": "https://teams.microsoft.com/meetingOptions/?meetingId=abc123" - "meetingSpokenLanguageTag": "en-US" + "meetingSpokenLanguageTag": "en-US", + "meetingType": "scheduled" } ``` @@ -500,7 +502,8 @@ The following example shows the response. "sensitivityLabelAssignment": { "sensitivityLabelId": "c7f2d7a7-6a36-4a41-9a6b-0d2761a9f4f0" } - "meetingOptionsWebUrl": "https://teams.microsoft.com/meetingOptions/?meetingId=abc123" + "meetingOptionsWebUrl": "https://teams.microsoft.com/meetingOptions/?meetingId=abc123", + "meetingType": "scheduled" } ] } @@ -618,7 +621,8 @@ Content-Type: application/json "sensitivityLabelAssignment": { "sensitivityLabelId": "c7f2d7a7-6a36-4a41-9a6b-0d2761a9f4f0" }, - "meetingOptionsWebUrl": "https://teams.microsoft.com/meetingOptions/?meetingId=abc123" + "meetingOptionsWebUrl": "https://teams.microsoft.com/meetingOptions/?meetingId=abc123", + "meetingType": "scheduled" } ] } diff --git a/api-reference/beta/resources/onlinemeeting.md b/api-reference/beta/resources/onlinemeeting.md index 3f555b19234..e181291bc95 100644 --- a/api-reference/beta/resources/onlinemeeting.md +++ b/api-reference/beta/resources/onlinemeeting.md @@ -5,7 +5,7 @@ author: "awang119" ms.localizationpriority: medium doc_type: resourcePageType ms.subservice: "cloud-communications" -ms.date: 11/08/2024 +ms.date: 06/04/2026 --- # onlineMeeting resource type @@ -77,6 +77,7 @@ Inherits from [onlineMeetingBase](../resources/onlinemeetingbase.md). | meetingOptionsWebUrl | String | Provides the URL to the Teams meeting options page for the specified meeting. This link allows *only the organizer* to configure meeting settings. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | meetingSpokenLanguageTag | String | Specifies the spoken language used during the meeting for recording and transcription purposes. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | meetingTemplateId | String | The ID of the [meeting template](/microsoftteams/create-custom-meeting-template). | +| meetingType | [onlineMeetingType](../resources/onlinemeetingbase.md#onlinemeetingtype-values) | The type of the online meeting. The possible values are: `adhoc`, `scheduled`, `recurring`, `broadcast`, `meetnow`, `unknownFutureValue`. Read-only. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | participants | [meetingParticipants](meetingparticipants.md) | The participants associated with the online meeting, including the organizer and the attendees. | | recordAutomatically | Boolean | Indicates whether to record the meeting automatically. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | |sensitivityLabelAssignment|[onlineMeetingSensitivityLabelAssignment](../resources/onlinemeetingsensitivitylabelassignment.md)|Specifies the sensitivity label applied to the Teams meeting.| @@ -199,6 +200,7 @@ The following JSON representation shows the resource type. "meetingOptionsWebUrl": "String", "meetingSpokenLanguageTag": "String", "meetingTemplateId": "String", + "meetingType": "String", "sensitivityLabelAssignment": { "@odata.type": "microsoft.graph.onlineMeetingSensitivityLabelAssignment" }, diff --git a/api-reference/beta/resources/onlinemeetingbase.md b/api-reference/beta/resources/onlinemeetingbase.md index 43855fd4158..9dd486ebdcb 100644 --- a/api-reference/beta/resources/onlinemeetingbase.md +++ b/api-reference/beta/resources/onlinemeetingbase.md @@ -5,7 +5,7 @@ author: "awang119" ms.localizationpriority: medium doc_type: resourcePageType ms.subservice: "cloud-communications" -ms.date: 11/05/2024 +ms.date: 06/04/2026 --- # onlineMeetingBase resource type @@ -53,6 +53,7 @@ Inherits from [entity](../resources/entity.md). | lobbyBypassSettings | [lobbyBypassSettings](lobbybypasssettings.md) | Specifies which participants can bypass the meeting lobby. | | meetingOptionsWebUrl | String | Provides the URL to the Teams meeting options page for the specified meeting. This link allows *only the organizer* to configure meeting settings. | | meetingSpokenLanguageTag | String | Specifies the spoken language used during the meeting for recording and transcription purposes. | +| meetingType | [onlineMeetingType](#onlinemeetingtype-values) | The type of the online meeting. The possible values are: `adhoc`, `scheduled`, `recurring`, `broadcast`, `meetnow`, `unknownFutureValue`. Read-only. | | recordAutomatically | Boolean | Indicates whether to record the meeting automatically. | | sensitivityLabelAssignment|[onlineMeetingSensitivityLabelAssignment](../resources/onlinemeetingsensitivitylabelassignment.md)|Specifies the sensitivity label applied to the Teams meeting.| | shareMeetingChatHistoryDefault | [meetingChatHistoryDefaultMode](#meetingchathistorydefaultmode-values) |Specifies whether meeting chat history is shared with participants. The possible values are: `all`, `none`, `unknownFutureValue`.| @@ -103,6 +104,17 @@ Inherits from [entity](../resources/entity.md). | organizer | Only the organizer is a presenter. | | unknownFutureValue | Evolvable enumeration sentinel value. Don't use. | +### onlineMeetingType values + +| Value | Description | +| ------------------ | ------------------------------------------------- | +| adhoc | The meeting is an ad hoc meeting. | +| scheduled | The meeting is a scheduled meeting. | +| recurring | The meeting is a recurring meeting. | +| broadcast | The meeting is a broadcast meeting. | +| meetnow | The meeting is a *Meet now* session. | +| unknownFutureValue | Evolvable enumeration sentinel value. Don't use. | + ## Relationships | Relationship | Type | Description | @@ -151,6 +163,7 @@ The following JSON representation shows the resource type. "lobbyBypassSettings": {"@odata.type": "microsoft.graph.lobbyBypassSettings"}, "meetingOptionsWebUrl": "String", "meetingSpokenLanguageTag": "String", + "meetingType": "String", "recordAutomatically": "Boolean", "sensitivityLabelAssignment": { "@odata.type": "microsoft.graph.onlineMeetingSensitivityLabelAssignment" diff --git a/api-reference/beta/resources/virtualeventsession.md b/api-reference/beta/resources/virtualeventsession.md index 44775be6c7b..28342ecbf1d 100644 --- a/api-reference/beta/resources/virtualeventsession.md +++ b/api-reference/beta/resources/virtualeventsession.md @@ -5,7 +5,7 @@ author: "frankpeng7" ms.localizationpriority: medium ms.subservice: "cloud-communications" doc_type: resourcePageType -ms.date: 11/08/2024 +ms.date: 06/04/2026 --- # virtualEventSession resource type @@ -59,6 +59,7 @@ Inherits from [onlineMeetingBase](../resources/onlinemeetingbase.md). | lobbyBypassSettings | [lobbyBypassSettings](lobbyBypassSettings.md) | Specifies which participants can bypass the meeting lobby. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | meetingOptionsWebUrl | String | Provides the URL to the Teams meeting options page for the specified meeting. This link allows *only the organizer* to configure meeting settings. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | meetingSpokenLanguageTag | String | Specifies the spoken language used during the meeting for recording and transcription purposes. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | +| meetingType | [onlineMeetingType](../resources/onlinemeetingbase.md#onlinemeetingtype-values) | The type of the online meeting. The possible values are: `adhoc`, `scheduled`, `recurring`, `broadcast`, `meetnow`, `unknownFutureValue`. Read-only. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | recordAutomatically | Boolean | Indicates whether to record the virtual event session automatically. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | shareMeetingChatHistoryDefault | [meetingChatHistoryDefaultMode](#meetingchathistorydefaultmode-values) | Specifies whether meeting chat history is shared with participants. The possible values are: `all`, `none`, `unknownFutureValue`. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | startDateTime | [DateTimeTimeZone](../resources/datetimetimezone.md) | The virtual event session start time. | @@ -152,6 +153,7 @@ The following JSON representation shows the resource type. "lobbyBypassSettings": {"@odata.type": "microsoft.graph.lobbyBypassSettings"}, "meetingOptionsWebUrl": "String", "meetingSpokenLanguageTag": "String", + "meetingType": "String", "recordAutomatically": "Boolean", "shareMeetingChatHistoryDefault": "String", "startDateTime": {"@odata.type": "microsoft.graph.dateTimeTimeZone"}, diff --git a/changelog/Microsoft.Skype.Calling.json b/changelog/Microsoft.Skype.Calling.json index 6211d096909..5a6899856ae 100644 --- a/changelog/Microsoft.Skype.Calling.json +++ b/changelog/Microsoft.Skype.Calling.json @@ -1,6 +1,48 @@ { - "changelog": [ + "changelog": [ + { + "ChangeList": [ + { + "Id": "c84cd57a-479f-4e73-b106-835e33615bc0", + "ApiChange": "Property", + "ChangedApiName": "meetingType", + "ChangeType": "Addition", + "Description": "Added the **meetingType** property to the [onlineMeetingBase](https://learn.microsoft.com/en-us/graph/api/resources/onlineMeetingBase?view=graph-rest-beta) resource.", + "Target": "onlineMeetingBase" + }, { + "Id": "c84cd57a-479f-4e73-b106-835e33615bc0", + "ApiChange": "Property", + "ChangedApiName": "meetingType", + "ChangeType": "Addition", + "Description": "Added the **meetingType** property to the [onlineMeeting](https://learn.microsoft.com/en-us/graph/api/resources/onlineMeeting?view=graph-rest-beta) resource.", + "Target": "onlineMeeting" + }, + { + "Id": "c84cd57a-479f-4e73-b106-835e33615bc0", + "ApiChange": "Property", + "ChangedApiName": "meetingType", + "ChangeType": "Addition", + "Description": "Added the **meetingType** property to the [virtualEventSession](https://learn.microsoft.com/en-us/graph/api/resources/virtualEventSession?view=graph-rest-beta) resource.", + "Target": "virtualEventSession" + }, + { + "Id": "c84cd57a-479f-4e73-b106-835e33615bc0", + "ApiChange": "Enumeration", + "ChangedApiName": "onlineMeetingType", + "ChangeType": "Addition", + "Description": "Added the **onlineMeetingType** enumeration type.", + "Target": "onlineMeetingType" + } + ], + "Id": "c84cd57a-479f-4e73-b106-835e33615bc0", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-18T16:02:03.2817806Z", + "WorkloadArea": "Teamwork and communications", + "SubArea": "Calls and online meetings" + }, + { "ChangeList": [ { "Id": "b1e145ad-965e-474e-afa6-28a008f989a4", diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index 59e537e8f97..1858f86b291 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -96,6 +96,10 @@ Personal distribution lists enable users to group email recipients together and Added the [sharePointReportSettings](/graph/api/resources/sharepointreportsettings?view=graph-rest-beta&preserve-view=true) resource type and related methods for managing SharePoint API usage report metrics. Use the [enableApiUsageReport](/graph/api/sharepointreportsettings-enableapiusagereport?view=graph-rest-beta&preserve-view=true) and [disableApiUsageReport](/graph/api/sharepointreportsettings-disableapiusagereport?view=graph-rest-beta&preserve-view=true) methods to control which metrics are collected and reported for your tenant. +### Teamwork and communications | Calls and online meetings + +Use the **meetingType** property on [onlineMeeting](/graph/api/resources/onlinemeeting?view=graph-rest-beta&preserve-view=true) and [virtualEventSession](/graph/api/resources/virtualeventsession?view=graph-rest-beta&preserve-view=true) to determine whether a meeting is ad hoc, scheduled, recurring, a broadcast, or a *Meet now* session. The property is defined on the [onlineMeetingBase](/graph/api/resources/onlinemeetingbase?view=graph-rest-beta&preserve-view=true) resource and uses the [onlineMeetingType](/graph/api/resources/onlinemeetingbase?view=graph-rest-beta&preserve-view=true#onlinemeetingtype-values) enumeration. + ### Teamwork and communications | Shift management The **timeZone** property of the [schedule](/graph/api/resources/schedule?view=graph-rest-beta&preserve-view=true) resource must be set to an IANA time zone name, such as `America/Chicago` or `Europe/London`. For more information, see [Create or replace schedule](/graph/api/team-put-schedule?view=graph-rest-beta&preserve-view=true).‎ From 1d4a9e6f7fd15f1e7ca8a9f32fe0108ac51e253f Mon Sep 17 00:00:00 2001 From: Copilot <198982749+Copilot@users.noreply.github.com> Date: Thu, 18 Jun 2026 17:17:21 +0000 Subject: [PATCH 04/52] Add What's New entry for roleType property promotion to v1.0 (#29105) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> --- concepts/whats-new-overview.md | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index 1858f86b291..c27328162f2 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -28,6 +28,10 @@ Evaluate applications in the Microsoft Entra application gallery by using the [a [Upsert](/graph/api/filestoragecontainer-patch-permissions) (create or update) up to 40 permissions on a [fileStorageContainer](/graph/api/resources/filestoragecontainer) in a single request. The limit increased from 10 to 40 [permission](/graph/api/resources/permission) objects per request. +### Identity and access | Governance + +Added the **type** property to the [accessPackageResourceRole](/graph/api/resources/accesspackageresourcerole) resource to indicate whether an Azure resource role is active or eligible, enabling PIM-based role assignments for Azure resources in access packages. + ### Identity and access | Identity and sign-in Added support for programmatic FIDO2 passkey registration. Use the [creationOptions](/graph/api/fido2authenticationmethod-creationoptions) function to get WebAuthn credential creation options, then complete registration by posting the new **publicKeyCredential** property to the [fido2AuthenticationMethod](/graph/api/resources/fido2authenticationmethod) resource. From 2564e90377b05b85333127fbaee5644caff0b2dc Mon Sep 17 00:00:00 2001 From: Simran Moolchandaney <66736756+simoolchandaney@users.noreply.github.com> Date: Thu, 18 Jun 2026 10:25:05 -0700 Subject: [PATCH 05/52] Add EntitlementMgmt-SubjectAccess.ReadWrite tip boxes to entitlement management APIs (#29081) * Add EntitlementMgmt-SubjectAccess.ReadWrite tip boxes to entitlement management APIs Adds new RBAC tip boxes documenting EntitlementMgmt-SubjectAccess.ReadWrite permission behavior to three entitlement management API docs (both v1.0 and beta): - entitlementmanagement-post-assignmentrequests: signed-in user doesn't need an admin role; non-user request types (e.g., adminAdd) are blocked - accesspackageassignmentrequest-cancel: signed-in user doesn't need an admin role; callers can only cancel user-type requests - accesspackage-getapplicablepolicyrequirements: signed-in user doesn't need an admin role; adminAdd request types are blocked New include files were created to avoid impacting other pages that reference the original RBAC includes. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Add app-only scenario note to assignment-manager RBAC includes Address review feedback from AlexFilipin: add the 'In app-only scenarios...' paragraph to both beta and v1.0 assignment-manager include files, matching the end-user include files. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> --------- Co-authored-by: Simran Moolchandaney (from Dev Box) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi --- ...package-getapplicablepolicyrequirements.md | 122 +----------------- .../accesspackageassignmentrequest-cancel.md | 2 +- ...ementmanagement-post-assignmentrequests.md | 2 +- ...ger-apis-write-including-subject-access.md | 29 +++++ ...ser-apis-write-including-subject-access.md | 30 +++++ ...package-getapplicablepolicyrequirements.md | 28 +++- .../accesspackageassignmentrequest-cancel.md | 2 +- ...ementmanagement-post-assignmentrequests.md | 2 +- ...ger-apis-write-including-subject-access.md | 29 +++++ ...ser-apis-write-including-subject-access.md | 30 +++++ 10 files changed, 152 insertions(+), 124 deletions(-) create mode 100644 api-reference/beta/includes/rbac-for-apis/rbac-entitlement-management-access-package-assignment-manager-apis-write-including-subject-access.md create mode 100644 api-reference/beta/includes/rbac-for-apis/rbac-entitlement-management-end-user-apis-write-including-subject-access.md create mode 100644 api-reference/v1.0/includes/rbac-for-apis/rbac-entitlement-management-access-package-assignment-manager-apis-write-including-subject-access.md create mode 100644 api-reference/v1.0/includes/rbac-for-apis/rbac-entitlement-management-end-user-apis-write-including-subject-access.md diff --git a/api-reference/beta/api/accesspackage-getapplicablepolicyrequirements.md b/api-reference/beta/api/accesspackage-getapplicablepolicyrequirements.md index 6e6b71fefb4..f23b871c6c5 100644 --- a/api-reference/beta/api/accesspackage-getapplicablepolicyrequirements.md +++ b/api-reference/beta/api/accesspackage-getapplicablepolicyrequirements.md @@ -43,14 +43,14 @@ None. |Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| ## Request body -Don't supply a request body for this method if you wish to retrieve a list of access package requirements as in example 1. If you want to get policy requirements for user scope as in example 2, you must supply a request body. +Don't supply a request body for this method. ## Response If successful, this method returns a `200 OK` response code and an [accessPackageAssignmentRequestRequirements](../resources/accesspackageassignmentrequestrequirements.md) collection in the response body, one object for each policy for which the user is an **allowedRequestor**. If there's a policy with no requirements, the **accessPackageAssignmentRequestRequirements** has `false` and `null` values. If there are no policies where the user is an **allowedRequestor**, an empty collection is returned instead. ## Examples -### Example 1: Retrieve a list of access package requirements to create an access package +### Example 1: Retrieve a list of access package requirements #### Request @@ -141,123 +141,7 @@ Content-Type: application/json } ``` -### Example 2: Get policy requirements for a given user scope - -#### Request - -The following example shows a request. - -# [HTTP](#tab/http) - - -```http -POST https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackages/b15419bb-5ffc-ea11-b207-c8d9d21f4e9a/getApplicablePolicyRequirements - -{ - "subject": { - "objectId": "5acd375c-8acb-45de-a958-fa0dd89259ad" - } - } -``` - -# [C#](#tab/csharp) -[!INCLUDE [sample-code](../includes/snippets/csharp/get-req-for-given-user-csharp-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Go](#tab/go) -[!INCLUDE [sample-code](../includes/snippets/go/get-req-for-given-user-go-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Java](#tab/java) -[!INCLUDE [sample-code](../includes/snippets/java/get-req-for-given-user-java-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [JavaScript](#tab/javascript) -[!INCLUDE [sample-code](../includes/snippets/javascript/get-req-for-given-user-javascript-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [PHP](#tab/php) -[!INCLUDE [sample-code](../includes/snippets/php/get-req-for-given-user-php-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [PowerShell](#tab/powershell) -[!INCLUDE [sample-code](../includes/snippets/powershell/get-req-for-given-user-powershell-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Python](#tab/python) -[!INCLUDE [sample-code](../includes/snippets/python/get-req-for-given-user-python-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - ---- - -#### Response - -The following example shows the response. - - - -```http -HTTP/1.1 200 OK -Content-Type: application/json - -{ - "value": [ - { - "policyId": "d6322c23-04d6-eb11-b22b-c8d9d21f4e9a", - "policyDisplayName": "Initial Policy", - "policyDescription": "Initial Policy", - "isApprovalRequired": false, - "isApprovalRequiredForExtension": false, - "isRequestorJustificationRequired": false, - "questions": [ - { - "@odata.type": "#microsoft.graph.textInputQuestion", - "id": "5a7f2a8f-b802-4438-bec6-09599bc43e13", - "isRequired": false, - "isAnswerEditable": true, - "sequence": 0, - "isSingleLineQuestion": true, - "text": { - "defaultText": "Enter your mail", - "localizedTexts": [] - } - } - ], - "existingAnswers": [ - { - "@odata.type": "#microsoft.graph.answerString", - "displayValue": "admin@contoso.com", - "value": "admin@contoso.com", - "answeredQuestion": { - "@odata.type": "#microsoft.graph.textInputQuestion", - "id": "5a7f2a8f-b802-4438-bec6-09599bc43e13", - "isRequired": false, - "isAnswerEditable": true, - "sequence": 0, - "isSingleLineQuestion": true, - "text": { - "defaultText": "Enter your mail", - "localizedTexts": [] - } - } - } - ], - "schedule": [] - } - ] -} -``` - -### Example 3: Get policy requirements for verifiable credential status requirements +### Example 2: Get policy requirements for verifiable credential status requirements #### Request diff --git a/api-reference/beta/api/accesspackageassignmentrequest-cancel.md b/api-reference/beta/api/accesspackageassignmentrequest-cancel.md index aae258266a9..2ed95117a54 100644 --- a/api-reference/beta/api/accesspackageassignmentrequest-cancel.md +++ b/api-reference/beta/api/accesspackageassignmentrequest-cancel.md @@ -23,7 +23,7 @@ Choose the permission or permissions marked as least privileged for this API. Us [!INCLUDE [permissions-table](../includes/permissions/accesspackageassignmentrequest-cancel-permissions.md)] -[!INCLUDE [rbac-entitlement-access-package-assignment-manager-write](../includes/rbac-for-apis/rbac-entitlement-management-access-package-assignment-manager-apis-write.md)] +[!INCLUDE [rbac-entitlement-access-package-assignment-manager-write-including-subject-access](../includes/rbac-for-apis/rbac-entitlement-management-access-package-assignment-manager-apis-write-including-subject-access.md)] ## HTTP request diff --git a/api-reference/beta/api/entitlementmanagement-post-assignmentrequests.md b/api-reference/beta/api/entitlementmanagement-post-assignmentrequests.md index 3607e861216..9ad0b68616b 100644 --- a/api-reference/beta/api/entitlementmanagement-post-assignmentrequests.md +++ b/api-reference/beta/api/entitlementmanagement-post-assignmentrequests.md @@ -25,7 +25,7 @@ Choose the permission or permissions marked as least privileged for this API. Us [!INCLUDE [permissions-table](../includes/permissions/entitlementmanagement-post-assignmentrequests-permissions.md)] -[!INCLUDE [rbac-entitlement-end-user-apis-write](../includes/rbac-for-apis/rbac-entitlement-management-end-user-apis-write.md)] +[!INCLUDE [rbac-entitlement-end-user-apis-write-including-subject-access](../includes/rbac-for-apis/rbac-entitlement-management-end-user-apis-write-including-subject-access.md)] ## HTTP request diff --git a/api-reference/beta/includes/rbac-for-apis/rbac-entitlement-management-access-package-assignment-manager-apis-write-including-subject-access.md b/api-reference/beta/includes/rbac-for-apis/rbac-entitlement-management-access-package-assignment-manager-apis-write-including-subject-access.md new file mode 100644 index 00000000000..99008d8f030 --- /dev/null +++ b/api-reference/beta/includes/rbac-for-apis/rbac-entitlement-management-access-package-assignment-manager-apis-write-including-subject-access.md @@ -0,0 +1,29 @@ +--- +author: simranm +ms.topic: include +--- + + + +> [!TIP] +> The role and permission required for delegated access using work or school accounts depend on whose request is being canceled. +> +> **End users canceling their own request:** +> - The signed-in user **doesn't need** an administrator role. +> - The least privileged permission is `EntitlementMgmt-SubjectAccess.ReadWrite`. +> +> **Administrators canceling requests submitted by others:** +> - The least privileged permission is `EntitlementManagement.ReadWrite.All`. +> - The signed-in user **must** be assigned a supported administrator role. Supported roles, from least to most privileged: +> - A [role in the Entitlement Management system](/entra/id-governance/entitlement-management-delegate): +> - *Access package assignment manager*. **This is the least privileged option** +> - *Access package manager* +> - *Catalog owner* +> - A more privileged [Microsoft Entra role](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json): +> - *Identity Governance Administrator* +> +> In app-only scenarios, the calling app can be assigned one of the preceding supported roles instead of the `EntitlementManagement.ReadWrite.All` application permission. The *Access package assignment manager* role is less privileged than the `EntitlementManagement.ReadWrite.All` application permission. +> +> For more information, see [Delegation and roles in entitlement management](/entra/id-governance/entitlement-management-delegate) and [how to delegate access governance to access package managers in entitlement management](/entra/id-governance/entitlement-management-delegate-managers). diff --git a/api-reference/beta/includes/rbac-for-apis/rbac-entitlement-management-end-user-apis-write-including-subject-access.md b/api-reference/beta/includes/rbac-for-apis/rbac-entitlement-management-end-user-apis-write-including-subject-access.md new file mode 100644 index 00000000000..27658f76459 --- /dev/null +++ b/api-reference/beta/includes/rbac-for-apis/rbac-entitlement-management-end-user-apis-write-including-subject-access.md @@ -0,0 +1,30 @@ +--- +author: simranm +ms.topic: include +--- + + + +> [!TIP] +> The role and permission required for delegated access using work or school accounts depend on the `requestType` of the request being submitted. +> +> **End-user requests** — `userAdd`, `userExtend`, `userUpdate`, `userRemove`, and `approverRemove`: +> - The signed-in user **doesn't need** an administrator role. +> - The least privileged permission is `EntitlementMgmt-SubjectAccess.ReadWrite`. +> - Holding the permission isn't sufficient on its own — whether an end-user can submit a request is also governed by the corresponding accessPackageAssignmentPolicy, which controls who can be assigned to an access package and who can request it (`requestorSettings`). +> +> **Administrator requests** — `adminAdd`, `adminUpdate`, and `adminRemove`: +> - The least privileged permission is `EntitlementManagement.ReadWrite.All`. +> - The signed-in user **must** be assigned a supported administrator role. Supported roles, from least to most privileged: +> - A [role in the Entitlement Management system](/entra/id-governance/entitlement-management-delegate): +> - *Access package assignment manager*. **This is the least privileged option** +> - *Access package manager* +> - *Catalog owner* +> - A more privileged [Microsoft Entra role](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json): +> - *Identity Governance Administrator* +> +> In app-only scenarios, the calling app can be assigned one of the preceding supported roles instead of the `EntitlementManagement.ReadWrite.All` application permission. The *Access package assignment manager* role is less privileged than the `EntitlementManagement.ReadWrite.All` application permission. +> +> For more information, see [Delegation and roles in entitlement management](/entra/id-governance/entitlement-management-delegate) and [how to delegate access governance to access package managers in entitlement management](/entra/id-governance/entitlement-management-delegate-managers). diff --git a/api-reference/v1.0/api/accesspackage-getapplicablepolicyrequirements.md b/api-reference/v1.0/api/accesspackage-getapplicablepolicyrequirements.md index 684827d93f9..acde5b68dba 100644 --- a/api-reference/v1.0/api/accesspackage-getapplicablepolicyrequirements.md +++ b/api-reference/v1.0/api/accesspackage-getapplicablepolicyrequirements.md @@ -104,7 +104,33 @@ Content-Type: application/json { "value": [ { - "@odata.type": "microsoft.graph.accessPackageAssignmentRequestRequirements" + "policyId": "d6322c23-04d6-eb11-b22b-c8d9d21f4e9a", + "policyDisplayName": "Initial Policy", + "policyDescription": "Initial Policy", + "isApprovalRequiredForAdd": false, + "isApprovalRequiredForUpdate": false, + "isRequestorJustificationRequired": false, + "allowCustomAssignmentSchedule": true, + "schedule": { + "expiration": { + "endDateTime": null, + "duration": "P365D", + "type": "afterDuration" + } + }, + "questions": [ + { + "@odata.type": "#microsoft.graph.textInputQuestion", + "id": "0fd349e2-a3a7-4712-af08-660f29c12b90", + "isRequired": true, + "sequence": 0, + "isSingleLineQuestion": true, + "text": { + "defaultText": "What is your display name", + "localizedTexts": [] + } + } + ] } ] } diff --git a/api-reference/v1.0/api/accesspackageassignmentrequest-cancel.md b/api-reference/v1.0/api/accesspackageassignmentrequest-cancel.md index 58a7641ff27..24eee63c7c4 100644 --- a/api-reference/v1.0/api/accesspackageassignmentrequest-cancel.md +++ b/api-reference/v1.0/api/accesspackageassignmentrequest-cancel.md @@ -21,7 +21,7 @@ Choose the permission or permissions marked as least privileged for this API. Us [!INCLUDE [permissions-table](../includes/permissions/accesspackageassignmentrequest-cancel-permissions.md)] -[!INCLUDE [rbac-entitlement-access-package-assignment-manager-write](../includes/rbac-for-apis/rbac-entitlement-management-access-package-assignment-manager-apis-write.md)] +[!INCLUDE [rbac-entitlement-access-package-assignment-manager-write-including-subject-access](../includes/rbac-for-apis/rbac-entitlement-management-access-package-assignment-manager-apis-write-including-subject-access.md)] ## HTTP request diff --git a/api-reference/v1.0/api/entitlementmanagement-post-assignmentrequests.md b/api-reference/v1.0/api/entitlementmanagement-post-assignmentrequests.md index ef5da5747be..a94034cfd1f 100644 --- a/api-reference/v1.0/api/entitlementmanagement-post-assignmentrequests.md +++ b/api-reference/v1.0/api/entitlementmanagement-post-assignmentrequests.md @@ -22,7 +22,7 @@ Choose the permission or permissions marked as least privileged for this API. Us [!INCLUDE [permissions-table](../includes/permissions/entitlementmanagement-post-assignmentrequests-permissions.md)] -[!INCLUDE [rbac-entitlement-end-user-apis-write](../includes/rbac-for-apis/rbac-entitlement-management-end-user-apis-write.md)] +[!INCLUDE [rbac-entitlement-end-user-apis-write-including-subject-access](../includes/rbac-for-apis/rbac-entitlement-management-end-user-apis-write-including-subject-access.md)] ## HTTP request diff --git a/api-reference/v1.0/includes/rbac-for-apis/rbac-entitlement-management-access-package-assignment-manager-apis-write-including-subject-access.md b/api-reference/v1.0/includes/rbac-for-apis/rbac-entitlement-management-access-package-assignment-manager-apis-write-including-subject-access.md new file mode 100644 index 00000000000..99008d8f030 --- /dev/null +++ b/api-reference/v1.0/includes/rbac-for-apis/rbac-entitlement-management-access-package-assignment-manager-apis-write-including-subject-access.md @@ -0,0 +1,29 @@ +--- +author: simranm +ms.topic: include +--- + + + +> [!TIP] +> The role and permission required for delegated access using work or school accounts depend on whose request is being canceled. +> +> **End users canceling their own request:** +> - The signed-in user **doesn't need** an administrator role. +> - The least privileged permission is `EntitlementMgmt-SubjectAccess.ReadWrite`. +> +> **Administrators canceling requests submitted by others:** +> - The least privileged permission is `EntitlementManagement.ReadWrite.All`. +> - The signed-in user **must** be assigned a supported administrator role. Supported roles, from least to most privileged: +> - A [role in the Entitlement Management system](/entra/id-governance/entitlement-management-delegate): +> - *Access package assignment manager*. **This is the least privileged option** +> - *Access package manager* +> - *Catalog owner* +> - A more privileged [Microsoft Entra role](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json): +> - *Identity Governance Administrator* +> +> In app-only scenarios, the calling app can be assigned one of the preceding supported roles instead of the `EntitlementManagement.ReadWrite.All` application permission. The *Access package assignment manager* role is less privileged than the `EntitlementManagement.ReadWrite.All` application permission. +> +> For more information, see [Delegation and roles in entitlement management](/entra/id-governance/entitlement-management-delegate) and [how to delegate access governance to access package managers in entitlement management](/entra/id-governance/entitlement-management-delegate-managers). diff --git a/api-reference/v1.0/includes/rbac-for-apis/rbac-entitlement-management-end-user-apis-write-including-subject-access.md b/api-reference/v1.0/includes/rbac-for-apis/rbac-entitlement-management-end-user-apis-write-including-subject-access.md new file mode 100644 index 00000000000..c31c0882803 --- /dev/null +++ b/api-reference/v1.0/includes/rbac-for-apis/rbac-entitlement-management-end-user-apis-write-including-subject-access.md @@ -0,0 +1,30 @@ +--- +author: simranm +ms.topic: include +--- + + + +> [!TIP] +> The role and permission required for delegated access using work or school accounts depend on the `requestType` of the request being submitted. +> +> **End-user requests** — `userAdd`, `userUpdate`, `userRemove`, and `approverRemove`: +> - The signed-in user **doesn't need** an administrator role. +> - The least privileged permission is `EntitlementMgmt-SubjectAccess.ReadWrite`. +> - Holding the permission isn't sufficient on its own — whether an end-user can submit a request is also governed by the corresponding accessPackageAssignmentPolicy, which controls who can be assigned to an access package and who can request it (`allowedTargetScope`, `specificAllowedTargets`, and `requestorSettings`). +> +> **Administrator requests** — `adminAdd`, `adminUpdate`, and `adminRemove`: +> - The least privileged permission is `EntitlementManagement.ReadWrite.All`. +> - The signed-in user **must** be assigned a supported administrator role. Supported roles, from least to most privileged: +> - A [role in the Entitlement Management system](/entra/id-governance/entitlement-management-delegate): +> - *Access package assignment manager*. **This is the least privileged option** +> - *Access package manager* +> - *Catalog owner* +> - A more privileged [Microsoft Entra role](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json): +> - *Identity Governance Administrator* +> +> In app-only scenarios, the calling app can be assigned one of the preceding supported roles instead of the `EntitlementManagement.ReadWrite.All` application permission. The *Access package assignment manager* role is less privileged than the `EntitlementManagement.ReadWrite.All` application permission. +> +> For more information, see [Delegation and roles in entitlement management](/entra/id-governance/entitlement-management-delegate) and [how to delegate access governance to access package managers in entitlement management](/entra/id-governance/entitlement-management-delegate-managers). From a33c2b1615e1a3dd803611eb9eaf06877e416c82 Mon Sep 17 00:00:00 2001 From: Jason Johnston Date: Thu, 18 Jun 2026 13:38:21 -0400 Subject: [PATCH 06/52] Restore changelog link validation workflow (#29106) * Offline changelog link scan * Restore changelog link check action --- .github/workflows/changelog-links.yml | 25 ++++++++ changelog/Microsoft.AAD.Reporting.json | 2 +- changelog/Microsoft.Analytics.json | 4 +- .../Microsoft.BusinessExtensibility.json | 10 +-- changelog/Microsoft.CloudManagedDesktop.json | 24 +++---- .../Microsoft.DataClassificationService.json | 4 +- .../Microsoft.DeviceRegistrationPolicies.json | 12 ++-- changelog/Microsoft.DirectoryServices.json | 22 +++---- changelog/Microsoft.EducationAssignment.json | 8 +-- changelog/Microsoft.EducationDataSync.json | 64 +++++++++---------- changelog/Microsoft.EnhancedRestore.json | 6 +- changelog/Microsoft.Exchange.Places.json | 2 +- changelog/Microsoft.Exchange.json | 2 +- changelog/Microsoft.IGAELM.json | 2 +- changelog/Microsoft.M365.XTAP.json | 8 +-- .../Microsoft.MCIEM.PermissionsAnalytics.json | 4 +- changelog/Microsoft.OfficeGraph.json | 8 +-- changelog/Microsoft.People.json | 8 +-- changelog/Microsoft.Search.json | 64 +++++++++---------- changelog/Microsoft.Security.Copilot.json | 10 +-- .../Microsoft.Security.RecordsManagement.json | 20 +++--- changelog/Microsoft.Skype.Calling.json | 12 ++-- changelog/Microsoft.SubscriptionServices.json | 14 ++-- changelog/Microsoft.Teams.GraphSvc.json | 4 +- changelog/Microsoft.Teams.Shifts.json | 4 +- changelog/Microsoft.Todo.json | 2 +- changelog/Microsoft.ZTNA.json | 6 +- 27 files changed, 188 insertions(+), 163 deletions(-) create mode 100644 .github/workflows/changelog-links.yml diff --git a/.github/workflows/changelog-links.yml b/.github/workflows/changelog-links.yml new file mode 100644 index 00000000000..6f66d074e99 --- /dev/null +++ b/.github/workflows/changelog-links.yml @@ -0,0 +1,25 @@ +name: Changelog link validation + +on: + pull_request: + branches: [ main, live ] + +permissions: + pull-requests: write + contents: read + +jobs: + check_pull_request: + name: Check files for broken links + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@v6 + with: + sparse-checkout: | + changelog + - name: Validate files + id: validate + with: + repoToken: ${{ secrets.GITHUB_TOKEN }} + changeLogDirectory: changelog + uses: microsoftgraph/changelog-link-check@v1.0.9 \ No newline at end of file diff --git a/changelog/Microsoft.AAD.Reporting.json b/changelog/Microsoft.AAD.Reporting.json index 15d7eb426b4..2840c3d6c4d 100644 --- a/changelog/Microsoft.AAD.Reporting.json +++ b/changelog/Microsoft.AAD.Reporting.json @@ -821,7 +821,7 @@ "ApiChange": "Resource", "ChangedApiName": "conditionalAccessAudience", "ChangeType": "Addition", - "Description": "Added the [conditionalAccessAudience](https://learn.microsoft.com/en-us/graph/api/resources/conditionalAccessAudience?view=graph-rest-beta) resource.", + "Description": "Added the **conditionalAccessAudience** resource.", "Target": "conditionalAccessAudience" }, { diff --git a/changelog/Microsoft.Analytics.json b/changelog/Microsoft.Analytics.json index 7a89b5780c0..0c0964ed845 100644 --- a/changelog/Microsoft.Analytics.json +++ b/changelog/Microsoft.Analytics.json @@ -33,7 +33,7 @@ "ApiChange": "Resource", "ChangedApiName": "itemInsightsSettings", "ChangeType": "Addition", - "Description": "Added the **itemInsightsSettings** entity and the following operations: [Get itemInsightSettings](https://learn.microsoft.com/en-us/graph/api/iteminsightssettings-get?view=graph-rest-beta), [Update itemInsightSettings](https://learn.microsoft.com/en-us/graph/api/iteminsightssettings-update?view=graph-rest-beta)", + "Description": "Added the **itemInsightsSettings** entity and the following operations: **Get itemInsightSettings**, **Update itemInsightSettings**", "Target": "Get itemInsightSettings,Update itemInsightSettings" } ], @@ -59,7 +59,7 @@ "ApiChange": "Resource", "ChangedApiName": "profileCardProperty", "ChangeType": "Addition", - "Description": "Added the **profileCardProperty** entity and the following operations: [List](https://learn.microsoft.com/en-us/graph/api/organizationsettings-list-profilecardproperties), [Create](https://learn.microsoft.com/en-us/graph/api/organizationsettings-post-profilecardproperties), [Get](https://learn.microsoft.com/en-us/graph/api/profilecardproperty-get?view=graph-rest-beta), [Update](https://learn.microsoft.com/en-us/graph/api/profilecardproperty-update?view=graph-rest-beta), [Delete](https://learn.microsoft.com/en-us/graph/api/profilecardproperty-delete).", + "Description": "Added the **profileCardProperty** entity and the following operations: **List**, **Create**, [Get](https://learn.microsoft.com/en-us/graph/api/profilecardproperty-get?view=graph-rest-beta), [Update](https://learn.microsoft.com/en-us/graph/api/profilecardproperty-update?view=graph-rest-beta), [Delete](https://learn.microsoft.com/en-us/graph/api/profilecardproperty-delete).", "Target": "List,Create,Get,Update,Delete" } ], diff --git a/changelog/Microsoft.BusinessExtensibility.json b/changelog/Microsoft.BusinessExtensibility.json index b26e365273d..7c2cbef7d81 100644 --- a/changelog/Microsoft.BusinessExtensibility.json +++ b/changelog/Microsoft.BusinessExtensibility.json @@ -131,7 +131,7 @@ "ApiChange": "Method", "ChangedApiName": "POST", "ChangeType": "Deletion", - "Description": "Removed the [Create](https://learn.microsoft.com/en-us/graph/api/plannerplanconfiguration-post-localizations?view=graph-rest-beta&tabs=http) method from the [plannerplanconfiguration](https://learn.microsoft.com/en-us/graph/api/resources/plannerplanconfiguration?view=graph-rest-beta) resource.", + "Description": "Removed the **Create** method from the [plannerplanconfiguration](https://learn.microsoft.com/en-us/graph/api/resources/plannerplanconfiguration?view=graph-rest-beta) resource.", "Target": "Plannerplanconfiguration" }, { @@ -139,7 +139,7 @@ "ApiChange": "Method", "ChangedApiName": "POST", "ChangeType": "Deletion", - "Description": "Removed the [Create](https://learn.microsoft.com/en-us/graph/api/plannerplanconfiguration-post-localizations?view=graph-rest-beta&tabs=http) method from the [plannerPlanConfigurationLocalization](https://learn.microsoft.com/en-us/graph/api/resources/plannerplanconfigurationlocalization?view=graph-rest-beta) resource.", + "Description": "Removed the **Create** method from the [plannerPlanConfigurationLocalization](https://learn.microsoft.com/en-us/graph/api/resources/plannerplanconfigurationlocalization?view=graph-rest-beta) resource.", "Target": "plannerPlanConfigurationLocalization" }, { @@ -147,7 +147,7 @@ "ApiChange": "Method", "ChangedApiName": "GET", "ChangeType": "Deletion", - "Description": "Removed the [Get](https://learn.microsoft.com/en-us/graph/api/plannerplanconfigurationlocalization-get?view=graph-rest-beta&tabs=http) from the [plannerPlanConfigurationLocalization](https://learn.microsoft.com/en-us/graph/api/resources/plannerplanconfigurationlocalization?view=graph-rest-beta) resource.", + "Description": "Removed the **Get** from the [plannerPlanConfigurationLocalization](https://learn.microsoft.com/en-us/graph/api/resources/plannerplanconfigurationlocalization?view=graph-rest-beta) resource.", "Target": "plannerPlanConfigurationLocalization" }, { @@ -155,7 +155,7 @@ "ApiChange": "Method", "ChangedApiName": "PATCH", "ChangeType": "Deletion", - "Description": "Removed the [Update](https://learn.microsoft.com/en-us/graph/api/plannerplanconfigurationlocalization-update?view=graph-rest-beta&tabs=http) method from the [plannerPlanConfigurationLocalization](https://learn.microsoft.com/en-us/graph/api/resources/plannerplanconfigurationlocalization?view=graph-rest-beta) resource.", + "Description": "Removed the **Update** method from the [plannerPlanConfigurationLocalization](https://learn.microsoft.com/en-us/graph/api/resources/plannerplanconfigurationlocalization?view=graph-rest-beta) resource.", "Target": "plannerPlanConfigurationLocalization" }, { @@ -163,7 +163,7 @@ "ApiChange": "Method", "ChangedApiName": "DELETE", "ChangeType": "Deletion", - "Description": "Removed the [Delete](https://learn.microsoft.com/en-us/graph/api/plannerplanconfiguration-delete-localizations?view=graph-rest-beta&tabs=http) method from the [plannerPlanConfigurationLocalization](https://learn.microsoft.com/en-us/graph/api/resources/plannerplanconfigurationlocalization?view=graph-rest-beta) resource.", + "Description": "Removed the **Delete** method from the [plannerPlanConfigurationLocalization](https://learn.microsoft.com/en-us/graph/api/resources/plannerplanconfigurationlocalization?view=graph-rest-beta) resource.", "Target": "plannerPlanConfigurationLocalization" } ], diff --git a/changelog/Microsoft.CloudManagedDesktop.json b/changelog/Microsoft.CloudManagedDesktop.json index c88507b0ec9..19fde0c44cd 100644 --- a/changelog/Microsoft.CloudManagedDesktop.json +++ b/changelog/Microsoft.CloudManagedDesktop.json @@ -595,7 +595,7 @@ "ApiChange": "Property", "ChangedApiName": "availabilityZoneRestricted", "ChangeType": "Addition", - "Description": "Added the **availabilityZoneRestricted** property to the [cloudPcSupportedRegionRestrictionDetail](https://learn.microsoft.com/en-us/graph/api/resources/intune-cloudPcSupportedRegionRestrictionDetail?view=graph-rest-beta) resource.", + "Description": "Added the **availabilityZoneRestricted** property to the **cloudPcSupportedRegionRestrictionDetail** resource.", "Target": "cloudPcSupportedRegionRestrictionDetail" } ], @@ -1333,7 +1333,7 @@ "ApiChange": "Resource", "ChangedApiName": "cloudPcSnapshotImportActionResult", "ChangeType": "Addition", - "Description": "Added the [cloudPcSnapshotImportActionResult](https://learn.microsoft.com/en-us/graph/resources/cloudpcsnapshotimportactionresult?view=graph-rest-beta) resource type.", + "Description": "Added the **cloudPcSnapshotImportActionResult** resource type.", "Target": "cloudPcSnapshotImportActionResult" }, { @@ -1341,7 +1341,7 @@ "ApiChange": "Resource", "ChangedApiName": "cloudPcSnapshotImportActionDetail", "ChangeType": "Addition", - "Description": "Added the [cloudPcSnapshotImportActionDetail](https://learn.microsoft.com/en-us/graph/resources/cloudpcsnapshotimportactiondetail?view=graph-rest-beta) resource type.", + "Description": "Added the **cloudPcSnapshotImportActionDetail** resource type.", "Target": "cloudPcSnapshotImportActionDetail" }, { @@ -1349,7 +1349,7 @@ "ApiChange": "Resource", "ChangedApiName": "cloudPcStorageBlobDetail", "ChangeType": "Addition", - "Description": "Added the [cloudPcSnapshotImportActionDetail](https://learn.microsoft.com/en-us/graph/resources/cloudpcstorageblobdetail?view=graph-rest-beta) resource type.", + "Description": "Added the **cloudPcSnapshotImportActionDetail** resource type.", "Target": "cloudPcStorageBlobDetail" }, { @@ -1515,7 +1515,7 @@ "ApiChange": "Property", "ChangedApiName": "osArchitecture", "ChangeType": "Addition", - "Description": "Added the **osArchitecture** property to the [cloudPcDeviceImage](https://learn.microsoft.com/en-us/graph/api/resources/intune-cloudPcDeviceImage?view=graph-rest-beta) resource.", + "Description": "Added the **osArchitecture** property to the **cloudPcDeviceImage** resource.", "Target": "cloudPcDeviceImage" }, { @@ -1523,7 +1523,7 @@ "ApiChange": "Property", "ChangedApiName": "osArchitecture", "ChangeType": "Addition", - "Description": "Added the **osArchitecture** property to the [cloudPcGalleryImage](https://learn.microsoft.com/en-us/graph/api/resources/intune-cloudPcGalleryImage?view=graph-rest-beta) resource.", + "Description": "Added the **osArchitecture** property to the **cloudPcGalleryImage** resource.", "Target": "cloudPcGalleryImage" } ], @@ -1861,7 +1861,7 @@ "ApiChange": "Property", "ChangedApiName": "geographicLocationType", "ChangeType": "Addition", - "Description": "Added the **geographicLocationType** property to the [cloudPcDomainJoinConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/intune-cloudPcDomainJoinConfiguration?view=graph-rest-beta) resource.", + "Description": "Added the **geographicLocationType** property to the **cloudPcDomainJoinConfiguration** resource.", "Target": "cloudPcDomainJoinConfiguration" }, { @@ -1869,7 +1869,7 @@ "ApiChange": "Property", "ChangedApiName": "geographicLocationType", "ChangeType": "Addition", - "Description": "Added the **geographicLocationType** property to the [cloudPcSupportedRegion](https://learn.microsoft.com/en-us/graph/api/resources/intune-cloudPcSupportedRegion?view=graph-rest-beta) resource.", + "Description": "Added the **geographicLocationType** property to the **cloudPcSupportedRegion** resource.", "Target": "cloudPcSupportedRegion" } ], @@ -2331,7 +2331,7 @@ "ApiChange": "Property", "ChangedApiName": "endDateTime", "ChangeType": "Addition", - "Description": "Added the **endDateTime** property to the [cloudPcPolicyScheduledApplyActionDetail](https://learn.microsoft.com/en-us/graph/api/resources/intune-cloudPcPolicyScheduledApplyActionDetail?view=graph-rest-beta) resource.", + "Description": "Added the **endDateTime** property to the **cloudPcPolicyScheduledApplyActionDetail** resource.", "Target": "cloudPcPolicyScheduledApplyActionDetail" }, { @@ -2339,7 +2339,7 @@ "ApiChange": "Property", "ChangedApiName": "nextRunDateTime", "ChangeType": "Addition", - "Description": "Added the **nextRunDateTime** property to the [cloudPcPolicyScheduledApplyActionDetail](https://learn.microsoft.com/en-us/graph/api/resources/intune-cloudPcPolicyScheduledApplyActionDetail?view=graph-rest-beta) resource.", + "Description": "Added the **nextRunDateTime** property to the **cloudPcPolicyScheduledApplyActionDetail** resource.", "Target": "cloudPcPolicyScheduledApplyActionDetail" }, { @@ -2347,7 +2347,7 @@ "ApiChange": "Property", "ChangedApiName": "startDateTime", "ChangeType": "Addition", - "Description": "Added the **startDateTime** property to the [cloudPcPolicyScheduledApplyActionDetail](https://learn.microsoft.com/en-us/graph/api/resources/intune-cloudPcPolicyScheduledApplyActionDetail?view=graph-rest-beta) resource.", + "Description": "Added the **startDateTime** property to the **cloudPcPolicyScheduledApplyActionDetail** resource.", "Target": "cloudPcPolicyScheduledApplyActionDetail" }, { @@ -2355,7 +2355,7 @@ "ApiChange": "Property", "ChangedApiName": "timezone", "ChangeType": "Addition", - "Description": "Added the **timezone** property to the [cloudPcPolicyScheduledApplyActionDetail](https://learn.microsoft.com/en-us/graph/api/resources/intune-cloudPcPolicyScheduledApplyActionDetail?view=graph-rest-beta) resource.", + "Description": "Added the **timezone** property to the **cloudPcPolicyScheduledApplyActionDetail** resource.", "Target": "cloudPcPolicyScheduledApplyActionDetail" } ], diff --git a/changelog/Microsoft.DataClassificationService.json b/changelog/Microsoft.DataClassificationService.json index 675b725179d..4a431e1e39b 100644 --- a/changelog/Microsoft.DataClassificationService.json +++ b/changelog/Microsoft.DataClassificationService.json @@ -949,7 +949,7 @@ "ApiChange": "Method", "ChangedApiName": "computeRightsAndInheritance", "ChangeType": "Addition", - "Description": "Added the [computeRightsAndInheritance](https://learn.microsoft.com/en-us/graph/api/sensitivityLabel-computeRightsAndInheritance?view=graph-rest-1.0) method to the [sensitivityLabel](https://learn.microsoft.com/en-us/graph/api/resources/sensitivityLabel?view=graph-rest-1.0) resource.", + "Description": "Added the [computeRightsAndInheritance](https://learn.microsoft.com/en-us/graph/api/sensitivityLabel-computeRightsAndInheritance?view=graph-rest-1.0) method to the **sensitivityLabel** resource.", "Target": "sensitivityLabel" }, { @@ -973,7 +973,7 @@ "ApiChange": "Method", "ChangedApiName": "computeInheritance", "ChangeType": "Addition", - "Description": "Added the [computeInheritance](https://learn.microsoft.com/en-us/graph/api/sensitivityLabel-computeInheritance?view=graph-rest-1.0) method to the [sensitivityLabel](https://learn.microsoft.com/en-us/graph/api/resources/sensitivityLabel?view=graph-rest-1.0) resource.", + "Description": "Added the [computeInheritance](https://learn.microsoft.com/en-us/graph/api/sensitivityLabel-computeInheritance?view=graph-rest-1.0) method to the **sensitivityLabel** resource.", "Target": "sensitivityLabel" }, { diff --git a/changelog/Microsoft.DeviceRegistrationPolicies.json b/changelog/Microsoft.DeviceRegistrationPolicies.json index 9d97b0ba067..a26b30b5731 100644 --- a/changelog/Microsoft.DeviceRegistrationPolicies.json +++ b/changelog/Microsoft.DeviceRegistrationPolicies.json @@ -147,7 +147,7 @@ "ApiChange": "Property", "ChangedApiName": "allowedGroups", "ChangeType": "Deletion", - "Description": "Removed the `allowedGroups` property from the [azureADJoinPolicy](https://learn.microsoft.com/en-us/graph/api/resources/azureADJoinPolicy?view=graph-rest-beta) resource. For more information about this change, see the announcement [Important: Update to deviceRegistrationPolicy resource type](https://techcommunity.microsoft.com/t5/microsoft-entra-azure-ad-blog/important-update-to-deviceregistrationpolicy-resource-type-for/ba-p/3912000).", + "Description": "Removed the `allowedGroups` property from the [azureADJoinPolicy](https://learn.microsoft.com/en-us/graph/api/resources/azureADJoinPolicy?view=graph-rest-beta) resource. For more information about this change, see the announcement **Important: Update to deviceRegistrationPolicy resource type**.", "Target": "azureADJoinPolicy" }, { @@ -163,7 +163,7 @@ "ApiChange": "Property", "ChangedApiName": "allowedUsers", "ChangeType": "Deletion", - "Description": "Removed the `allowedUsers` property from the [azureADJoinPolicy](https://learn.microsoft.com/en-us/graph/api/resources/azureADJoinPolicy?view=graph-rest-beta) resource. For more information about this change, see the announcement [Important: Update to deviceRegistrationPolicy resource type](https://techcommunity.microsoft.com/t5/microsoft-entra-azure-ad-blog/important-update-to-deviceregistrationpolicy-resource-type-for/ba-p/3912000).", + "Description": "Removed the `allowedUsers` property from the [azureADJoinPolicy](https://learn.microsoft.com/en-us/graph/api/resources/azureADJoinPolicy?view=graph-rest-beta) resource. For more information about this change, see the announcement **Important: Update to deviceRegistrationPolicy resource type**.", "Target": "azureADJoinPolicy" }, { @@ -171,7 +171,7 @@ "ApiChange": "Property", "ChangedApiName": "appliesTo", "ChangeType": "Deletion", - "Description": "Removed the `appliesTo` property from the [azureADJoinPolicy](https://learn.microsoft.com/en-us/graph/api/resources/azureADJoinPolicy?view=graph-rest-beta) resource. For more information about this change, see the announcement [Important: Update to deviceRegistrationPolicy resource type](https://techcommunity.microsoft.com/t5/microsoft-entra-azure-ad-blog/important-update-to-deviceregistrationpolicy-resource-type-for/ba-p/3912000).", + "Description": "Removed the `appliesTo` property from the [azureADJoinPolicy](https://learn.microsoft.com/en-us/graph/api/resources/azureADJoinPolicy?view=graph-rest-beta) resource. For more information about this change, see the announcement **Important: Update to deviceRegistrationPolicy resource type**.", "Target": "azureADJoinPolicy" }, { @@ -179,7 +179,7 @@ "ApiChange": "Property", "ChangedApiName": "allowedGroups", "ChangeType": "Deletion", - "Description": "Removed the `allowedGroups` property from the [azureADRegistrationPolicy](https://learn.microsoft.com/en-us/graph/api/resources/azureADRegistrationPolicy?view=graph-rest-beta) resource. For more information about this change, see the announcement [Important: Update to deviceRegistrationPolicy resource type](https://techcommunity.microsoft.com/t5/microsoft-entra-azure-ad-blog/important-update-to-deviceregistrationpolicy-resource-type-for/ba-p/3912000).", + "Description": "Removed the `allowedGroups` property from the [azureADRegistrationPolicy](https://learn.microsoft.com/en-us/graph/api/resources/azureADRegistrationPolicy?view=graph-rest-beta) resource. For more information about this change, see the announcement **Important: Update to deviceRegistrationPolicy resource type**.", "Target": "azureADRegistrationPolicy" }, { @@ -195,7 +195,7 @@ "ApiChange": "Property", "ChangedApiName": "allowedUsers", "ChangeType": "Deletion", - "Description": "Removed the `allowedUsers` property from the [azureADRegistrationPolicy](https://learn.microsoft.com/en-us/graph/api/resources/azureADRegistrationPolicy?view=graph-rest-beta) resource. For more information about this change, see the announcement [Important: Update to deviceRegistrationPolicy resource type](https://techcommunity.microsoft.com/t5/microsoft-entra-azure-ad-blog/important-update-to-deviceregistrationpolicy-resource-type-for/ba-p/3912000).", + "Description": "Removed the `allowedUsers` property from the [azureADRegistrationPolicy](https://learn.microsoft.com/en-us/graph/api/resources/azureADRegistrationPolicy?view=graph-rest-beta) resource. For more information about this change, see the announcement **Important: Update to deviceRegistrationPolicy resource type**.", "Target": "azureADRegistrationPolicy" }, { @@ -203,7 +203,7 @@ "ApiChange": "Property", "ChangedApiName": "appliesTo", "ChangeType": "Deletion", - "Description": "Removed the `appliesTo` property from the [azureADRegistrationPolicy](https://learn.microsoft.com/en-us/graph/api/resources/azureADRegistrationPolicy?view=graph-rest-beta) resource. For more information about this change, see the announcement [Important: Update to deviceRegistrationPolicy resource type](https://techcommunity.microsoft.com/t5/microsoft-entra-azure-ad-blog/important-update-to-deviceregistrationpolicy-resource-type-for/ba-p/3912000).", + "Description": "Removed the `appliesTo` property from the [azureADRegistrationPolicy](https://learn.microsoft.com/en-us/graph/api/resources/azureADRegistrationPolicy?view=graph-rest-beta) resource. For more information about this change, see the announcement **Important: Update to deviceRegistrationPolicy resource type**.", "Target": "azureADRegistrationPolicy" }, { diff --git a/changelog/Microsoft.DirectoryServices.json b/changelog/Microsoft.DirectoryServices.json index 82c3c71f162..0581e8855af 100644 --- a/changelog/Microsoft.DirectoryServices.json +++ b/changelog/Microsoft.DirectoryServices.json @@ -999,7 +999,7 @@ "ApiChange": "Method", "ChangedApiName": "restore", "ChangeType": "Addition", - "Description": "Added the [restore](https://learn.microsoft.com/en-us/graph/api/crossTenantAccessPolicyConfigurationDomainBasedPartner-restore?view=graph-rest-beta) method to the [crossTenantAccessPolicyConfigurationDomainBasedPartner](https://learn.microsoft.com/en-us/graph/api/resources/crossTenantAccessPolicyConfigurationDomainBasedPartner?view=graph-rest-beta) resource.", + "Description": "Added the **restore** method to the **crossTenantAccessPolicyConfigurationDomainBasedPartner** resource.", "Target": "crossTenantAccessPolicyConfigurationDomainBasedPartner" }, { @@ -1023,7 +1023,7 @@ "ApiChange": "Method", "ChangedApiName": "restore", "ChangeType": "Addition", - "Description": "Added the [restore](https://learn.microsoft.com/en-us/graph/api/serviceProviderConstraints-restore?view=graph-rest-beta) method to the [serviceProviderConstraints](https://learn.microsoft.com/en-us/graph/api/resources/serviceProviderConstraints?view=graph-rest-beta) resource.", + "Description": "Added the **restore** method to the **serviceProviderConstraints** resource.", "Target": "serviceProviderConstraints" } ], @@ -10177,7 +10177,7 @@ "ApiChange": "Resource", "ChangedApiName": "acceptRecommendations, applyDecisions, get, list, list pendingAccessReviewInstances, sendReminder, stop", "ChangeType": "Addition", - "Description": "Added the [acceptRecommendations](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-acceptrecommendations?view=graph-rest-1.0), [applyDecisions](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-applydecisions?view=graph-rest-1.0), [get](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-get?view=graph-rest-1.0), [list](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-list?view=graph-rest-1.0), [list pendingAccessReviewInstances](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-pendingaccessreviewinstances?view=graph-rest-1.0), [sendReminder](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-sendreminder?view=graph-rest-1.0), [stop](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-stop?view=graph-rest-1.0) methods to the [accessReviewInstance](https://learn.microsoft.com/en-us/graph/api/resources/accessReviewInstance?view=graph-rest-1.0) resource.", + "Description": "Added the [acceptRecommendations](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-acceptrecommendations?view=graph-rest-1.0), [applyDecisions](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-applydecisions?view=graph-rest-1.0), [get](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-get?view=graph-rest-1.0), **list**, [list pendingAccessReviewInstances](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-pendingaccessreviewinstances?view=graph-rest-1.0), [sendReminder](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-sendreminder?view=graph-rest-1.0), [stop](https://learn.microsoft.com/en-us/graph/api/accessreviewinstance-stop?view=graph-rest-1.0) methods to the [accessReviewInstance](https://learn.microsoft.com/en-us/graph/api/resources/accessReviewInstance?view=graph-rest-1.0) resource.", "Target": "accessReviewInstance" }, { @@ -10185,7 +10185,7 @@ "ApiChange": "Resource", "ChangedApiName": "list, list pendingApproval, update", "ChangeType": "Addition", - "Description": "Added the [list](https://learn.microsoft.com/en-us/graph/api/accessreviewinstancedecisionitem-list?view=graph-rest-1.0), [list pendingApproval](https://learn.microsoft.com/en-us/graph/api/accessreviewinstancedecisionitem-listpendingapproval?view=graph-rest-1.0), [update](https://learn.microsoft.com/en-us/graph/api/accessreviewinstancedecisionitem-update?view=graph-rest-1.0) methods to the [accessReviewInstanceDecisionItem](https://learn.microsoft.com/en-us/graph/api/resources/accessreviewinstancedecisionitem?view=graph-rest-1.0) resource.", + "Description": "Added the **list**, [list pendingApproval](https://learn.microsoft.com/en-us/graph/api/accessreviewinstancedecisionitem-listpendingapproval?view=graph-rest-1.0), [update](https://learn.microsoft.com/en-us/graph/api/accessreviewinstancedecisionitem-update?view=graph-rest-1.0) methods to the [accessReviewInstanceDecisionItem](https://learn.microsoft.com/en-us/graph/api/resources/accessreviewinstancedecisionitem?view=graph-rest-1.0) resource.", "Target": "accessReviewInstanceDecisionItem" }, { @@ -10193,7 +10193,7 @@ "ApiChange": "Resource", "ChangedApiName": "create, delete, get, list, update", "ChangeType": "Addition", - "Description": "Added the [create](https://learn.microsoft.com/en-us/graph/api/accessreviewset-post-definitions?view=graph-rest-1.0), [delete](https://learn.microsoft.com/en-us/graph/api/accessreviewscheduledefinition-delete?view=graph-rest-1.0), [get](https://learn.microsoft.com/en-us/graph/api/accessreviewscheduledefinition-get?view=graph-rest-1.0), [list](https://learn.microsoft.com/en-us/graph/api/accessreviewscheduledefinition-list?view=graph-rest-1.0), [update](https://learn.microsoft.com/en-us/graph/api/accessreviewscheduledefinition-update?view=graph-rest-1.0) methods to the [accessReviewScheduleDefinition](https://learn.microsoft.com/en-us/graph/api/resources/accessreviewscheduledefinition?view=graph-rest-1.0) resource.", + "Description": "Added the [create](https://learn.microsoft.com/en-us/graph/api/accessreviewset-post-definitions?view=graph-rest-1.0), [delete](https://learn.microsoft.com/en-us/graph/api/accessreviewscheduledefinition-delete?view=graph-rest-1.0), [get](https://learn.microsoft.com/en-us/graph/api/accessreviewscheduledefinition-get?view=graph-rest-1.0), **list**, [update](https://learn.microsoft.com/en-us/graph/api/accessreviewscheduledefinition-update?view=graph-rest-1.0) methods to the [accessReviewScheduleDefinition](https://learn.microsoft.com/en-us/graph/api/resources/accessreviewscheduledefinition?view=graph-rest-1.0) resource.", "Target": "accessReviewScheduleDefinition" } ], @@ -10987,7 +10987,7 @@ "ApiChange": "Resource", "ChangedApiName": "provisionOnDemand,synchronizationJob", "ChangeType": "Addition", - "Description": "Added the [provisionOnDemand](https://learn.microsoft.com/en-us/graph/api/synchronization-synchronizationjob-provision-on-demand?view=graph-rest-beta) method to the [synchronizationJob](https://learn.microsoft.com/en-us/graph/api/resources/synchronization-synchronizationJob?view=graph-rest-beta) resource", + "Description": "Added the **provisionOnDemand** method to the [synchronizationJob](https://learn.microsoft.com/en-us/graph/api/resources/synchronization-synchronizationJob?view=graph-rest-beta) resource", "Target": "provisionOnDemand,synchronizationJob" } ], @@ -11119,7 +11119,7 @@ "ApiChange": "Property", "ChangedApiName": "userPurpose", "ChangeType": "Addition", - "Description": "Added the new **userPurpose** property to [mailboxSettings](https://learn.microsoft.com/en-us/graph/api/resources/mailboxsettings?view=graph-rest-beta). See [userPurpose resource type](https://learn.microsoft.com/en-us/graph/api/resources/userPurpose?view=graph-rest-beta) for information on the supported use cases.", + "Description": "Added the new **userPurpose** property to [mailboxSettings](https://learn.microsoft.com/en-us/graph/api/resources/mailboxsettings?view=graph-rest-beta). See **userPurpose resource type** for information on the supported use cases.", "Target": "mailboxSettings,userPurpose resource type" }, { @@ -11127,7 +11127,7 @@ "ApiChange": "Resource", "ChangedApiName": "userPurpose", "ChangeType": "Addition", - "Description": "Added new [userPurpose](https://learn.microsoft.com/en-us/graph/api/resources/userPurpose?view=graph-rest-beta) complex type.", + "Description": "Added new **userPurpose** complex type.", "Target": "userPurpose" } ], @@ -12763,7 +12763,7 @@ "ApiChange": "Resource", "ChangedApiName": "appleIdentityProvider", "ChangeType": "Addition", - "Description": "To support configuring an Apple identity provider in Azure AD B2C tenant, introduced new resource type [appleIdentityProvider](https://learn.microsoft.com/en-us/graph/api/resources/appleidentityprovider?view=graph-rest-beta) entity.", + "Description": "To support configuring an Apple identity provider in Azure AD B2C tenant, introduced new resource type **appleIdentityProvider** entity.", "Target": "appleIdentityProvider" }, { @@ -12795,7 +12795,7 @@ "ApiChange": "Method", "ChangedApiName": "identityProviderBase", "ChangeType": "Addition", - "Description": "To support creating identity providers in an Azure AD and Azure AD B2C tenant, introduced [post](https://learn.microsoft.com/en-us/graph/api/identityproviderbase-post-identityproviders?view=graph-rest-beta) operation.", + "Description": "To support creating identity providers in an Azure AD and Azure AD B2C tenant, introduced **post** operation.", "Target": "identityProviderBase" }, { @@ -12803,7 +12803,7 @@ "ApiChange": "Method", "ChangedApiName": "identityProviderBase", "ChangeType": "Addition", - "Description": "To support listing all identity provider configurations in an Azure AD and Azure AD B2C tenant, introduced [list](https://learn.microsoft.com/en-us/graph/api/identityproviderbase-list?view=graph-rest-beta) operation.", + "Description": "To support listing all identity provider configurations in an Azure AD and Azure AD B2C tenant, introduced **list** operation.", "Target": "identityProviderBase" }, { diff --git a/changelog/Microsoft.EducationAssignment.json b/changelog/Microsoft.EducationAssignment.json index 371fc78dd9b..4a95f11e9d2 100644 --- a/changelog/Microsoft.EducationAssignment.json +++ b/changelog/Microsoft.EducationAssignment.json @@ -724,7 +724,7 @@ "ApiChange": "Method", "ChangedApiName": "GET", "ChangeType": "Addition", - "Description": "Added the [list](https://learn.microsoft.com/graph/api/educationassignment-list-gradingcategory?view=graph-rest-1.0) operation to the [educationAssignment](https://learn.microsoft.com/en-us/graph/api/resources/educationAssignment?view=graph-rest-1.0) resource.", + "Description": "Added the **list** operation to the [educationAssignment](https://learn.microsoft.com/en-us/graph/api/resources/educationAssignment?view=graph-rest-1.0) resource.", "Target": "educationAssignment" }, { @@ -756,7 +756,7 @@ "ApiChange": "Method", "ChangedApiName": "GET", "ChangeType": "Addition", - "Description": "Added the [list](https://learn.microsoft.com/graph/api/educationassignment-list-gradingcategory?view=graph-rest-1.0) operation to the [educationAssignmentSettings](https://learn.microsoft.com/en-us/graph/api/resources/educationassignmentsettings?view=graph-rest-1.0) resource.", + "Description": "Added the **list** operation to the [educationAssignmentSettings](https://learn.microsoft.com/en-us/graph/api/resources/educationassignmentsettings?view=graph-rest-1.0) resource.", "Target": "educationAssignmentSettings" }, { @@ -1138,7 +1138,7 @@ "ApiChange": "Method", "ChangedApiName": "GET", "ChangeType": "Addition", - "Description": "Added the [list](https://learn.microsoft.com/graph/api/educationassignment-list-gradingcategory?view=graph-rest-beta) operation to the [educationAssignment](https://learn.microsoft.com/en-us/graph/api/resources/educationAssignment?view=graph-rest-beta) resource.", + "Description": "Added the **list** operation to the [educationAssignment](https://learn.microsoft.com/en-us/graph/api/resources/educationAssignment?view=graph-rest-beta) resource.", "Target": "educationAssignment" }, { @@ -1170,7 +1170,7 @@ "ApiChange": "Method", "ChangedApiName": "GET", "ChangeType": "Addition", - "Description": "Added the [list](https://learn.microsoft.com/graph/api/educationassignment-list-gradingcategory?view=graph-rest-beta) operation to the [educationAssignmentSettings](https://learn.microsoft.com/en-us/graph/api/resources/educationassignmentsettings?view=graph-rest-beta) resource.", + "Description": "Added the **list** operation to the [educationAssignmentSettings](https://learn.microsoft.com/en-us/graph/api/resources/educationassignmentsettings?view=graph-rest-beta) resource.", "Target": "educationAssignmentSettings" }, { diff --git a/changelog/Microsoft.EducationDataSync.json b/changelog/Microsoft.EducationDataSync.json index 018146b34f0..5c9609cf1de 100644 --- a/changelog/Microsoft.EducationDataSync.json +++ b/changelog/Microsoft.EducationDataSync.json @@ -7,7 +7,7 @@ "ApiChange": "Permission", "ChangedApiName": "educationSynchronizationProfileList", "ChangeType": "Addition", - "Description": "Added support for application permissions to the [educationSynchronizationProfileList](https://learn.microsoft.com/en-us/graph/api/educationsynchronizationprofile-list?view=graph-rest-beta) resource.", + "Description": "Added support for application permissions to the **educationSynchronizationProfileList** resource.", "Target": "educationSynchronizationProfileList" }, { @@ -15,7 +15,7 @@ "ApiChange": "Permission", "ChangedApiName": "educationSynchronizationProfilePause", "ChangeType": "Addition", - "Description": "Added support for application permissions to the [educationSynchronizationProfilePause](https://learn.microsoft.com/en-us/graph/api/educationsynchronizationprofile-pause?view=graph-rest-beta) resource.", + "Description": "Added support for application permissions to the **educationSynchronizationProfilePause** resource.", "Target": "educationSynchronizationProfilePause" }, { @@ -23,7 +23,7 @@ "ApiChange": "Permission", "ChangedApiName": "educationSynchronizationProfileReset", "ChangeType": "Addition", - "Description": "Added support for application permissions to the [educationSynchronizationProfileReset](https://learn.microsoft.com/en-us/graph/api/educationsynchronizationprofile-reset?view=graph-rest-beta) resource.", + "Description": "Added support for application permissions to the **educationSynchronizationProfileReset** resource.", "Target": "educationSynchronizationProfileReset" }, { @@ -31,7 +31,7 @@ "ApiChange": "Permission", "ChangedApiName": "educationSynchronizationProfileResume", "ChangeType": "Addition", - "Description": "Added support for application permissions to the [educationSynchronizationProfileResume](https://learn.microsoft.com/en-us/graph/api/educationsynchronizationprofile-resume?view=graph-rest-beta) resource.", + "Description": "Added support for application permissions to the **educationSynchronizationProfileResume** resource.", "Target": "educationSynchronizationProfileResume" }, { @@ -39,7 +39,7 @@ "ApiChange": "Permission", "ChangedApiName": "educationSynchronizationProfileStart", "ChangeType": "Addition", - "Description": "Added support for application permissions to the [educationSynchronizationProfileStart](https://learn.microsoft.com/en-us/graph/api/educationsynchronizationprofile-start?view=graph-rest-beta) resource.", + "Description": "Added support for application permissions to the **educationSynchronizationProfileStart** resource.", "Target": "educationSynchronizationProfileStart" }, { @@ -47,7 +47,7 @@ "ApiChange": "Permission", "ChangedApiName": "educationSynchronizationProfileUploadUrl", "ChangeType": "Addition", - "Description": "Added support for application permissions to the [educationSynchronizationProfileUploadUrl](https://learn.microsoft.com/en-us/graph/api/educationsynchronizationprofile-uploadurl?view=graph-rest-beta) resource.", + "Description": "Added support for application permissions to the **educationSynchronizationProfileUploadUrl** resource.", "Target": "educationSynchronizationProfileUploadUrl" } ], @@ -65,7 +65,7 @@ "ApiChange": "Property", "ChangedApiName": "errorCount", "ChangeType": "Addition", - "Description": "Added new property **errorCount** to the [educationsynchronizationprofilestatus](https://learn.microsoft.com/en-us/graph/api/resources/educationsynchronizationprofilestatus?view=graph-rest-beta) resource.", + "Description": "Added new property **errorCount** to the **educationsynchronizationprofilestatus** resource.", "Target": "educationsynchronizationprofilestatus" }, { @@ -73,7 +73,7 @@ "ApiChange": "Property", "ChangedApiName": "statusMessage", "ChangeType": "Addition", - "Description": "Added new property **statusMessage** to the [educationsynchronizationprofilestatus](https://learn.microsoft.com/en-us/graph/api/resources/educationsynchronizationprofilestatus?view=graph-rest-beta) resource.", + "Description": "Added new property **statusMessage** to the **educationsynchronizationprofilestatus** resource.", "Target": "educationsynchronizationprofilestatus" }, { @@ -131,7 +131,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationCsvDataProvider", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationCsvDataProvider](https://learn.microsoft.com/en-us/graph/api/resources/educationCsvDataProvider?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationCsvDataProvider** resource.", "Target": "educationCsvDataProvider" }, { @@ -139,7 +139,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationFileSynchronizationVerificationMessage", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationFileSynchronizationVerificationMessage](https://learn.microsoft.com/en-us/graph/api/resources/educationFileSynchronizationVerificationMessage?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationFileSynchronizationVerificationMessage** resource.", "Target": "educationFileSynchronizationVerificationMessage" }, { @@ -147,7 +147,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationIdentityCreationConfiguration", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationIdentityCreationConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/educationIdentityCreationConfiguration?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationIdentityCreationConfiguration** resource.", "Target": "educationIdentityCreationConfiguration" }, { @@ -155,7 +155,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationIdentityDomain", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationIdentityDomain](https://learn.microsoft.com/en-us/graph/api/resources/educationIdentityDomain?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationIdentityDomain** resource.", "Target": "educationIdentityDomain" }, { @@ -163,7 +163,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationIdentityMatchingConfiguration", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationIdentityMatchingConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/educationIdentityMatchingConfiguration?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationIdentityMatchingConfiguration** resource.", "Target": "educationIdentityMatchingConfiguration" }, { @@ -171,7 +171,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationIdentityMatchingOptions", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationIdentityMatchingOptions](https://learn.microsoft.com/en-us/graph/api/resources/educationIdentityMatchingOptions?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationIdentityMatchingOptions** resource.", "Target": "educationIdentityMatchingOptions" }, { @@ -179,7 +179,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationIdentitySynchronizationConfiguration", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationIdentitySynchronizationConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/educationIdentitySynchronizationConfiguration?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationIdentitySynchronizationConfiguration** resource.", "Target": "educationIdentitySynchronizationConfiguration" }, { @@ -187,7 +187,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationOneRosterApiDataProvider", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationOneRosterApiDataProvider](https://learn.microsoft.com/en-us/graph/api/resources/educationOneRosterApiDataProvider?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationOneRosterApiDataProvider** resource.", "Target": "educationOneRosterApiDataProvider" }, { @@ -195,7 +195,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationPowerSchoolDataProvider", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationPowerSchoolDataProvider](https://learn.microsoft.com/en-us/graph/api/resources/educationPowerSchoolDataProvider?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationPowerSchoolDataProvider** resource.", "Target": "educationPowerSchoolDataProvider" }, { @@ -203,7 +203,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationSynchronizationConnectionSettings", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationSynchronizationConnectionSettings](https://learn.microsoft.com/en-us/graph/api/resources/educationSynchronizationConnectionSettings?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationSynchronizationConnectionSettings** resource.", "Target": "educationSynchronizationConnectionSettings" }, { @@ -211,7 +211,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationSynchronizationCustomization", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationSynchronizationCustomization](https://learn.microsoft.com/en-us/graph/api/resources/educationSynchronizationCustomization?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationSynchronizationCustomization** resource.", "Target": "educationSynchronizationCustomization" }, { @@ -219,7 +219,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationSynchronizationCustomizations", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationSynchronizationCustomizations](https://learn.microsoft.com/en-us/graph/api/resources/educationSynchronizationCustomizations?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationSynchronizationCustomizations** resource.", "Target": "educationSynchronizationCustomizations" }, { @@ -227,7 +227,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationSynchronizationDataProvider", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationSynchronizationDataProvider](https://learn.microsoft.com/en-us/graph/api/resources/educationSynchronizationDataProvider?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationSynchronizationDataProvider** resource.", "Target": "educationSynchronizationDataProvider" }, { @@ -235,7 +235,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationSynchronizationError", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationSynchronizationError](https://learn.microsoft.com/en-us/graph/api/resources/educationsynchronizationerror?view=graph-rest-beta) resource and a supported method.", + "Description": "Deprecated the **educationSynchronizationError** resource and a supported method.", "Target": "educationSynchronizationError" }, { @@ -243,7 +243,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationSynchronizationLicenseAssignment", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationSynchronizationLicenseAssignment](https://learn.microsoft.com/en-us/graph/api/resources/educationSynchronizationLicenseAssignment?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationSynchronizationLicenseAssignment** resource.", "Target": "educationSynchronizationLicenseAssignment" }, { @@ -251,7 +251,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationSynchronizationOAuth1ConnectionSettings", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationSynchronizationOAuth1ConnectionSettings](https://learn.microsoft.com/en-us/graph/api/resources/educationSynchronizationOAuth1ConnectionSettings?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationSynchronizationOAuth1ConnectionSettings** resource.", "Target": "educationSynchronizationOAuth1ConnectionSettings" }, { @@ -259,7 +259,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationSynchronizationOAuth2ClientCredentialsConnectionSettings", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationSynchronizationOAuth2ClientCredentialsConnectionSettings](https://learn.microsoft.com/en-us/graph/api/resources/educationSynchronizationOAuth2ClientCredentialsConnectionSettings?view=graph-rest-beta) resource.", + "Description": "Deprecated the **educationSynchronizationOAuth2ClientCredentialsConnectionSettings** resource.", "Target": "educationSynchronizationOAuth2ClientCredentialsConnectionSettings" }, { @@ -267,7 +267,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationSynchronizationProfile", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationSynchronizationProfile](https://learn.microsoft.com/en-us/graph/api/resources/educationsynchronizationprofile?view=graph-rest-beta) resource along with its supported methods and operations.", + "Description": "Deprecated the **educationSynchronizationProfile** resource along with its supported methods and operations.", "Target": "educationSynchronizationProfile" }, { @@ -275,7 +275,7 @@ "ApiChange": "Resource", "ChangedApiName": "educationSynchronizationProfileStatus", "ChangeType": "Deprecation", - "Description": "Deprecated the [educationSynchronizationProfileStatus](https://learn.microsoft.com/en-us/graph/api/resources/educationsynchronizationprofileStatus?view=graph-rest-beta) resource and a supported method.", + "Description": "Deprecated the **educationSynchronizationProfileStatus** resource and a supported method.", "Target": "educationSynchronizationProfileStatus" }, { @@ -485,7 +485,7 @@ "ApiChange": "Method", "ChangedApiName": "pause", "ChangeType": "Deletion", - "Description": "Removed the **pause** method from the [educationSynchronizationProfile](https://learn.microsoft.com/en-us/graph/api/resources/educationSynchronizationProfile?view=graph-rest-beta) resource.", + "Description": "Removed the **pause** method from the **educationSynchronizationProfile** resource.", "Target": "educationSynchronizationProfile" }, { @@ -493,7 +493,7 @@ "ApiChange": "Method", "ChangedApiName": "reset", "ChangeType": "Deletion", - "Description": "Removed the **reset** method from the [educationSynchronizationProfile](https://learn.microsoft.com/en-us/graph/api/resources/educationSynchronizationProfile?view=graph-rest-beta) resource.", + "Description": "Removed the **reset** method from the **educationSynchronizationProfile** resource.", "Target": "educationSynchronizationProfile" }, { @@ -501,7 +501,7 @@ "ApiChange": "Method", "ChangedApiName": "resume", "ChangeType": "Deletion", - "Description": "Removed the **resume** method from the [educationSynchronizationProfile](https://learn.microsoft.com/en-us/graph/api/resources/educationSynchronizationProfile?view=graph-rest-beta) resource.", + "Description": "Removed the **resume** method from the **educationSynchronizationProfile** resource.", "Target": "educationSynchronizationProfile" }, { @@ -509,7 +509,7 @@ "ApiChange": "Method", "ChangedApiName": "start", "ChangeType": "Deletion", - "Description": "Removed the **start** method from the [educationSynchronizationProfile](https://learn.microsoft.com/en-us/graph/api/resources/educationSynchronizationProfile?view=graph-rest-beta) resource.", + "Description": "Removed the **start** method from the **educationSynchronizationProfile** resource.", "Target": "educationSynchronizationProfile" }, { @@ -517,7 +517,7 @@ "ApiChange": "Method", "ChangedApiName": "uploadUrl", "ChangeType": "Deletion", - "Description": "Removed the **uploadUrl** method from the [educationSynchronizationProfile](https://learn.microsoft.com/en-us/graph/api/resources/educationSynchronizationProfile?view=graph-rest-beta) resource.", + "Description": "Removed the **uploadUrl** method from the **educationSynchronizationProfile** resource.", "Target": "educationSynchronizationProfile" } ], diff --git a/changelog/Microsoft.EnhancedRestore.json b/changelog/Microsoft.EnhancedRestore.json index 9d46ed50585..a9aecf4095a 100644 --- a/changelog/Microsoft.EnhancedRestore.json +++ b/changelog/Microsoft.EnhancedRestore.json @@ -219,7 +219,7 @@ "ApiChange": "Method", "ChangedApiName": "browse", "ChangeType": "Addition", - "Description": "Added the [browse](https://learn.microsoft.com/en-us/graph/api/browseSessionBase-browse?view=graph-rest-1.0) method to the [browseSessionBase](https://learn.microsoft.com/en-us/graph/api/resources/browseSessionBase?view=graph-rest-1.0) resource.", + "Description": "Added the **browse** method to the [browseSessionBase](https://learn.microsoft.com/en-us/graph/api/resources/browseSessionBase?view=graph-rest-1.0) resource.", "Target": "browseSessionBase" }, { @@ -227,7 +227,7 @@ "ApiChange": "Method", "ChangedApiName": "browse", "ChangeType": "Addition", - "Description": "Added the [browse](https://learn.microsoft.com/en-us/graph/api/browseSessionBase-browse?view=graph-rest-1.0) method to the [browseSessionBase](https://learn.microsoft.com/en-us/graph/api/resources/browseSessionBase?view=graph-rest-1.0) resource.", + "Description": "Added the **browse** method to the [browseSessionBase](https://learn.microsoft.com/en-us/graph/api/resources/browseSessionBase?view=graph-rest-1.0) resource.", "Target": "browseSessionBase" } ], @@ -2269,7 +2269,7 @@ "ApiChange": "Method", "ChangedApiName": "browse", "ChangeType": "Addition", - "Description": "Added the [browse](https://learn.microsoft.com/en-us/graph/api/browseSessionBase-browse?view=graph-rest-beta) method to the [browseSessionBase](https://learn.microsoft.com/en-us/graph/api/resources/browseSessionBase?view=graph-rest-beta) resource.", + "Description": "Added the **browse** method to the [browseSessionBase](https://learn.microsoft.com/en-us/graph/api/resources/browseSessionBase?view=graph-rest-beta) resource.", "Target": "browseSessionBase" } ], diff --git a/changelog/Microsoft.Exchange.Places.json b/changelog/Microsoft.Exchange.Places.json index a6f0d102e2d..ece6de4e5f7 100644 --- a/changelog/Microsoft.Exchange.Places.json +++ b/changelog/Microsoft.Exchange.Places.json @@ -591,7 +591,7 @@ "ApiChange": "Method", "ChangedApiName": "place", "ChangeType": "Addition", - "Description": "Added the [create](https://learn.microsoft.com/en-us/graph/api/place-create?view=graph-rest-beta) operation to the [place](https://learn.microsoft.com/en-us/graph/api/resources/place?view=graph-rest-beta) resource.", + "Description": "Added the **create** operation to the [place](https://learn.microsoft.com/en-us/graph/api/resources/place?view=graph-rest-beta) resource.", "Target": "place" }, { diff --git a/changelog/Microsoft.Exchange.json b/changelog/Microsoft.Exchange.json index 6b2f9dc7576..b2cc40f1446 100644 --- a/changelog/Microsoft.Exchange.json +++ b/changelog/Microsoft.Exchange.json @@ -785,7 +785,7 @@ "ApiChange": "Resource", "ChangedApiName": "userPurpose", "ChangeType": "Addition", - "Description": "Added the [userPurpose](https://learn.microsoft.com/en-us/graph/api/resources/userpurpose?view=graph-rest-1.0) resource type.", + "Description": "Added the **userPurpose** resource type.", "Target": "userPurpose" }, { diff --git a/changelog/Microsoft.IGAELM.json b/changelog/Microsoft.IGAELM.json index 3398dc36f69..ff85bf74caa 100644 --- a/changelog/Microsoft.IGAELM.json +++ b/changelog/Microsoft.IGAELM.json @@ -251,7 +251,7 @@ "ApiChange": "Method", "ChangedApiName": "filterByCurrentUser", "ChangeType": "Addition", - "Description": "Added the [filterByCurrentUser](https://learn.microsoft.com/en-us/graph/api/accessPackageSuggestion-filterByCurrentUser?view=graph-rest-beta) method to the [accessPackageSuggestion](https://learn.microsoft.com/en-us/graph/api/resources/accessPackageSuggestion?view=graph-rest-beta) resource.", + "Description": "Added the **filterByCurrentUser** method to the [accessPackageSuggestion](https://learn.microsoft.com/en-us/graph/api/resources/accessPackageSuggestion?view=graph-rest-beta) resource.", "Target": "accessPackageSuggestion" } ], diff --git a/changelog/Microsoft.M365.XTAP.json b/changelog/Microsoft.M365.XTAP.json index ab6afc04ba7..04d49a07a09 100644 --- a/changelog/Microsoft.M365.XTAP.json +++ b/changelog/Microsoft.M365.XTAP.json @@ -47,7 +47,7 @@ "ApiChange": "Method", "ChangedApiName": "GET", "ChangeType": "Addition", - "Description": "Added the [List m365Capabilities](/graph/api/crosstenantaccesspolicyconfigurationdefault-list-m365capabilities?view=graph-rest-beta) method to the [crossTenantAccessPolicyConfigurationDefault](/graph/api/resources/crossTenantAccessPolicyConfigurationDefault?view=graph-rest-beta) resource.", + "Description": "Added the **List m365Capabilities** method to the **crossTenantAccessPolicyConfigurationDefault** resource.", "Target": "crossTenantAccessPolicyConfigurationDefault" }, { @@ -55,7 +55,7 @@ "ApiChange": "Method", "ChangedApiName": "POST", "ChangeType": "Addition", - "Description": "Added the [Create m365CapabilityBase](/graph/api/crosstenantaccesspolicyconfigurationdefault-post-m365capabilities?view=graph-rest-beta) method to the [crossTenantAccessPolicyConfigurationDefault](/graph/api/resources/crossTenantAccessPolicyConfigurationDefault?view=graph-rest-beta) resource.", + "Description": "Added the **Create m365CapabilityBase** method to the **crossTenantAccessPolicyConfigurationDefault** resource.", "Target": "crossTenantAccessPolicyConfigurationDefault" }, { @@ -63,7 +63,7 @@ "ApiChange": "Method", "ChangedApiName": "GET", "ChangeType": "Addition", - "Description": "Added the [List m365Capabilities](/graph/api/crosstenantaccesspolicyconfigurationpartner-list-m365capabilities?view=graph-rest-beta) method to the [crossTenantAccessPolicyConfigurationPartner](/graph/api/resources/crossTenantAccessPolicyConfigurationPartner?view=graph-rest-beta) resource.", + "Description": "Added the **List m365Capabilities** method to the **crossTenantAccessPolicyConfigurationPartner** resource.", "Target": "crossTenantAccessPolicyConfigurationPartner" }, { @@ -71,7 +71,7 @@ "ApiChange": "Method", "ChangedApiName": "POST", "ChangeType": "Addition", - "Description": "Added the [Create m365CapabilityBase](/graph/api/crosstenantaccesspolicyconfigurationpartner-post-m365capabilities?view=graph-rest-beta) method to the [crossTenantAccessPolicyConfigurationPartner](/graph/api/resources/crossTenantAccessPolicyConfigurationPartner?view=graph-rest-beta) resource.", + "Description": "Added the **Create m365CapabilityBase** method to the **crossTenantAccessPolicyConfigurationPartner** resource.", "Target": "crossTenantAccessPolicyConfigurationPartner" }, { diff --git a/changelog/Microsoft.MCIEM.PermissionsAnalytics.json b/changelog/Microsoft.MCIEM.PermissionsAnalytics.json index 24278e0c619..6317fb5aa5c 100644 --- a/changelog/Microsoft.MCIEM.PermissionsAnalytics.json +++ b/changelog/Microsoft.MCIEM.PermissionsAnalytics.json @@ -7,7 +7,7 @@ "ApiChange": "Relationship", "ChangedApiName": "permissionsManagement", "ChangeType": "Deprecated", - "Description": "Deprecated the **permissionsManagement** relationship of the [identityGovernance](https://learn.microsoft.com/en-us/graph/api/resources/identitygovernance?view=graph-rest-beta) resource. This deprecation applies to all Microsoft Entra Permissions Management APIs. More information can be found [here](https://aka.ms/MEPMretire).", + "Description": "Deprecated the **permissionsManagement** relationship of the [identityGovernance](https://learn.microsoft.com/en-us/graph/api/resources/identitygovernance?view=graph-rest-beta) resource. This deprecation applies to all Microsoft Entra Permissions Management APIs. More information can be found **here**.", "Target": "identityGovernance" }, { @@ -15,7 +15,7 @@ "ApiChange": "Relationship", "ChangedApiName": "permissionsAnalytics", "ChangeType": "Deprecated", - "Description": "Deprecated the **permissionsAnalytics** relationship of the [identityGovernance](https://learn.microsoft.com/en-us/graph/api/resources/identitygovernance?view=graph-rest-beta) resource. This deprecation applies to all Microsoft Entra Permissions Management APIs. More information can be found [here](https://aka.ms/MEPMretire).", + "Description": "Deprecated the **permissionsAnalytics** relationship of the [identityGovernance](https://learn.microsoft.com/en-us/graph/api/resources/identitygovernance?view=graph-rest-beta) resource. This deprecation applies to all Microsoft Entra Permissions Management APIs. More information can be found **here**.", "Target": "identityGovernance" } ], diff --git a/changelog/Microsoft.OfficeGraph.json b/changelog/Microsoft.OfficeGraph.json index 1276fcb33b8..7e92a65ab63 100644 --- a/changelog/Microsoft.OfficeGraph.json +++ b/changelog/Microsoft.OfficeGraph.json @@ -7,7 +7,7 @@ "ApiChange": "Method", "ChangedApiName": "sharedInsight", "ChangeType": "Deprecation", - "Description": "Deprecated the [List shared](https://learn.microsoft.com/en-us/graph/api/insights-list-shared?view=graph-rest-beta) method of the [sharedInsight](https://learn.microsoft.com/en-us/graph/api/resources/sharedInsight?view=graph-rest-beta) resource. This API is deprecated and will stop returning data after November, 2026.", + "Description": "Deprecated the [List shared](https://learn.microsoft.com/en-us/graph/api/insights-list-shared?view=graph-rest-beta) method of the **sharedInsight** resource. This API is deprecated and will stop returning data after November, 2026.", "Target": "sharedInsight" }, { @@ -15,7 +15,7 @@ "ApiChange": "Method", "ChangedApiName": "usedInsight", "ChangeType": "Deprecation", - "Description": "Deprecated the [List used](https://learn.microsoft.com/en-us/graph/api/insights-list-used?view=graph-rest-beta) method of the [usedInsight](https://learn.microsoft.com/en-us/graph/api/resources/usedInsight?view=graph-rest-beta) resource. This API is deprecated and will stop returning data after November, 2026.", + "Description": "Deprecated the [List used](https://learn.microsoft.com/en-us/graph/api/insights-list-used?view=graph-rest-beta) method of the **usedInsight** resource. This API is deprecated and will stop returning data after November, 2026.", "Target": "usedInsight" } ], @@ -33,7 +33,7 @@ "ApiChange": "Method", "ChangedApiName": "sharedInsight", "ChangeType": "Deprecation", - "Description": "Deprecated the [List shared](https://learn.microsoft.com/en-us/graph/api/insights-list-shared?view=graph-rest-1.0) method of the [sharedInsight](https://learn.microsoft.com/en-us/graph/api/resources/sharedInsight?view=graph-rest-1.0) resource. This API is deprecated and will stop returning data after November, 2026.", + "Description": "Deprecated the [List shared](https://learn.microsoft.com/en-us/graph/api/insights-list-shared?view=graph-rest-1.0) method of the **sharedInsight** resource. This API is deprecated and will stop returning data after November, 2026.", "Target": "sharedInsight" }, { @@ -41,7 +41,7 @@ "ApiChange": "Method", "ChangedApiName": "usedInsight", "ChangeType": "Deprecation", - "Description": "Deprecated the [List used](https://learn.microsoft.com/en-us/graph/api/insights-list-used?view=graph-rest-1.0) method of the [usedInsight](https://learn.microsoft.com/en-us/graph/api/resources/usedInsight?view=graph-rest-1.0) resource. This API is deprecated and will stop returning data after November, 2026.", + "Description": "Deprecated the [List used](https://learn.microsoft.com/en-us/graph/api/insights-list-used?view=graph-rest-1.0) method of the **usedInsight** resource. This API is deprecated and will stop returning data after November, 2026.", "Target": "usedInsight" } ], diff --git a/changelog/Microsoft.People.json b/changelog/Microsoft.People.json index 9f7bb319f29..ebf841870a1 100644 --- a/changelog/Microsoft.People.json +++ b/changelog/Microsoft.People.json @@ -389,7 +389,7 @@ "ApiChange": "Method", "ChangedApiName": "POST", "ChangeType": "Addition", - "Description": "Added the [Create](https://learn.microsoft.com/en-us/graph/api/peopleadminsettings-post-photoupdatesettings?view=graph-rest-beta) method to the [peopleAdminSettings](https://learn.microsoft.com/en-us/graph/api/resources/peopleadminsettings?view=graph-rest-beta) resource.", + "Description": "Added the **Create** method to the [peopleAdminSettings](https://learn.microsoft.com/en-us/graph/api/resources/peopleadminsettings?view=graph-rest-beta) resource.", "Target": "peopleAdminSettings" }, { @@ -397,7 +397,7 @@ "ApiChange": "Method", "ChangedApiName": "DELETE", "ChangeType": "Addition", - "Description": "Added the [Delete](https://learn.microsoft.com/en-us/graph/api/peopleadminsettings-delete-photoupdatesettings?view=graph-rest-beta) method to the [peopleAdminSettings](https://learn.microsoft.com/en-us/graph/api/resources/peopleadminsettings?view=graph-rest-beta) resource.", + "Description": "Added the **Delete** method to the [peopleAdminSettings](https://learn.microsoft.com/en-us/graph/api/resources/peopleadminsettings?view=graph-rest-beta) resource.", "Target": "peopleAdminSettings" } ], @@ -803,7 +803,7 @@ "ApiChange": "Method", "ChangedApiName": "GET", "ChangeType": "Addition", - "Description": "Added the [list](https://learn.microsoft.com/en-us/graph/api/organizationsettings-list-pronounssettings?view=graph-rest-beta&tabs=http) operation to the [pronounsSettings](https://learn.microsoft.com/en-us/graph/api/resources/pronounssettings?view=graph-rest-beta) resource", + "Description": "Added the **list** operation to the [pronounsSettings](https://learn.microsoft.com/en-us/graph/api/resources/pronounssettings?view=graph-rest-beta) resource", "Target": "pronounsSettings" }, { @@ -861,7 +861,7 @@ "ApiChange": "Method", "ChangedApiName": "GET", "ChangeType": "Deletion", - "Description": "Removed the [list](https://learn.microsoft.com/en-us/graph/api/organizationsettings-list-pronounssettings?view=graph-rest-beta&tabs=http) operation from the [pronounsSettings](https://learn.microsoft.com/en-us/graph/api/resources/pronounssettings?view=graph-rest-beta) resource", + "Description": "Removed the **list** operation from the [pronounsSettings](https://learn.microsoft.com/en-us/graph/api/resources/pronounssettings?view=graph-rest-beta) resource", "Target": "pronounsSettings" }, { diff --git a/changelog/Microsoft.Search.json b/changelog/Microsoft.Search.json index af6c1b02f05..d15e9d1278d 100644 --- a/changelog/Microsoft.Search.json +++ b/changelog/Microsoft.Search.json @@ -405,7 +405,7 @@ "ApiChange": "Property", "ChangedApiName": "state", "ChangeType": "Addition", - "Description": "Added the **state** property to the [externalConnection](https://learn.microsoft.com/en-us/graph/api/resources/externalconnection?view=graph-rest-beta) resource.", + "Description": "Added the **state** property to the **externalConnection** resource.", "Target": "externalConnection" }, { @@ -413,7 +413,7 @@ "ApiChange": "Resource", "ChangedApiName": "externalGroup", "ChangeType": "Addition", - "Description": "Added the [externalGroup](https://learn.microsoft.com/en-us/graph/api/resources/externalgroup?view=graph-rest-beta) resource.", + "Description": "Added the **externalGroup** resource.", "Target": "externalGroup" }, { @@ -421,7 +421,7 @@ "ApiChange": "Resource", "ChangedApiName": "externalGroupMember", "ChangeType": "Addition", - "Description": "Added the [externalGroupMember](https://learn.microsoft.com/en-us/graph/api/resources/externalgroupmember?view=graph-rest-beta) resource.", + "Description": "Added the **externalGroupMember** resource.", "Target": "externalGroupMember" }, { @@ -487,7 +487,7 @@ "ApiChange": "Property", "ChangedApiName": "aliases,isRefinable,labels", "ChangeType": "Addition", - "Description": "Added the **aliases**, **isRefinable**, and **labels** properties to the [property](https://learn.microsoft.com/en-us/graph/api/resources/property?view=graph-rest-beta) entity.", + "Description": "Added the **aliases**, **isRefinable**, and **labels** properties to the **property** entity.", "Target": "property" }, { @@ -495,7 +495,7 @@ "ApiChange": "Resource", "ChangedApiName": "get externalItem", "ChangeType": "Addition", - "Description": "Added the [get externalItem](https://learn.microsoft.com/en-us/graph/api/externalitem-get?view=graph-rest-beta) operation.", + "Description": "Added the **get externalItem** operation.", "Target": "get externalItem" } ], @@ -521,7 +521,7 @@ "ApiChange": "Property", "ChangedApiName": "content,properties", "ChangeType": "Change", - "Description": "The [externalItem](https://learn.microsoft.com/en-us/graph/api/resources/externalitem?view=graph-rest-beta) resource now supports updating the **content** and **properties** properties.", + "Description": "The **externalItem** resource now supports updating the **content** and **properties** properties.", "Target": "externalItem" }, { @@ -529,7 +529,7 @@ "ApiChange": "Resource", "ChangedApiName": "Retry-After", "ChangeType": "Change", - "Description": "Operations on [externalItem](https://learn.microsoft.com/en-us/graph/api/resources/externalitem?view=graph-rest-beta) resources now return a **Retry-After** header when they are throttled.", + "Description": "Operations on **externalItem** resources now return a **Retry-After** header when they are throttled.", "Target": "externalItem" } ], @@ -547,7 +547,7 @@ "ApiChange": "Property", "ChangedApiName": "authorizedAppIds", "ChangeType": "Change", - "Description": "Renamed the **authorizedApps** property to **authorizedAppIds**. See [configuration](https://learn.microsoft.com/en-us/graph/api/resources/configuration?view=graph-rest-beta) resource. Moved this resource to the microsoft.graph.externalConnectors namespace.", + "Description": "Renamed the **authorizedApps** property to **authorizedAppIds**. See **configuration** resource. Moved this resource to the microsoft.graph.externalConnectors namespace.", "Target": "configuration" }, { @@ -555,7 +555,7 @@ "ApiChange": "Resource", "ChangedApiName": "connectionOperation", "ChangeType": "Change", - "Description": "Moved the [connectionOperation](https://learn.microsoft.com/en-us/graph/api/resources/connectionOperation?view=graph-rest-beta) resource to the microsoft.graph.externalConnectors namespace.", + "Description": "Moved the **connectionOperation** resource to the microsoft.graph.externalConnectors namespace.", "Target": "connectionOperation" }, { @@ -563,7 +563,7 @@ "ApiChange": "Resource", "ChangedApiName": "externalConnection", "ChangeType": "Change", - "Description": "Moved the [externalConnection](https://learn.microsoft.com/en-us/graph/api/resources/externalConnection?view=graph-rest-beta) resource to the microsoft.graph.externalConnectors namespace.", + "Description": "Moved the **externalConnection** resource to the microsoft.graph.externalConnectors namespace.", "Target": "externalConnection" }, { @@ -571,7 +571,7 @@ "ApiChange": "Resource", "ChangedApiName": "externalGroup", "ChangeType": "Change", - "Description": "Moved the [externalGroup](https://learn.microsoft.com/en-us/graph/api/resources/externalGroup?view=graph-rest-beta) resource to the microsoft.graph.externalConnectors namespace.", + "Description": "Moved the **externalGroup** resource to the microsoft.graph.externalConnectors namespace.", "Target": "externalGroup" }, { @@ -579,7 +579,7 @@ "ApiChange": "Resource", "ChangedApiName": "externalGroupMember", "ChangeType": "Change", - "Description": "Moved the [externalGroupMember](https://learn.microsoft.com/en-us/graph/api/resources/externalGroupMember?view=graph-rest-beta) resource to the microsoft.graph.externalConnectors namespace.", + "Description": "Moved the **externalGroupMember** resource to the microsoft.graph.externalConnectors namespace.", "Target": "externalGroupMember" }, { @@ -587,7 +587,7 @@ "ApiChange": "Resource", "ChangedApiName": "externalItem", "ChangeType": "Change", - "Description": "Moved the [externalItem](https://learn.microsoft.com/en-us/graph/api/resources/externalItem?view=graph-rest-beta) resource to the microsoft.graph.externalConnectors namespace.", + "Description": "Moved the **externalItem** resource to the microsoft.graph.externalConnectors namespace.", "Target": "externalItem" }, { @@ -595,7 +595,7 @@ "ApiChange": "Resource", "ChangedApiName": "schema", "ChangeType": "Change", - "Description": "Moved the [schema](https://learn.microsoft.com/en-us/graph/api/resources/schema?view=graph-rest-beta) resource to the microsoft.graph.externalConnectors namespace.", + "Description": "Moved the **schema** resource to the microsoft.graph.externalConnectors namespace.", "Target": "schema" }, { @@ -603,7 +603,7 @@ "ApiChange": "Resource", "ChangedApiName": "acl", "ChangeType": "Change", - "Description": "Moved the [acl](https://learn.microsoft.com/en-us/graph/api/resources/acl?view=graph-rest-beta) resource to the microsoft.graph.externalConnectors namespace.", + "Description": "Moved the **acl** resource to the microsoft.graph.externalConnectors namespace.", "Target": "acl" }, { @@ -611,7 +611,7 @@ "ApiChange": "Resource", "ChangedApiName": "configuration", "ChangeType": "Change", - "Description": "Moved the [configuration](https://learn.microsoft.com/en-us/graph/api/resources/configuration?view=graph-rest-beta) resource to the microsoft.graph.externalConnectors namespace.", + "Description": "Moved the **configuration** resource to the microsoft.graph.externalConnectors namespace.", "Target": "configuration" }, { @@ -619,7 +619,7 @@ "ApiChange": "Resource", "ChangedApiName": "externalItemContent", "ChangeType": "Change", - "Description": "Moved the [externalItemContent](https://learn.microsoft.com/en-us/graph/api/resources/externalItemContent?view=graph-rest-beta) resource to the microsoft.graph.externalConnectors namespace.", + "Description": "Moved the **externalItemContent** resource to the microsoft.graph.externalConnectors namespace.", "Target": "externalItemContent" }, { @@ -635,7 +635,7 @@ "ApiChange": "Resource", "ChangedApiName": "property", "ChangeType": "Change", - "Description": "Moved the [property](https://learn.microsoft.com/en-us/graph/api/resources/property?view=graph-rest-beta) resource to the microsoft.graph.externalConnectors namespace.", + "Description": "Moved the **property** resource to the microsoft.graph.externalConnectors namespace.", "Target": "property" }, { @@ -787,7 +787,7 @@ "ApiChange": "Property", "ChangedApiName": "isContent", "ChangeType": "Deletion", - "Description": "Removed the **isContent** property from the [property](https://learn.microsoft.com/en-us/graph/api/resources/property?view=graph-rest-beta) resource.", + "Description": "Removed the **isContent** property from the **property** resource.", "Target": "property" }, { @@ -795,7 +795,7 @@ "ApiChange": "Property", "ChangedApiName": "error", "ChangeType": "Change", - "Description": "Changed the type of the **error** property in the [connectionOperation](https://learn.microsoft.com/en-us/graph/api/resources/connectionOperation?view=graph-rest-beta) resource to be of [publicError](https://learn.microsoft.com/en-us/graph/api/resources/publicerror?view=graph-rest-beta) type instead.", + "Description": "Changed the type of the **error** property in the **connectionOperation** resource to be of [publicError](https://learn.microsoft.com/en-us/graph/api/resources/publicerror?view=graph-rest-beta) type instead.", "Target": "connectionOperation" }, { @@ -881,7 +881,7 @@ "ApiChange": "Resource", "ChangedApiName": "connectionOperation", "ChangeType": "Addition", - "Description": "Added the [connectionOperation](https://learn.microsoft.com/en-us/graph/api/resources/connectionOperation?view=graph-rest-1.0) resource type.", + "Description": "Added the **connectionOperation** resource type.", "Target": "connectionOperation" }, { @@ -889,7 +889,7 @@ "ApiChange": "Resource", "ChangedApiName": "externalConnection", "ChangeType": "Addition", - "Description": "Added the [externalConnection](https://learn.microsoft.com/en-us/graph/api/resources/externalConnection?view=graph-rest-1.0) resource type.", + "Description": "Added the **externalConnection** resource type.", "Target": "externalConnection" }, { @@ -897,7 +897,7 @@ "ApiChange": "Resource", "ChangedApiName": "externalItem", "ChangeType": "Addition", - "Description": "Added the [externalItem](https://learn.microsoft.com/en-us/graph/api/resources/externalItem?view=graph-rest-1.0) resource type.", + "Description": "Added the **externalItem** resource type.", "Target": "externalItem" }, { @@ -905,7 +905,7 @@ "ApiChange": "Resource", "ChangedApiName": "schema", "ChangeType": "Addition", - "Description": "Added the [schema](https://learn.microsoft.com/en-us/graph/api/resources/schema?view=graph-rest-1.0) resource type.", + "Description": "Added the **schema** resource type.", "Target": "schema" }, { @@ -913,7 +913,7 @@ "ApiChange": "Resource", "ChangedApiName": "acl", "ChangeType": "Addition", - "Description": "Added the [acl](https://learn.microsoft.com/en-us/graph/api/resources/acl?view=graph-rest-1.0) resource type.", + "Description": "Added the **acl** resource type.", "Target": "acl" }, { @@ -921,7 +921,7 @@ "ApiChange": "Resource", "ChangedApiName": "configuration", "ChangeType": "Addition", - "Description": "Added the [configuration](https://learn.microsoft.com/en-us/graph/api/resources/configuration?view=graph-rest-1.0) resource type.", + "Description": "Added the **configuration** resource type.", "Target": "configuration" }, { @@ -929,7 +929,7 @@ "ApiChange": "Resource", "ChangedApiName": "externalItemContent", "ChangeType": "Addition", - "Description": "Added the [externalItemContent](https://learn.microsoft.com/en-us/graph/api/resources/externalItemContent?view=graph-rest-1.0) resource type.", + "Description": "Added the **externalItemContent** resource type.", "Target": "externalItemContent" }, { @@ -945,7 +945,7 @@ "ApiChange": "Resource", "ChangedApiName": "property", "ChangeType": "Addition", - "Description": "Added the [property](https://learn.microsoft.com/en-us/graph/api/resources/property?view=graph-rest-1.0) resource type.", + "Description": "Added the **property** resource type.", "Target": "property" }, { @@ -1043,7 +1043,7 @@ "ApiChange": "Relationship", "ChangedApiName": "groups", "ChangeType": "Addition", - "Description": "Added the **groups** relationship to the [externalConnection](https://learn.microsoft.com/en-us/graph/api/resources/externalConnection?view=graph-rest-1.0) resource.", + "Description": "Added the **groups** relationship to the **externalConnection** resource.", "Target": "externalConnection" }, { @@ -1051,7 +1051,7 @@ "ApiChange": "Resource", "ChangedApiName": "externalGroup", "ChangeType": "Addition", - "Description": "Added the [externalGroup](https://learn.microsoft.com/en-us/graph/api/resources/externalGroup?view=graph-rest-1.0) resource type.", + "Description": "Added the **externalGroup** resource type.", "Target": "externalGroup" }, { @@ -1769,7 +1769,7 @@ "ApiChange": "Property", "ChangedApiName": "isExactMatchRequired", "ChangeType": "Addition", - "Description": "Added the **isExactMatchRequired** property to the [property](https://learn.microsoft.com/en-us/graph/api/resources/property?view=graph-rest-beta) resource.", + "Description": "Added the **isExactMatchRequired** property to the **property** resource.", "Target": "property" } ], @@ -1945,7 +1945,7 @@ "ApiChange": "Property", "ChangedApiName": "rankingHint", "ChangeType": "Addition", - "Description": "Added the **rankingHint** property to the [property](https://learn.microsoft.com/en-us/graph/api/resources/property?view=graph-rest-beta) resource.", + "Description": "Added the **rankingHint** property to the **property** resource.", "Target": "property" } ], diff --git a/changelog/Microsoft.Security.Copilot.json b/changelog/Microsoft.Security.Copilot.json index 7cef28da5f4..d7a97ab19a9 100644 --- a/changelog/Microsoft.Security.Copilot.json +++ b/changelog/Microsoft.Security.Copilot.json @@ -95,7 +95,7 @@ "ApiChange": "Resource", "ChangedApiName": "evaluation", "ChangeType": "Addition", - "Description": "Added the [evaluation](https://learn.microsoft.com/en-us/graph/api/resources/security.securityCopilot-evaluation?view=graph-rest-beta) resource.", + "Description": "Added the **evaluation** resource.", "Target": "evaluation" }, { @@ -103,7 +103,7 @@ "ApiChange": "Resource", "ChangedApiName": "plugin", "ChangeType": "Addition", - "Description": "Added the [plugin](https://learn.microsoft.com/en-us/graph/api/resources/security.securityCopilot-plugin?view=graph-rest-beta) resource.", + "Description": "Added the **plugin** resource.", "Target": "plugin" }, { @@ -111,7 +111,7 @@ "ApiChange": "Resource", "ChangedApiName": "prompt", "ChangeType": "Addition", - "Description": "Added the [prompt](https://learn.microsoft.com/en-us/graph/api/resources/security.securityCopilot-prompt?view=graph-rest-beta) resource.", + "Description": "Added the **prompt** resource.", "Target": "prompt" }, { @@ -119,7 +119,7 @@ "ApiChange": "Resource", "ChangedApiName": "session", "ChangeType": "Addition", - "Description": "Added the [session](https://learn.microsoft.com/en-us/graph/api/resources/security.securityCopilot-session?view=graph-rest-beta) resource.", + "Description": "Added the **session** resource.", "Target": "session" }, { @@ -127,7 +127,7 @@ "ApiChange": "Resource", "ChangedApiName": "workspace", "ChangeType": "Addition", - "Description": "Added the [workspace](https://learn.microsoft.com/en-us/graph/api/resources/security.securityCopilot-workspace?view=graph-rest-beta) resource.", + "Description": "Added the **workspace** resource.", "Target": "workspace" } ], diff --git a/changelog/Microsoft.Security.RecordsManagement.json b/changelog/Microsoft.Security.RecordsManagement.json index b363137aacd..ce0e9057d98 100644 --- a/changelog/Microsoft.Security.RecordsManagement.json +++ b/changelog/Microsoft.Security.RecordsManagement.json @@ -219,7 +219,7 @@ "ApiChange": "Resource", "ChangedApiName": "appliedCategory", "ChangeType": "Addition", - "Description": "Added the [appliedCategory](https://learn.microsoft.com/en-us/graph/api/resources/security-appliedCategory?view=graph-rest-beta) resource type.", + "Description": "Added the **appliedCategory** resource type.", "Target": "appliedCategory" }, { @@ -227,7 +227,7 @@ "ApiChange": "Resource", "ChangedApiName": "authority", "ChangeType": "Addition", - "Description": "Added the [authority](https://learn.microsoft.com/en-us/graph/api/resources/security-authority?view=graph-rest-beta) resource type.", + "Description": "Added the **authority** resource type.", "Target": "authority" }, { @@ -235,7 +235,7 @@ "ApiChange": "Resource", "ChangedApiName": "citation", "ChangeType": "Addition", - "Description": "Added the [citation](https://learn.microsoft.com/en-us/graph/api/resources/security-citation?view=graph-rest-beta) resource type.", + "Description": "Added the **citation** resource type.", "Target": "citation" }, { @@ -243,7 +243,7 @@ "ApiChange": "Resource", "ChangedApiName": "department", "ChangeType": "Addition", - "Description": "Added the [department](https://learn.microsoft.com/en-us/graph/api/resources/security-department?view=graph-rest-beta) resource type.", + "Description": "Added the **department** resource type.", "Target": "department" }, { @@ -259,7 +259,7 @@ "ApiChange": "Resource", "ChangedApiName": "subCategory", "ChangeType": "Addition", - "Description": "Added the [subCategory](https://learn.microsoft.com/en-us/graph/api/resources/security-subCategory?view=graph-rest-beta) resource type.", + "Description": "Added the **subCategory** resource type.", "Target": "subCategory" }, { @@ -453,7 +453,7 @@ "ApiChange": "Resource", "ChangedApiName": "appliedCategory", "ChangeType": "Addition", - "Description": "Added the [appliedCategory](https://learn.microsoft.com/en-us/graph/api/resources/security-appliedCategory?view=graph-rest-v1.0) resource type.", + "Description": "Added the **appliedCategory** resource type.", "Target": "appliedCategory" }, { @@ -461,7 +461,7 @@ "ApiChange": "Resource", "ChangedApiName": "authority", "ChangeType": "Addition", - "Description": "Added the [authority](https://learn.microsoft.com/en-us/graph/api/resources/security-authority?view=graph-rest-v1.0) resource type.", + "Description": "Added the **authority** resource type.", "Target": "authority" }, { @@ -469,7 +469,7 @@ "ApiChange": "Resource", "ChangedApiName": "citation", "ChangeType": "Addition", - "Description": "Added the [citation](https://learn.microsoft.com/en-us/graph/api/resources/security-citation?view=graph-rest-v1.0) resource type.", + "Description": "Added the **citation** resource type.", "Target": "citation" }, { @@ -477,7 +477,7 @@ "ApiChange": "Resource", "ChangedApiName": "department", "ChangeType": "Addition", - "Description": "Added the [department](https://learn.microsoft.com/en-us/graph/api/resources/security-department?view=graph-rest-v1.0) resource type.", + "Description": "Added the **department** resource type.", "Target": "department" }, { @@ -493,7 +493,7 @@ "ApiChange": "Resource", "ChangedApiName": "subCategory", "ChangeType": "Addition", - "Description": "Added the [subCategory](https://learn.microsoft.com/en-us/graph/api/resources/security-subCategory?view=graph-rest-v1.0) resource type.", + "Description": "Added the **subCategory** resource type.", "Target": "subCategory" }, { diff --git a/changelog/Microsoft.Skype.Calling.json b/changelog/Microsoft.Skype.Calling.json index 5a6899856ae..42316958f4f 100644 --- a/changelog/Microsoft.Skype.Calling.json +++ b/changelog/Microsoft.Skype.Calling.json @@ -3065,7 +3065,7 @@ "ApiChange": "Method", "ChangedApiName": "virtualEventSession", "ChangeType": "Addition", - "Description": "Added the [LIST](https://learn.microsoft.com/en-us/graph/api/virtualeventsession-list?view=graph-rest-beta) operation to the [virtualEventSession](https://learn.microsoft.com/en-us/graph/api/resources/virtualEventSession?view=graph-rest-beta) resource.", + "Description": "Added the **LIST** operation to the [virtualEventSession](https://learn.microsoft.com/en-us/graph/api/resources/virtualEventSession?view=graph-rest-beta) resource.", "Target": "virtualEventSession" } ], @@ -3237,7 +3237,7 @@ "ApiChange": "Resource", "ChangedApiName": "virtualEventRegistrant", "ChangeType": "Addition", - "Description": "Added the [virtualEventRegistrant](https://learn.microsoft.com/en-us/graph/api/resources/virtualEventRegistrant?view=graph-rest-beta) resource", + "Description": "Added the **virtualEventRegistrant** resource", "Target": "virtualEventRegistrant" }, { @@ -5259,7 +5259,7 @@ "ApiChange": "Resource", "ChangedApiName": "presence,change notifications", "ChangeType": "Addition", - "Description": "The [presence](https://learn.microsoft.com/en-us/graph/api/resources/presence) resource now supports [change notifications](https://learn.microsoft.com/en-us/graph/webhooks).", + "Description": "The [presence](https://learn.microsoft.com/en-us/graph/api/resources/presence) resource now supports **change notifications**.", "Target": "presence,change notifications" } ], @@ -5379,7 +5379,7 @@ "ApiChange": "Resource", "ChangedApiName": "webhook", "ChangeType": "Addition", - "Description": "Added support for [webhook](https://learn.microsoft.com/en-us/graph/api/resources/webhooks?view=graph-rest-1.0) subscriptions to call records.", + "Description": "Added support for **webhook** subscriptions to call records.", "Target": "webhook" }, { @@ -5403,7 +5403,7 @@ "ApiChange": "Resource", "ChangedApiName": "List sessions", "ChangeType": "Addition", - "Description": "Added the [List sessions](https://learn.microsoft.com/en-us/graph/api/callrecords-session-list?view=graph-rest-beta) API.", + "Description": "Added the **List sessions** API.", "Target": "List sessions" } ], @@ -5659,7 +5659,7 @@ "ApiChange": "Resource", "ChangedApiName": "webhook", "ChangeType": "Addition", - "Description": "Added support for [webhook](https://learn.microsoft.com/en-us/graph/api/resources/webhooks?view=graph-rest-1.0) subscriptions to call records.", + "Description": "Added support for **webhook** subscriptions to call records.", "Target": "webhook" } ], diff --git a/changelog/Microsoft.SubscriptionServices.json b/changelog/Microsoft.SubscriptionServices.json index de238a1ab59..2ebc24a3d61 100644 --- a/changelog/Microsoft.SubscriptionServices.json +++ b/changelog/Microsoft.SubscriptionServices.json @@ -253,7 +253,7 @@ "ApiChange": "Resource", "ChangedApiName": "todoTask, change notifications", "ChangeType": "Addition", - "Description": "Added [todoTask](https://learn.microsoft.com/en-us/graph/api/resources/todoTask?view=graph-rest-beta) to the resources supported for [change notifications](https://learn.microsoft.com/en-us/graph/webhooks).", + "Description": "Added [todoTask](https://learn.microsoft.com/en-us/graph/api/resources/todoTask?view=graph-rest-beta) to the resources supported for **change notifications**.", "Target": "todoTask, change notifications" } ], @@ -271,7 +271,7 @@ "ApiChange": "Resource", "ChangedApiName": "printTaskDefinition, change notifications", "ChangeType": "Addition", - "Description": "Added [printTaskDefinition](https://learn.microsoft.com/en-us/graph/api/resources/printtaskdefinition?view=graph-rest-beta) to the resources supported for [change notifications](https://learn.microsoft.com/en-us/graph/webhooks).", + "Description": "Added [printTaskDefinition](https://learn.microsoft.com/en-us/graph/api/resources/printtaskdefinition?view=graph-rest-beta) to the resources supported for **change notifications**.", "Target": "printTaskDefinition, change notifications" } ], @@ -289,7 +289,7 @@ "ApiChange": "Resource", "ChangedApiName": "lifecycle notifications,chatMessage,contact,event,message", "ChangeType": "Addition", - "Description": "Added [lifecycle notifications](https://learn.microsoft.com/en-us/graph/webhooks-lifecycle) for personal [chatMessage](https://learn.microsoft.com/en-us/graph/api/resources/chatmessage?view=graph-rest-1.0), [contact](https://learn.microsoft.com/en-us/graph/api/resources/contact?view=graph-rest-1.0), [event](https://learn.microsoft.com/en-us/graph/api/resources/event?view=graph-rest-1.0), and [message](https://learn.microsoft.com/en-us/graph/api/resources/message?view=graph-rest-1.0).", + "Description": "Added **lifecycle notifications** for personal [chatMessage](https://learn.microsoft.com/en-us/graph/api/resources/chatmessage?view=graph-rest-1.0), [contact](https://learn.microsoft.com/en-us/graph/api/resources/contact?view=graph-rest-1.0), [event](https://learn.microsoft.com/en-us/graph/api/resources/event?view=graph-rest-1.0), and [message](https://learn.microsoft.com/en-us/graph/api/resources/message?view=graph-rest-1.0).", "Target": "lifecycle notifications,chatMessage,contact,event,message" } ], @@ -307,7 +307,7 @@ "ApiChange": "Resource", "ChangedApiName": "chatMessage,change notifications", "ChangeType": "Addition", - "Description": "Added [chatMessage](https://learn.microsoft.com/en-us/graph/api/resources/presence) to the resources supported for [change notifications](https://learn.microsoft.com/en-us/graph/webhooks).", + "Description": "Added [chatMessage](https://learn.microsoft.com/en-us/graph/api/resources/presence) to the resources supported for **change notifications**.", "Target": "chatMessage,change notifications" } ], @@ -369,7 +369,7 @@ "ApiChange": "Resource", "ChangedApiName": "presence,change notifications", "ChangeType": "Addition", - "Description": "Added [presence](https://learn.microsoft.com/en-us/graph/api/resources/presence) to the resources supported for [change notifications](https://learn.microsoft.com/en-us/graph/webhooks).", + "Description": "Added [presence](https://learn.microsoft.com/en-us/graph/api/resources/presence) to the resources supported for **change notifications**.", "Target": "presence,change notifications" } ], @@ -387,7 +387,7 @@ "ApiChange": "Resource", "ChangedApiName": "changeNotification,changeNotificationCollection,resourceData,change notification", "ChangeType": "Addition", - "Description": "Added the [changeNotification](https://learn.microsoft.com/en-us/graph/api/resources/changenotification?view=graph-rest-1.0), [changeNotificationCollection](https://learn.microsoft.com/en-us/graph/api/resources/changenotificationcollection?view=graph-rest-1.0), and [resourceData](https://learn.microsoft.com/en-us/graph/api/resources/resourcedata?view=graph-rest-1.0) resources to the [change notification](https://learn.microsoft.com/en-us/graph/api/resources/webhooks?view=graph-rest-beta) API.", + "Description": "Added the [changeNotification](https://learn.microsoft.com/en-us/graph/api/resources/changenotification?view=graph-rest-1.0), [changeNotificationCollection](https://learn.microsoft.com/en-us/graph/api/resources/changenotificationcollection?view=graph-rest-1.0), and [resourceData](https://learn.microsoft.com/en-us/graph/api/resources/resourcedata?view=graph-rest-1.0) resources to the **change notification** API.", "Target": "changeNotification,changeNotificationCollection,resourceData,change notification" } ], @@ -405,7 +405,7 @@ "ApiChange": "Resource", "ChangedApiName": "changeNotification,changeNotificationCollection,changeNotificationEncryptedContent,change notification", "ChangeType": "Addition", - "Description": "Added the [changeNotification](https://learn.microsoft.com/en-us/graph/api/resources/changenotification?view=graph-rest-beta), [changeNotificationCollection](https://learn.microsoft.com/en-us/graph/api/resources/changenotificationcollection?view=graph-rest-beta), and [changeNotificationEncryptedContent](https://learn.microsoft.com/en-us/graph/api/resources/changenotificationencryptedcontent?view=graph-rest-beta) resources for the [change notification](https://learn.microsoft.com/en-us/graph/api/resources/webhooks?view=graph-rest-beta) API.", + "Description": "Added the [changeNotification](https://learn.microsoft.com/en-us/graph/api/resources/changenotification?view=graph-rest-beta), [changeNotificationCollection](https://learn.microsoft.com/en-us/graph/api/resources/changenotificationcollection?view=graph-rest-beta), and [changeNotificationEncryptedContent](https://learn.microsoft.com/en-us/graph/api/resources/changenotificationencryptedcontent?view=graph-rest-beta) resources for the **change notification** API.", "Target": "changeNotification,changeNotificationCollection,changeNotificationEncryptedContent,change notification" } ], diff --git a/changelog/Microsoft.Teams.GraphSvc.json b/changelog/Microsoft.Teams.GraphSvc.json index ca415ed1c89..fb1086aad6c 100644 --- a/changelog/Microsoft.Teams.GraphSvc.json +++ b/changelog/Microsoft.Teams.GraphSvc.json @@ -3227,7 +3227,7 @@ "ApiChange": "Method", "ChangedApiName": "getAllEnterpriseInteractions", "ChangeType": "Addition", - "Description": "Added the [getAllEnterpriseInteractions](https://learn.microsoft.com/en-us/microsoft-365-copilot/extensibility/api-reference/aiInteractionHistory-getAllEnterpriseInteractions?view=graph-rest-beta) method to the [aiInteractionHistory](https://learn.microsoft.com/en-us/graph/api/resources/aiInteractionHistory?view=graph-rest-beta) resource.", + "Description": "Added the **getAllEnterpriseInteractions** method to the [aiInteractionHistory](https://learn.microsoft.com/en-us/graph/api/resources/aiInteractionHistory?view=graph-rest-beta) resource.", "Target": "aiInteractionHistory" } ], @@ -3565,7 +3565,7 @@ "ApiChange": "Method", "ChangedApiName": "getAllEnterpriseInteractions", "ChangeType": "Addition", - "Description": "Added the [getAllEnterpriseInteractions](https://learn.microsoft.com/en-us/microsoft-365-copilot/extensibility/api-reference/aiInteractionHistory-getAllEnterpriseInteractions?view=graph-rest-1.0) method to the [aiInteractionHistory](https://learn.microsoft.com/en-us/graph/api/resources/aiInteractionHistory?view=graph-rest-1.0) resource.", + "Description": "Added the **getAllEnterpriseInteractions** method to the [aiInteractionHistory](https://learn.microsoft.com/en-us/graph/api/resources/aiInteractionHistory?view=graph-rest-1.0) resource.", "Target": "aiInteractionHistory" }, { diff --git a/changelog/Microsoft.Teams.Shifts.json b/changelog/Microsoft.Teams.Shifts.json index 2599bc8b0cc..15b2abdb767 100644 --- a/changelog/Microsoft.Teams.Shifts.json +++ b/changelog/Microsoft.Teams.Shifts.json @@ -1383,7 +1383,7 @@ "ApiChange": "Parameter", "ChangedApiName": "onBehalfOfUserId", "ChangeType": "Addition", - "Description": "Added the `onBehalfOfUserId` parameter to the [clockIn](https://learn.microsoft.com/en-us/graph/api/timeCard?view=graph-rest-1.0) method.", + "Description": "Added the `onBehalfOfUserId` parameter to the **clockIn** method.", "Target": "clockIn" } ], @@ -1401,7 +1401,7 @@ "ApiChange": "Parameter", "ChangedApiName": "onBehalfOfUserId", "ChangeType": "Addition", - "Description": "Added the `onBehalfOfUserId` parameter to the [clockIn](https://learn.microsoft.com/en-us/graph/api/timeCard?view=graph-rest-1.0) method.", + "Description": "Added the `onBehalfOfUserId` parameter to the **clockIn** method.", "Target": "clockIn" } ], diff --git a/changelog/Microsoft.Todo.json b/changelog/Microsoft.Todo.json index f4e01a0a97a..8bba48de11a 100644 --- a/changelog/Microsoft.Todo.json +++ b/changelog/Microsoft.Todo.json @@ -335,7 +335,7 @@ "ApiChange": "Resource", "ChangedApiName": "todoTask, change notifications", "ChangeType": "Addition", - "Description": "Added [todoTask](https://learn.microsoft.com/en-us/graph/api/resources/todoTask?view=graph-rest-beta) to the resources supported for [change notifications](https://learn.microsoft.com/en-us/graph/webhooks).", + "Description": "Added [todoTask](https://learn.microsoft.com/en-us/graph/api/resources/todoTask?view=graph-rest-beta) to the resources supported for **change notifications**.", "Target": "todoTask, change notifications" } ], diff --git a/changelog/Microsoft.ZTNA.json b/changelog/Microsoft.ZTNA.json index 5d7e088262a..007c0d5f9de 100644 --- a/changelog/Microsoft.ZTNA.json +++ b/changelog/Microsoft.ZTNA.json @@ -169,7 +169,7 @@ "ApiChange": "Resource", "ChangedApiName": "enrichedAuditLogs", "ChangeType": "Addition", - "Description": "Added the [enrichedAuditLogs](https://learn.microsoft.com/en-us/graph/api/resources/networkaccess-enrichedAuditLogs?view=graph-rest-beta) resource.", + "Description": "Added the **enrichedAuditLogs** resource.", "Target": "enrichedAuditLogs" }, { @@ -289,7 +289,7 @@ "ApiChange": "Resource", "ChangedApiName": "enrichedAuditLogsSettings", "ChangeType": "Addition", - "Description": "Added the [enrichedAuditLogsSettings](https://learn.microsoft.com/en-us/graph/api/resources/networkaccess-enrichedAuditLogsSettings?view=graph-rest-beta) resource type.", + "Description": "Added the **enrichedAuditLogsSettings** resource type.", "Target": "enrichedAuditLogsSettings" }, { @@ -1117,7 +1117,7 @@ "ApiChange": "Resource", "ChangedApiName": "webCategories", "ChangeType": "Addition", - "Description": "Added the **webCategories** property to the [connectivity](https://learn.microsoft.com/en-us/graph/api/resources/networkaccess-conenctivity?view=graph-rest-beta) resource type.", + "Description": "Added the **webCategories** property to the **connectivity** resource type.", "Target": "connectivity" } ], From 0ef25ab6e44aace463e170e3c6cff2d1d7c44335 Mon Sep 17 00:00:00 2001 From: myra-ramdenbourg <108485108+myra-ramdenbourg@users.noreply.github.com> Date: Thu, 18 Jun 2026 11:10:49 -0700 Subject: [PATCH 07/52] Onboard Entitlement Management Suggestions + ApproverVisibility to v1.0 (#28888) * Add approverInformationVisibility enum and property to accessPackageApprovalStage (v1.0) * acrolinx score * Update accesspackageapprovalstage.md: fix wording to active voice * Add v1.0 docs for access package suggestions, control configurations, and approverInformationVisibility - Add accessPackageSuggestion, availableAccessPackage, controlConfiguration, endUserSettings, accessPackageSuggestionReason, accessPackageSuggestionRelatedPeopleBased, accessPackageSuggestionSelfAssignmentHistoryBased resource docs - Add filterByCurrentUser, endUserSettings get/update, availableAccessPackage list resourceRoleScopes API docs - Add permissions include files for new APIs - Update entitlementManagement with accessPackageSuggestions, availableAccessPackages, controlConfigurations relationships - Add accessPackageSuggestionFilterByCurrentUserOptions, accessPackageSuggestionRelatedPeopleInsightLevel, approverInformationVisibility enums to enums.md - Add changelog entry for IGAELM v1.0 additions - Update TOC mapping with new resources and complex types - Update What's New for May 2026 * Remove approverInformationVisibility changes from changelog Removed entries related to the approverInformationVisibility enumeration and property from the changelog. * Update Microsoft.DirectoryServices.json * Update api-reference/v1.0/api/accesspackagesuggestions-filterbycurrentuser.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/v1.0/resources/accesspackagesuggestion.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/v1.0/api/accesspackagesuggestions-filterbycurrentuser.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/v1.0/resources/accesspackagesuggestionselfassignmenthistorybased.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/v1.0/api/accesspackagesuggestions-filterbycurrentuser.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/v1.0/resources/accesspackagesuggestionrelatedpeoplebased.md Co-authored-by: Faith Moraa Ombongi * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update api-reference/v1.0/resources/accesspackagesuggestionrelatedpeoplebased.md Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi * Add cross-reference links in availableaccesspackage description * Replace changelog entry with updated version including beta property rename * Update Microsoft.IGAELM.json with API changes * Remove identity resource entry from changelog Removed the identity resource entry from the changelog. * Update enumeration IDs in Microsoft.IGAELM.json * Update RBAC details for Agent ID API permissions Adding description for Agent ID Admin so that the include makes sense on all agent id related pages. * Update rbac-agentid-apis-write.md * Update RBAC details for agent identity APIs Clarified ownership and permissions for agent identity blueprints. * revision Updated the important notes regarding agent identity blueprints and roles for clarity and conciseness. * Add include for Agent ID post operations Add documentation for RBAC related to agent ID APIs. * change include to post version Updated the date for the agent identity blueprint documentation and changed the RBAC permissions include. * Update RBAC inclusion for agentidentityblueprint POST * Update RBAC inclusion for agentidentityblueprintprincipal * Update RBAC include for agentidentityblueprintprincipal POST * Fix include path for RBAC agent ID APIs * Fix include path for RBAC agent ID APIs post * Update agentidentityblueprint-post.md * Update agentidentityblueprintprincipal-post.md * Create rbac-agentid-apis-post.md documentation Added documentation for RBAC agent ID APIs, including ownership and role requirements. * Update Agent ID Administrator link in documentation * Update permissions reference for Entitlement Management * Add permissions note for EntitlementManagement.ReadWrite.All * minor edit * Rename file to match permission name * Update EntitlementManagement.ReadWrite include reference * Remove EntitlementManagement.ReadWrite inclusion note Removed the inclusion note for EntitlementManagement.ReadWrite. * Minor edit to identity.md to unblock validation build * update what's new Added new governance features and updated existing identity and access sections. * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi * Attempt resolving API Doctor bug * Add API Doctor suppressions * Fix broken changelog link --------- Co-authored-by: Faith Moraa Ombongi Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: Alexander Filipin Co-authored-by: Alexander Filipin Co-authored-by: Eunice Waweru <73849846+msewaweru@users.noreply.github.com> --- .../resources/accesspackageapprovalstage.md | 6 +- ...spackagesuggestions-filterbycurrentuser.md | 192 ++++++++++++++++++ ...leaccesspackage-list-resourcerolescopes.md | 93 +++++++++ api-reference/v1.0/api/endusersettings-get.md | 88 ++++++++ .../v1.0/api/endusersettings-update.md | 99 +++++++++ ...estions-filterbycurrentuser-permissions.md | 11 + ...age-list-resourcerolescopes-permissions.md | 11 + .../endusersettings-get-permissions.md | 11 + .../endusersettings-update-permissions.md | 11 + .../resources/accesspackageapprovalstage.md | 15 +- .../v1.0/resources/accesspackagesuggestion.md | 71 +++++++ .../accesspackagesuggestionreason.md | 53 +++++ ...cesspackagesuggestionrelatedpeoplebased.md | 64 ++++++ ...agesuggestionselfassignmenthistorybased.md | 58 ++++++ .../v1.0/resources/availableaccesspackage.md | 69 +++++++ .../v1.0/resources/controlconfiguration.md | 56 +++++ .../v1.0/resources/endusersettings.md | 66 ++++++ .../v1.0/resources/entitlementmanagement.md | 3 + api-reference/v1.0/resources/enums.md | 27 +++ api-reference/v1.0/resources/identity.md | 2 +- api-reference/v1.0/toc/toc.mapping.json | 6 + changelog/Microsoft.IGAELM.json | 138 +++++++++++++ concepts/whats-new-overview.md | 6 + 23 files changed, 1150 insertions(+), 6 deletions(-) create mode 100644 api-reference/v1.0/api/accesspackagesuggestions-filterbycurrentuser.md create mode 100644 api-reference/v1.0/api/availableaccesspackage-list-resourcerolescopes.md create mode 100644 api-reference/v1.0/api/endusersettings-get.md create mode 100644 api-reference/v1.0/api/endusersettings-update.md create mode 100644 api-reference/v1.0/includes/permissions/accesspackagesuggestions-filterbycurrentuser-permissions.md create mode 100644 api-reference/v1.0/includes/permissions/availableaccesspackage-list-resourcerolescopes-permissions.md create mode 100644 api-reference/v1.0/includes/permissions/endusersettings-get-permissions.md create mode 100644 api-reference/v1.0/includes/permissions/endusersettings-update-permissions.md create mode 100644 api-reference/v1.0/resources/accesspackagesuggestion.md create mode 100644 api-reference/v1.0/resources/accesspackagesuggestionreason.md create mode 100644 api-reference/v1.0/resources/accesspackagesuggestionrelatedpeoplebased.md create mode 100644 api-reference/v1.0/resources/accesspackagesuggestionselfassignmenthistorybased.md create mode 100644 api-reference/v1.0/resources/availableaccesspackage.md create mode 100644 api-reference/v1.0/resources/controlconfiguration.md create mode 100644 api-reference/v1.0/resources/endusersettings.md diff --git a/api-reference/beta/resources/accesspackageapprovalstage.md b/api-reference/beta/resources/accesspackageapprovalstage.md index 97af211f51e..5a4ee99fffc 100644 --- a/api-reference/beta/resources/accesspackageapprovalstage.md +++ b/api-reference/beta/resources/accesspackageapprovalstage.md @@ -23,12 +23,12 @@ Used for the **stages** property of approval settings in an [access package assi |approverInformationVisibility|[approverInformationVisibility](#approverinformationvisibility-values)|Indicates whether approver information is visible to the requestor. The possible values are: `default`, `notVisible`, `visible`, `unknownFutureValue`.| |durationBeforeAutomaticDenial|Duration|The number of days that a request can be pending a response before it is automatically denied.| |durationBeforeEscalation|Duration|If escalation is required, the time a request can be pending a response from a primary approver.| -|escalationApprovers|[subjectSet](../resources/subjectset.md) collection|If escalation is enabled and the primary approvers don't respond before the escalation time, the escalationApprovers are the users who will be asked to approve requests. | +|escalationApprovers|[subjectSet](../resources/subjectset.md) collection|If escalation is enabled and the primary approvers do not respond before the escalation time, the escalationApprovers are the users who are asked to approve requests. | |fallbackEscalationApprovers|[subjectSet](../resources/subjectset.md) collection|The subjects, typically users, who are the fallback escalation approvers.| |fallbackPrimaryApprovers|[subjectSet](../resources/subjectset.md) collection|The subjects, typically users, who are the fallback primary approvers.| |isApproverJustificationRequired|Boolean|Indicates whether the approver is required to provide a justification for approving a request.| |isEscalationEnabled|Boolean|If `true`, then one or more **escalationApprovers** are configured in this approval stage.| -|primaryApprovers|[subjectSet](../resources/subjectset.md) collection|The subjects, typically users, who will be asked to approve requests. A collection of [singleUser](singleuser.md), [groupMembers](groupmembers.md), [requestorManager](requestormanager.md), [internalSponsors](internalsponsors.md), [externalSponsors](externalsponsors.md), or [targetUserSponsors](targetusersponsors.md).| +|primaryApprovers|[subjectSet](../resources/subjectset.md) collection|The subjects, typically users, who are asked to approve requests. A collection of [singleUser](singleuser.md), [groupMembers](groupmembers.md), [requestorManager](requestormanager.md), [internalSponsors](internalsponsors.md), [externalSponsors](externalsponsors.md), or [targetUserSponsors](targetusersponsors.md).| ### approverInformationVisibility values @@ -37,7 +37,7 @@ Used for the **stages** property of approval settings in an [access package assi | default | Use the default system setting for approver information visibility.| | notVisible | Approver information isn't visible to the requestor. | | visible | Approver information is visible to the requestor. | -| unknownFutureValue | Evolvable enumeration sentinel value. Don't use. | +| unknownFutureValue | Do not use. | ## Relationships None. diff --git a/api-reference/v1.0/api/accesspackagesuggestions-filterbycurrentuser.md b/api-reference/v1.0/api/accesspackagesuggestions-filterbycurrentuser.md new file mode 100644 index 00000000000..c56fe95a2a0 --- /dev/null +++ b/api-reference/v1.0/api/accesspackagesuggestions-filterbycurrentuser.md @@ -0,0 +1,192 @@ +--- +title: "accessPackageSuggestions: filterByCurrentUser" +description: "Retrieve suggested access packages for the current end user based on various criteria including related people insights." +ms.localizationpriority: medium +author: "myra-ramdenbourg" +ms.subservice: "entra-id-governance" +doc_type: "apiPageType" +ms.date: 05/14/2026 +--- + +# accessPackageSuggestions: filterByCurrentUser + +Namespace: microsoft.graph + +Retrieve suggested [accessPackageSuggestion](../resources/accesspackagesuggestion.md) objects for the current end user. This operation returns access packages that are suggested based on various criteria such as related people insights and the user's assignment history. + +The suggestions help end users discover relevant access packages they may need for their role or work context. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/accesspackagesuggestions-filterbycurrentuser-permissions.md)] + +## HTTP request + + + +```http +GET /identityGovernance/entitlementManagement/accessPackageSuggestions/filterByCurrentUser(on='{on}') +``` + +## Function parameters + +In the request URL, provide the following query parameters with values. + +| Parameter | Type |Description| +|:-------------|:-------|:----------| +|on|accessPackageSuggestionFilterByCurrentUserOptions|Filter to determine which suggestions to return. This is a flags enum that allows multiple values to be specified. The possible values are: `none`, `relatedPeopleAssignments`, `assignmentHistory`, `unknownFutureValue`.| + +## Request headers + +| Name |Description| +|:----------|:----------| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a collection of [accessPackageSuggestion](../resources/accesspackagesuggestion.md) objects in the response body. + +## Examples + +### Example 1: Get all access package suggestions with default insight types + +#### Request + +The following example shows a request. + + + +```msgraph-interactive +GET https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/accessPackageSuggestions/filterByCurrentUser(on='relatedPeopleAssignments,assignmentHistory')?$expand=accessPackage +``` + +#### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#identityGovernance/entitlementManagement/accessPackageSuggestions/filterByCurrentUser(on='relatedPeopleAssignments,assignmentHistory')", + "value": [ + { + "id": "51b4bd29-cb2d-ef11-8b5f-20c19bd3bce6", + "reasons": [ + { + "@odata.type": "#microsoft.graph.accessPackageSuggestionRelatedPeopleBased", + "relatedPeopleAssignmentCount": 2 + }, + { + "@odata.type": "#microsoft.graph.accessPackageSuggestionSelfAssignmentHistoryBased", + "pastAssignmentCount": 2, + "lastAssignmentDateTime": "2024-08-08T19:13:50.023Z" + } + ], + "accessPackage": { + "id": "51b4bd29-cb2d-ef11-8b5f-20c19bd3bce6", + "displayName": "Marketing Team Access", + "description": "Access package providing marketing team resources and permissions" + } + }, + { + "id": "fa6338d0-d12d-ef11-8b5f-20c19bd3bce6", + "reasons": [ + { + "@odata.type": "#microsoft.graph.accessPackageSuggestionRelatedPeopleBased", + "relatedPeopleAssignmentCount": 3 + } + ], + "accessPackage": { + "id": "fa6338d0-d12d-ef11-8b5f-20c19bd3bce6", + "displayName": "Engineering Team Access", + "description": "Access package for engineering resources" + } + } + ] +} +``` + +### Example 2: Get access package suggestions based on assignment history + +#### Request + +The following example shows a request. + + + +```msgraph-interactive +GET https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/accessPackageSuggestions/filterByCurrentUser(on='assignmentHistory')?$expand=accessPackage +``` + +#### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#identityGovernance/entitlementManagement/accessPackageSuggestions/filterByCurrentUser(on='assignmentHistory')", + "value": [ + { + "id": "97ce41d0-fc5c-4e10-a979-1ad18e8242d7", + "reasons": [ + { + "@odata.type": "#microsoft.graph.accessPackageSuggestionSelfAssignmentHistoryBased", + "pastAssignmentCount": 3, + "lastAssignmentDateTime": "2024-11-28T01:28:15.313Z" + } + ], + "accessPackage": { + "id": "97ce41d0-fc5c-4e10-a979-1ad18e8242d7", + "displayName": "Sales Team Access", + "description": "Access package for sales team" + } + } + ] +} +``` + + diff --git a/api-reference/v1.0/api/availableaccesspackage-list-resourcerolescopes.md b/api-reference/v1.0/api/availableaccesspackage-list-resourcerolescopes.md new file mode 100644 index 00000000000..75a9893025f --- /dev/null +++ b/api-reference/v1.0/api/availableaccesspackage-list-resourcerolescopes.md @@ -0,0 +1,93 @@ +--- +title: "List resourceRoleScopes" +description: "Retrieve the resource role scopes for an available access package to provide resource details to end users." +ms.localizationpriority: medium +author: "myra-ramdenbourg" +ms.subservice: "entra-id-governance" +doc_type: "apiPageType" +ms.date: 05/14/2026 +--- + +# List resourceRoleScopes + +Namespace: microsoft.graph + +Get a list of the [accessPackageResourceRoleScope](../resources/accesspackageresourcerolescope.md) objects associated with an [availableAccessPackage](../resources/availableaccesspackage.md). + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/availableaccesspackage-list-resourcerolescopes-permissions.md)] + +> [!NOTE] +> This API call follows Entitlement Management scope rules. It only returns resource role scopes that the signed‑in user is allowed to see or request. Being an admin doesn't override these checks—admins also need to be in scope for the access package to retrieve its resource role scopes. + +## HTTP request + + + +```http +GET /identityGovernance/entitlementManagement/availableAccessPackages/{availableAccessPackage-id}/resourceRoleScopes +``` + +## Optional query parameters + +This method supports the `$select`, `$expand`, `$filter`, and `$top` OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). + +## Request headers + +| Name |Description| +|:----------|:----------| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a collection of [accessPackageResourceRoleScope](../resources/accesspackageresourcerolescope.md) objects in the response body. + +## Examples + +### Request + +The following example shows a request. + + + +```msgraph-interactive +GET https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/availableAccessPackages/360fa7de-90be-48dc-a2ce-fc40094a93dd/resourceRoleScopes +``` + +### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#identityGovernance/entitlementManagement/availableAccessPackages('360fa7de-90be-48dc-a2ce-fc40094a93dd')/resourceRoleScopes", + "value": [ + { + "id": "c8f7be1e-3e35-4c80-b4f1-7c9ec23bbf77_9b5e1b3d-e4c2-4b8a-8f5b-2a3c9d4e5f6b", + "createdDateTime": "2024-01-15T09:30:00Z" + } + ] +} +``` diff --git a/api-reference/v1.0/api/endusersettings-get.md b/api-reference/v1.0/api/endusersettings-get.md new file mode 100644 index 00000000000..6a1ac366f54 --- /dev/null +++ b/api-reference/v1.0/api/endusersettings-get.md @@ -0,0 +1,88 @@ +--- +title: "Get end user settings" +description: "Read the properties and relationships of the end user settings in Entitlement Management." +ms.localizationpriority: medium +author: "myra-ramdenbourg" +ms.subservice: "entra-id-governance" +doc_type: "apiPageType" +ms.date: 05/14/2026 +--- + +# Get endUserSettings + +Namespace: microsoft.graph + +Read the properties and relationships of an [endUserSettings](../resources/endusersettings.md) object that controls the end user experience for access package suggestions and resource discovery. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/endusersettings-get-permissions.md)] + +[!INCLUDE [rbac-entitlement-identity-governance-read](../includes/rbac-for-apis/rbac-entitlement-identity-governance-admin-apis-read.md)] + +## HTTP request + + + +```http +GET /identityGovernance/entitlementManagement/controlConfigurations/endUserSettings +``` + +## Optional query parameters + +Not supported. + +## Request headers + +| Name |Description| +|:----------|:----------| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and an [endUserSettings](../resources/endusersettings.md) object in the response body. + +## Examples + +### Request + +The following example shows a request. + + + +```msgraph-interactive +GET https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/controlConfigurations/endUserSettings +``` + +### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#identityGovernance/entitlementManagement/controlConfigurations/endUserSettings", + "relatedPeopleInsightLevel": "countAndNames", + "showApproverDetailsToMembers": true +} +``` diff --git a/api-reference/v1.0/api/endusersettings-update.md b/api-reference/v1.0/api/endusersettings-update.md new file mode 100644 index 00000000000..5edf9d13f95 --- /dev/null +++ b/api-reference/v1.0/api/endusersettings-update.md @@ -0,0 +1,99 @@ +--- +title: "Update end user settings" +description: "Update the properties of an endUserSettings object." +ms.localizationpriority: medium +author: "myra-ramdenbourg" +ms.subservice: "entra-id-governance" +doc_type: "apiPageType" +ms.date: 05/14/2026 +--- + +# Update endUserSettings + +Namespace: microsoft.graph + +Update the properties of an [endUserSettings](../resources/endusersettings.md) object that controls the end user experience for access package suggestions and resource discovery. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/endusersettings-update-permissions.md)] + +[!INCLUDE [rbac-entitlement-identity-governance-write](../includes/rbac-for-apis/rbac-entitlement-identity-governance-admin-apis-write.md)] + +## HTTP request + + + +```http +PUT /identityGovernance/entitlementManagement/controlConfigurations/endUserSettings +``` + +## Request headers + +| Name | Description| +|:-----------|:-----------| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| +|Content-Type|application/json. Required.| + +## Request body + +In the request body, supply a JSON representation of the [endUserSettings](../resources/endusersettings.md) object. + +The following table shows the properties that are required when you update the [endUserSettings](../resources/endusersettings.md). + +|Property|Type|Description| +|:---|:---|:---| +|relatedPeopleInsightLevel|accessPackageSuggestionRelatedPeopleInsightLevel|The level of related people insights to show in access package suggestions. The possible values are: `disabled`, `count`, `countAndNames`, `unknownFutureValue`.| +|showApproverDetailsToMembers|Boolean|Indicates whether approver details are shown to members. When `true`, approver information is visible to members.| + +## Response + +If successful, this method returns a `200 OK` response code and an updated [endUserSettings](../resources/endusersettings.md) object in the response body. + +## Examples + +### Request + +The following example shows a request. + + + +```http +PUT https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/controlConfigurations/endUserSettings +Content-type: application/json + +{ + "@odata.type": "#microsoft.graph.endUserSettings", + "relatedPeopleInsightLevel": "countAndNames", + "showApproverDetailsToMembers": true +} +``` + +### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#identityGovernance/entitlementManagement/controlConfigurations/endUserSettings", + "relatedPeopleInsightLevel": "countAndNames", + "showApproverDetailsToMembers": true +} +``` diff --git a/api-reference/v1.0/includes/permissions/accesspackagesuggestions-filterbycurrentuser-permissions.md b/api-reference/v1.0/includes/permissions/accesspackagesuggestions-filterbycurrentuser-permissions.md new file mode 100644 index 00000000000..dcc22a68490 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/accesspackagesuggestions-filterbycurrentuser-permissions.md @@ -0,0 +1,11 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| diff --git a/api-reference/v1.0/includes/permissions/availableaccesspackage-list-resourcerolescopes-permissions.md b/api-reference/v1.0/includes/permissions/availableaccesspackage-list-resourcerolescopes-permissions.md new file mode 100644 index 00000000000..dcc22a68490 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/availableaccesspackage-list-resourcerolescopes-permissions.md @@ -0,0 +1,11 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| diff --git a/api-reference/v1.0/includes/permissions/endusersettings-get-permissions.md b/api-reference/v1.0/includes/permissions/endusersettings-get-permissions.md new file mode 100644 index 00000000000..dcc22a68490 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/endusersettings-get-permissions.md @@ -0,0 +1,11 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| diff --git a/api-reference/v1.0/includes/permissions/endusersettings-update-permissions.md b/api-reference/v1.0/includes/permissions/endusersettings-update-permissions.md new file mode 100644 index 00000000000..142aea0a481 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/endusersettings-update-permissions.md @@ -0,0 +1,11 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|EntitlementManagement.ReadWrite.All|Not available.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|EntitlementManagement.ReadWrite.All|Not available.| diff --git a/api-reference/v1.0/resources/accesspackageapprovalstage.md b/api-reference/v1.0/resources/accesspackageapprovalstage.md index 18a83701896..7668ba5dc8d 100644 --- a/api-reference/v1.0/resources/accesspackageapprovalstage.md +++ b/api-reference/v1.0/resources/accesspackageapprovalstage.md @@ -16,14 +16,24 @@ Used for the **stages** property of [approval settings](accesspackageassignmenta ## Properties |Property|Type|Description| |:---|:---|:---| +|approverInformationVisibility|[approverInformationVisibility](#approverinformationvisibility-values)|Indicates whether approver information is visible to the requestor. The possible values are: `default`, `notVisible`, `visible`, `unknownFutureValue`.| |durationBeforeAutomaticDenial|Duration|The number of days that a request can be pending a response before it is automatically denied.| |durationBeforeEscalation|Duration|If escalation is required, the time a request can be pending a response from a primary approver.| -|escalationApprovers|[subjectSet](../resources/subjectset.md) collection|If escalation is enabled and the primary approvers do not respond before the escalation time, the escalationApprovers are the users who will be asked to approve requests. | +|escalationApprovers|[subjectSet](../resources/subjectset.md) collection|If escalation is enabled and the primary approvers do not respond before the escalation time, the escalationApprovers are the users who are asked to approve requests. | |fallbackEscalationApprovers|[subjectSet](../resources/subjectset.md) collection|The subjects, typically users, who are the fallback escalation approvers.| |fallbackPrimaryApprovers|[subjectSet](../resources/subjectset.md) collection|The subjects, typically users, who are the fallback primary approvers.| |isApproverJustificationRequired|Boolean|Indicates whether the approver is required to provide a justification for approving a request.| |isEscalationEnabled|Boolean|If `true`, then one or more **escalationApprovers** are configured in this approval stage.| -|primaryApprovers|[subjectSet](../resources/subjectset.md) collection|The subjects, typically users, who will be asked to approve requests. A collection of [singleUser](singleuser.md), [groupMembers](groupmembers.md), [requestorManager](requestormanager.md), [internalSponsors](internalsponsors.md), [externalSponsors](externalsponsors.md), or [targetUserSponsors](targetusersponsors.md).| +|primaryApprovers|[subjectSet](../resources/subjectset.md) collection|The subjects, typically users, who are asked to approve requests. A collection of [singleUser](singleuser.md), [groupMembers](groupmembers.md), [requestorManager](requestormanager.md), [internalSponsors](internalsponsors.md), [externalSponsors](externalsponsors.md), or [targetUserSponsors](targetusersponsors.md).| + +### approverInformationVisibility values + +| Member | Description | +|:-------------------|:-------------------------------------------------------------------| +| default | Use the default system setting for approver information visibility.| +| notVisible | Approver information is not visible to the requestor. | +| visible | Approver information is visible to the requestor. | +| unknownFutureValue | Do not use. | ## Relationships None. @@ -37,6 +47,7 @@ The following JSON representation shows the resource type. ``` json { "@odata.type": "#microsoft.graph.accessPackageApprovalStage", + "approverInformationVisibility": "String", "durationBeforeAutomaticDenial": "String (duration)", "durationBeforeEscalation": "String (duration)", "escalationApprovers": [ diff --git a/api-reference/v1.0/resources/accesspackagesuggestion.md b/api-reference/v1.0/resources/accesspackagesuggestion.md new file mode 100644 index 00000000000..12ee6c8b921 --- /dev/null +++ b/api-reference/v1.0/resources/accesspackagesuggestion.md @@ -0,0 +1,71 @@ +--- +title: "accessPackageSuggestion resource type" +description: "Represents a suggested access package with associated suggestion reasons for an end user." +ms.localizationpriority: medium +author: "myra-ramdenbourg" +ms.subservice: "entra-id-governance" +doc_type: "resourcePageType" +ms.date: 05/14/2026 +--- + +# accessPackageSuggestion resource type + +Namespace: microsoft.graph + +Represents a suggested access package with associated suggestion reasons in [Microsoft Entra entitlement management](../resources/entitlementmanagement-overview.md). Access packages are suggested to end users based on various criteria such as related people insights and assignment history. + +## Methods + +| Method | Return Type | Description | +|:-------------|:------------|:------------| +| [Filter by current user](../api/accesspackagesuggestions-filterbycurrentuser.md) | [accessPackageSuggestion](accesspackagesuggestion.md) collection | Retrieve suggested access packages for the current end user based on various criteria including related people insights. | + +## Properties + +| Property | Type | Description | +|:-------------|:------------|:------------| +|id|String|The identifier of the suggested access package. Read-only.| +|reasons|Collection([accessPackageSuggestionReason](../resources/accesspackagesuggestionreason.md))|A collection of reasons why this access package is being suggested to the user.| + +## Relationships + +| Relationship | Type | Description | +|:-------------|:------------|:------------| +|accessPackage|[availableAccessPackage](../resources/availableaccesspackage.md)|The access package information for the suggested package.| + +## JSON representation + +The following JSON representation shows the resource type. + + + +```json +{ + "@odata.type": "#microsoft.graph.accessPackageSuggestion", + "id": "String", + "reasons": [ + { + "@odata.type": "microsoft.graph.accessPackageSuggestionReason" + } + ], + "accessPackage": { + "@odata.type": "microsoft.graph.availableAccessPackage" + } +} +``` + + + diff --git a/api-reference/v1.0/resources/accesspackagesuggestionreason.md b/api-reference/v1.0/resources/accesspackagesuggestionreason.md new file mode 100644 index 00000000000..c2dd3be0404 --- /dev/null +++ b/api-reference/v1.0/resources/accesspackagesuggestionreason.md @@ -0,0 +1,53 @@ +--- +title: "accessPackageSuggestionReason resource type" +description: "Base type for reasons why an access package is suggested to an end user." +ms.localizationpriority: medium +author: "myra-ramdenbourg" +ms.subservice: "entra-id-governance" +doc_type: "resourcePageType" +ms.date: 05/14/2026 +--- + +# accessPackageSuggestionReason resource type + +Namespace: microsoft.graph + +Base type for **reasons** why an [access package is suggested](../resources/accesspackagesuggestion.md) to an end user in [Microsoft Entra entitlement management](../resources/entitlementmanagement-overview.md). This is an abstract type that is inherited by more specific suggestion reason types. + +Base type of [accessPackageSuggestionRelatedPeopleBased](../resources/accesspackagesuggestionrelatedpeoplebased.md) and [accessPackageSuggestionSelfAssignmentHistoryBased](../resources/accesspackagesuggestionselfassignmenthistorybased.md). + +## Properties + +None. + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + + +```json +{ + "@odata.type": "microsoft.graph.accessPackageSuggestionReason" +} +``` + + + diff --git a/api-reference/v1.0/resources/accesspackagesuggestionrelatedpeoplebased.md b/api-reference/v1.0/resources/accesspackagesuggestionrelatedpeoplebased.md new file mode 100644 index 00000000000..3e106e03b3c --- /dev/null +++ b/api-reference/v1.0/resources/accesspackagesuggestionrelatedpeoplebased.md @@ -0,0 +1,64 @@ +--- +title: "accessPackageSuggestionRelatedPeopleBased resource type" +description: "Represents access package suggestions based on related people insights, including related user identities." +ms.localizationpriority: medium +author: "myra-ramdenbourg" +ms.subservice: "entra-id-governance" +doc_type: "resourcePageType" +ms.date: 05/14/2026 +--- + +# accessPackageSuggestionRelatedPeopleBased resource type + +Namespace: microsoft.graph + +Represents access package suggestions that are based on related people insights in [Microsoft Entra entitlement management](../resources/entitlementmanagement-overview.md). This suggestion type includes information about related users who may have access to similar resources, helping to provide contextual suggestions to end users. + +Inherits from [accessPackageSuggestionReason](../resources/accesspackagesuggestionreason.md). + +## Properties + +| Property | Type | Description | +|:-------------|:------------|:------------| +|relatedPeople|Collection([identity](../resources/identity.md))|A collection of identities representing people related to the current user who may have access to similar resources. This property is only populated when the tenant's endUserSettings have `relatedPeopleInsightLevel` set to `countAndNames`. This includes both the user ID and display name information.| +|relatedPeopleAssignmentCount|Int32|The number of related people who have assignments to this access package. This count is always provided regardless of the `relatedPeopleInsightLevel` setting.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + + +```json +{ + "@odata.type": "#microsoft.graph.accessPackageSuggestionRelatedPeopleBased", + "relatedPeopleAssignmentCount": "Int32", + "relatedPeople": [ + { + "@odata.type": "microsoft.graph.identity", + "id": "String", + "displayName": "String" + } + ] +} +``` + + + diff --git a/api-reference/v1.0/resources/accesspackagesuggestionselfassignmenthistorybased.md b/api-reference/v1.0/resources/accesspackagesuggestionselfassignmenthistorybased.md new file mode 100644 index 00000000000..ad34d068f58 --- /dev/null +++ b/api-reference/v1.0/resources/accesspackagesuggestionselfassignmenthistorybased.md @@ -0,0 +1,58 @@ +--- +title: "accessPackageSuggestionSelfAssignmentHistoryBased resource type" +description: "Represents access package suggestions based on the user's own assignment history." +ms.localizationpriority: medium +author: "myra-ramdenbourg" +ms.subservice: "entra-id-governance" +doc_type: "resourcePageType" +ms.date: 05/14/2026 +--- + +# accessPackageSuggestionSelfAssignmentHistoryBased resource type + +Namespace: microsoft.graph + +Represents access package suggestions that are based on the user's own assignment history in [Microsoft Entra entitlement management](../resources/entitlementmanagement-overview.md). This suggestion type helps users rediscover access packages they have previously been assigned to. + +Inherits from [accessPackageSuggestionReason](../resources/accesspackagesuggestionreason.md). + +## Properties + +| Property | Type | Description | +|:-------------|:------------|:------------| +|lastAssignmentDateTime|DateTimeOffset|The date and time when the user was last assigned to this access package. The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Read-only.| +|pastAssignmentCount|Int32|The number of times the user has been assigned to this access package in the past. Read-only.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + + +```json +{ + "@odata.type": "#microsoft.graph.accessPackageSuggestionSelfAssignmentHistoryBased", + "pastAssignmentCount": "Int32", + "lastAssignmentDateTime": "String (timestamp)" +} +``` + + + diff --git a/api-reference/v1.0/resources/availableaccesspackage.md b/api-reference/v1.0/resources/availableaccesspackage.md new file mode 100644 index 00000000000..1dcbaef192e --- /dev/null +++ b/api-reference/v1.0/resources/availableaccesspackage.md @@ -0,0 +1,69 @@ +--- +title: "availableAccessPackage resource type" +description: "Represents basic access package information available to end users for access package suggestions and resource discovery." +ms.localizationpriority: medium +author: "myra-ramdenbourg" +ms.subservice: "entra-id-governance" +doc_type: "resourcePageType" +ms.date: 05/14/2026 +--- + +# availableAccessPackage resource type + +Namespace: microsoft.graph + +In [Microsoft Entra Entitlement Management](../resources/entitlementmanagement-overview.md), an available access package represents basic access package information (id, displayName, description) that is exposed to end users for [suggestions](../resources/accesspackagesuggestion.md) and [resource discovery](../api/availableaccesspackage-list-resourcerolescopes.md) purposes. + +This resource provides a simplified view of access packages that can be used in scenarios where end users need to browse available packages without requiring full access package details. + +## Methods + +| Method | Return Type | Description | +|:-------------|:------------|:------------| +| [List resourceRoleScopes](../api/availableaccesspackage-list-resourcerolescopes.md) | [accessPackageResourceRoleScope](../resources/accesspackageresourcerolescope.md) collection | Retrieve the resource role scopes for an available access package. | + +## Properties + +| Property | Type | Description | +|:-------------|:------------|:------------| +|description|String|The description of the access package.| +|displayName|String|The display name of the access package.| +|id|String|Identifier of the access package. Read-only.| + +## Relationships + +| Relationship | Type | Description | +|:-------------|:------------|:------------| +|resourceRoleScopes|[accessPackageResourceRoleScope](../resources/accesspackageresourcerolescope.md) collection|The resource role scopes associated with this available access package.| + +## JSON representation + +The following JSON representation shows the resource type. + + + +```json +{ + "@odata.type": "#microsoft.graph.availableAccessPackage", + "id": "String (identifier)", + "displayName": "String", + "description": "String" +} +``` + + + diff --git a/api-reference/v1.0/resources/controlconfiguration.md b/api-reference/v1.0/resources/controlconfiguration.md new file mode 100644 index 00000000000..34d3cdf9fe1 --- /dev/null +++ b/api-reference/v1.0/resources/controlconfiguration.md @@ -0,0 +1,56 @@ +--- +title: "controlConfiguration resource type" +description: "Defines the lifecycle and access policies of Entitlement Management within a tenant." +author: "myra-ramdenbourg" +ms.date: 05/14/2026 +ms.localizationpriority: medium +ms.subservice: "entra-id-governance" +doc_type: resourcePageType +--- + +# controlConfiguration resource type + +Namespace: microsoft.graph + +Defines the lifecycle and access policies of Entitlement Management within a tenant. Abstract type from which the [endUserSettings](../resources/endusersettings.md) resource is derived. + +Inherits from [entity](../resources/entity.md). + +## Methods + +None. + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|createdBy|String|The userPrincipalName of the user or identity that created the control configuration.| +|createdDateTime|DateTimeOffset|The date and time the control configuration was created.| +|id|String|The unique identifier for the control configuration. Inherited from [entity](../resources/entity.md).| +|isEnabled|Boolean|Determines whether or not the control configuration is enabled.| +|modifiedBy|String|The userPrincipalName of the user or identity that modified the control configuration.| +|modifiedDateTime|DateTimeOffset|The date and time the control configuration was modified.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.controlConfiguration", + "id": "String (identifier)", + "isEnabled": "Boolean", + "createdBy": "String", + "createdDateTime": "String (timestamp)", + "modifiedBy": "String", + "modifiedDateTime": "String (timestamp)" +} +``` diff --git a/api-reference/v1.0/resources/endusersettings.md b/api-reference/v1.0/resources/endusersettings.md new file mode 100644 index 00000000000..b62b87bf288 --- /dev/null +++ b/api-reference/v1.0/resources/endusersettings.md @@ -0,0 +1,66 @@ +--- +title: "endUserSettings resource type" +description: "Settings that control the end user experience for access package suggestions and resource discovery in Microsoft Entra entitlement management." +ms.localizationpriority: medium +author: "myra-ramdenbourg" +ms.subservice: "entra-id-governance" +doc_type: "resourcePageType" +ms.date: 05/14/2026 +--- + +# endUserSettings resource type + +Namespace: microsoft.graph + +Represents settings that control the end user experience for access package suggestions and resource discovery in [Microsoft Entra entitlement management](../resources/entitlementmanagement-overview.md). These settings configure how suggestions are provided to end users and what level of related people insights are shown. + +Inherits from [controlConfiguration](../resources/controlconfiguration.md). + +## Methods + +| Method | Return Type | Description | +|:-------------|:------------|:------------| +| [Get](../api/endusersettings-get.md) | [endUserSettings](endusersettings.md) | Read the properties and relationships of an **endUserSettings** object. | +| [Update](../api/endusersettings-update.md) | [endUserSettings](endusersettings.md) | Update the properties of an **endUserSettings** object. | + +## Properties + +| Property | Type | Description | +|:-------------|:------------|:------------| +|relatedPeopleInsightLevel|accessPackageSuggestionRelatedPeopleInsightLevel|The level of related people insights to show in access package suggestions. The possible values are: `disabled`, `count`, `countAndNames`, `unknownFutureValue`.| +|showApproverDetailsToMembers|Boolean|Indicates whether approver details are shown to end users. When `true`, approver information is visible to members.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + + +```json +{ + "@odata.type": "#microsoft.graph.endUserSettings", + "relatedPeopleInsightLevel": "String", + "showApproverDetailsToMembers": "Boolean" +} +``` + + + diff --git a/api-reference/v1.0/resources/entitlementmanagement.md b/api-reference/v1.0/resources/entitlementmanagement.md index c5bd739f23e..fd952a37b73 100644 --- a/api-reference/v1.0/resources/entitlementmanagement.md +++ b/api-reference/v1.0/resources/entitlementmanagement.md @@ -28,11 +28,14 @@ None. |:---|:---|:---| |accessPackageAssignmentApprovals|[approval](../resources/approval.md) collection | Approval stages for decisions associated with access package assignment requests.| |accessPackages|[accessPackage](../resources/accesspackage.md) collection|Access packages define the collection of resource roles and the policies for which subjects can request or be assigned access to those resources.| +|accessPackageSuggestions|[accessPackageSuggestion](../resources/accesspackagesuggestion.md) collection|Suggested access packages for end users based on various criteria such as related people insights and assignment history.| +|availableAccessPackages|[availableAccessPackage](../resources/availableaccesspackage.md) collection|Access packages available for end users to browse and request.| |assignmentPolicies|[accessPackageAssignmentPolicy](../resources/accesspackageassignmentpolicy.md) collection|Access package assignment policies govern which subjects can request or be assigned an access package via an access package assignment.| |assignmentRequests|[accessPackageAssignmentRequest](../resources/accesspackageassignmentrequest.md) collection|Access package assignment requests created by or on behalf of a subject.| |assignments|[accessPackageAssignment](../resources/accesspackageassignment.md) collection| The assignment of an access package to a subject for a period of time.| |catalogs|[accessPackageCatalog](../resources/accesspackagecatalog.md) collection|A container for access packages.| |connectedOrganizations|[connectedOrganization](../resources/connectedorganization.md) collection|References to a directory or domain of another organization whose users can request access.| +|controlConfigurations|[controlConfiguration](../resources/controlconfiguration.md) collection|Configuration settings that control the lifecycle and access policies of entitlement management within a tenant.| |resourceEnvironments|[accessPackageResourceEnvironment](../resources/accesspackageresourceenvironment.md) collection| A reference to the geolocation environments in which a resource is located.| |resourceRequests|[accessPackageResourceRequest](../resources/accesspackageresourcerequest.md) collection|Represents a request to add or remove a resource to or from a catalog respectively. | |resources|[accessPackageResource](../resources/accesspackageresource.md) collection|The resources associated with the catalogs. | diff --git a/api-reference/v1.0/resources/enums.md b/api-reference/v1.0/resources/enums.md index 74e42180039..3ca7919fd06 100644 --- a/api-reference/v1.0/resources/enums.md +++ b/api-reference/v1.0/resources/enums.md @@ -798,6 +798,33 @@ Namespace: microsoft.graph | allowedRequestor | | unknownFutureValue | +### accessPackageSuggestionFilterByCurrentUserOptions values + +| Member | +| ---- | +| none | +| relatedPeopleAssignments | +| assignmentHistory | +| unknownFutureValue | + +### accessPackageSuggestionRelatedPeopleInsightLevel values + +| Member | +| ---- | +| disabled | +| count | +| countAndNames | +| unknownFutureValue | + +### approverInformationVisibility values + +| Member | +| ---- | +| default | +| notVisible | +| visible | +| unknownFutureValue | + ### accessPackageRequestState values | Member | diff --git a/api-reference/v1.0/resources/identity.md b/api-reference/v1.0/resources/identity.md index 6e8e4a24567..56619667bef 100644 --- a/api-reference/v1.0/resources/identity.md +++ b/api-reference/v1.0/resources/identity.md @@ -14,7 +14,7 @@ Namespace: microsoft.graph Represents an identity of an _actor_. For example, an actor can be a user, device, or application. Multiple Microsoft Graph APIs share this resource and the data they return varies depending on the API. -Base type of [userIdentity](useridentity.md). +Base type of [userIdentity](useridentity.md). ## Properties diff --git a/api-reference/v1.0/toc/toc.mapping.json b/api-reference/v1.0/toc/toc.mapping.json index ff7b6b61ecc..95fcebd97de 100644 --- a/api-reference/v1.0/toc/toc.mapping.json +++ b/api-reference/v1.0/toc/toc.mapping.json @@ -931,7 +931,10 @@ "accessPackageAssignmentRequestWorkflowExtension", "accessPackageAssignmentWorkflowExtension", "accessPackageSubject", + "accessPackageSuggestion", + "availableAccessPackage", "connectedOrganization", + "endUserSettings", "entitlementManagementSettings" ], "complexTypes": [ @@ -953,6 +956,9 @@ "accessPackageResourceAttributeQuestion", "accessPackageResourceAttributeSource", "accessPackageResourceScope", + "accessPackageSuggestionReason", + "accessPackageSuggestionRelatedPeopleBased", + "accessPackageSuggestionSelfAssignmentHistoryBased", "accessPackageTextInputQuestion", "accessPackageUserDirectoryAttributeStore", "attributeRuleMembers", diff --git a/changelog/Microsoft.IGAELM.json b/changelog/Microsoft.IGAELM.json index ff85bf74caa..ad446837d4f 100644 --- a/changelog/Microsoft.IGAELM.json +++ b/changelog/Microsoft.IGAELM.json @@ -44,6 +44,144 @@ "WorkloadArea": "Identity and access", "SubArea": "Governance" }, + { + "ChangeList": [ + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Enumeration", + "ChangedApiName": "accessPackageSuggestionFilterByCurrentUserOptions", + "ChangeType": "Addition", + "Description": "Added the **accessPackageSuggestionFilterByCurrentUserOptions** enumeration type.", + "Target": "accessPackageSuggestionFilterByCurrentUserOptions" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Enumeration", + "ChangedApiName": "accessPackageSuggestionRelatedPeopleInsightLevel", + "ChangeType": "Addition", + "Description": "Added the **accessPackageSuggestionRelatedPeopleInsightLevel** enumeration type.", + "Target": "accessPackageSuggestionRelatedPeopleInsightLevel" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Enumeration", + "ChangedApiName": "approverInformationVisibility", + "ChangeType": "Addition", + "Description": "Added the **approverInformationVisibility** enumeration type.", + "Target": "approverInformationVisibility" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Property", + "ChangedApiName": "approverInformationVisibility", + "ChangeType": "Addition", + "Description": "Added the **approverInformationVisibility** property to the [accessPackageApprovalStage](https://learn.microsoft.com/en-us/graph/api/resources/accessPackageApprovalStage?view=graph-rest-1.0) resource.", + "Target": "accessPackageApprovalStage" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Resource", + "ChangedApiName": "accessPackageSuggestionReason", + "ChangeType": "Addition", + "Description": "Added the [accessPackageSuggestionReason](https://learn.microsoft.com/en-us/graph/api/resources/accessPackageSuggestionReason?view=graph-rest-1.0) resource.", + "Target": "accessPackageSuggestionReason" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Resource", + "ChangedApiName": "accessPackageSuggestionRelatedPeopleBased", + "ChangeType": "Addition", + "Description": "Added the [accessPackageSuggestionRelatedPeopleBased](https://learn.microsoft.com/en-us/graph/api/resources/accessPackageSuggestionRelatedPeopleBased?view=graph-rest-1.0) resource.", + "Target": "accessPackageSuggestionRelatedPeopleBased" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Resource", + "ChangedApiName": "accessPackageSuggestionSelfAssignmentHistoryBased", + "ChangeType": "Addition", + "Description": "Added the [accessPackageSuggestionSelfAssignmentHistoryBased](https://learn.microsoft.com/en-us/graph/api/resources/accessPackageSuggestionSelfAssignmentHistoryBased?view=graph-rest-1.0) resource.", + "Target": "accessPackageSuggestionSelfAssignmentHistoryBased" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Resource", + "ChangedApiName": "identity", + "ChangeType": "Addition", + "Description": "Added the [identity](https://learn.microsoft.com/en-us/graph/api/resources/identity?view=graph-rest-1.0) resource.", + "Target": "identity" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Resource", + "ChangedApiName": "accessPackageSuggestion", + "ChangeType": "Addition", + "Description": "Added the [accessPackageSuggestion](https://learn.microsoft.com/en-us/graph/api/resources/accessPackageSuggestion?view=graph-rest-1.0) resource.", + "Target": "accessPackageSuggestion" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Resource", + "ChangedApiName": "availableAccessPackage", + "ChangeType": "Addition", + "Description": "Added the [availableAccessPackage](https://learn.microsoft.com/en-us/graph/api/resources/availableAccessPackage?view=graph-rest-1.0) resource.", + "Target": "availableAccessPackage" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Resource", + "ChangedApiName": "controlConfiguration", + "ChangeType": "Addition", + "Description": "Added the [controlConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/controlConfiguration?view=graph-rest-1.0) resource.", + "Target": "controlConfiguration" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Resource", + "ChangedApiName": "endUserSettings", + "ChangeType": "Addition", + "Description": "Added the [endUserSettings](https://learn.microsoft.com/en-us/graph/api/resources/endUserSettings?view=graph-rest-1.0) resource.", + "Target": "endUserSettings" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Relationship", + "ChangedApiName": "accessPackageSuggestions", + "ChangeType": "Addition", + "Description": "Added the **accessPackageSuggestions** relationship to the [entitlementManagement](https://learn.microsoft.com/en-us/graph/api/resources/entitlementManagement?view=graph-rest-1.0) resource.", + "Target": "entitlementManagement" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Relationship", + "ChangedApiName": "availableAccessPackages", + "ChangeType": "Addition", + "Description": "Added the **availableAccessPackages** relationship to the [entitlementManagement](https://learn.microsoft.com/en-us/graph/api/resources/entitlementManagement?view=graph-rest-1.0) resource.", + "Target": "entitlementManagement" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Relationship", + "ChangedApiName": "controlConfigurations", + "ChangeType": "Addition", + "Description": "Added the **controlConfigurations** relationship to the [entitlementManagement](https://learn.microsoft.com/en-us/graph/api/resources/entitlementManagement?view=graph-rest-1.0) resource.", + "Target": "entitlementManagement" + }, + { + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "ApiChange": "Method", + "ChangedApiName": "filterByCurrentUser", + "ChangeType": "Addition", + "Description": "Added the [filterByCurrentUser](https://learn.microsoft.com/en-us/graph/api/accesspackagesuggestions-filterbycurrentuser?view=graph-rest-1.0) method to the [accessPackageSuggestion](https://learn.microsoft.com/en-us/graph/api/resources/accessPackageSuggestion?view=graph-rest-1.0) resource.", + "Target": "accessPackageSuggestion" + } + ], + "Id": "d4910c51-0334-42b7-b02b-321ff559a251", + "Cloud": "Prod", + "Version": "v1.0", + "CreatedDateTime": "2026-06-18T20:13:08.3813013Z", + "WorkloadArea": "Identity and access", + "SubArea": "Governance" + }, { "ChangeList": [ { diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index c27328162f2..c2fba1ff9ce 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -36,6 +36,12 @@ Added the **type** property to the [accessPackageResourceRole](/graph/api/resour Added support for programmatic FIDO2 passkey registration. Use the [creationOptions](/graph/api/fido2authenticationmethod-creationoptions) function to get WebAuthn credential creation options, then complete registration by posting the new **publicKeyCredential** property to the [fido2AuthenticationMethod](/graph/api/resources/fido2authenticationmethod) resource. +### Identity and access | Governance + +- Added the [accessPackageSuggestion](/graph/api/resources/accesspackagesuggestion) resource type and related methods for discovering suggested access packages based on related people insights and assignment history. Use the [filterByCurrentUser](/graph/api/accesspackagesuggestions-filterbycurrentuser) function to retrieve personalized suggestions. +- Added the **approverInformationVisibility** property to the [accessPackageApprovalStage](/graph/api/resources/accesspackageapprovalstage) resource to control whether approver information is visible to requestors. +- Added the [endUserSettings](/graph/api/resources/endusersettings) resource type and related methods for configuring access package suggestion behavior, including related people insight levels and approver detail visibility. + ### People and workplace intelligence - Updated [Manage profile source precedence in Microsoft 365](/graph/profilepriority-configure-profilepropertysetting) to clarify supported data sources for HR and work position data, explain how source precedence affects single-value versus multi-value properties, and add guidance on correctly configuring and removing tenant-level settings using the Microsoft Graph API or PowerShell. From 34ef8ea6c2bf64ee9c61d6f60324981d2abc9d43 Mon Sep 17 00:00:00 2001 From: Ortagus Winfrey <85191667+OWinfreyATL@users.noreply.github.com> Date: Thu, 18 Jun 2026 14:22:41 -0400 Subject: [PATCH 08/52] Add roleType enum to v1.0 (#28826) * Add roleType enum to v1.0 enums.md Promote the roleType enum values (active, eligible, application, delegated, unknownFutureValue) from beta to v1.0 enums.md. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update accessPackageResourceRole and accessPackageResourceScope for roleType promotion Add type property (roleType) to accessPackageResourceRole, update originSystem to include AzureResources, and update accessPackageResourceScope property descriptions to match beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Add Example 4: Active Subscription scoped to Resource Group role Add example showing how to add an active Subscription scoped to a Resource Group Resource Role to an access package. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Add Example 5: Eligible Management Group Resource Role Add example showing how to add an eligible Management Group Resource Role to an access package. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Add Example 6: Active Subscription Resource Role to access package Add example showing how to add an Active Subscription Resource Role to an access package. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Add Example 6: Add Management Group Resource to catalog Add example showing how to add a Management Group resource to an access package catalog. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Add Example 7: Add Subscription Resource to catalog Add example showing how to add a Subscription resource to an access package catalog. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Add changelog entry for roleType promotion to v1.0 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Fix indentation in accesspackage-post-accesspackageresourcerolescopes example Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Fix property ordering in accesspackage-post-resourcerolescopes example Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Fix indentation in accesspackage-post-accesspackageresourcerolescopes example Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update accesspackage-post-resourcerolescopes.md Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Spacing * Updates * Apply suggestion from @FaithOmbongi --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi --- ...ge-post-accesspackageresourcerolescopes.md | 8 +- .../accesspackage-post-resourcerolescopes.md | 199 ++++++++++++++++++ ...tlementmanagement-post-resourcerequests.md | 104 +++++++++ .../resources/accesspackageresourcerole.md | 6 +- .../resources/accesspackageresourcescope.md | 4 +- api-reference/v1.0/resources/enums.md | 10 + changelog/Microsoft.IGAELM.json | 26 +++ 7 files changed, 349 insertions(+), 8 deletions(-) diff --git a/api-reference/beta/api/accesspackage-post-accesspackageresourcerolescopes.md b/api-reference/beta/api/accesspackage-post-accesspackageresourcerolescopes.md index 4299039fcec..1d7236aae0d 100644 --- a/api-reference/beta/api/accesspackage-post-accesspackageresourcerolescopes.md +++ b/api-reference/beta/api/accesspackage-post-accesspackageresourcerolescopes.md @@ -449,10 +449,10 @@ Content-type: application/json "description": "/resourceGroups/rg", "displayName": "/resourceGroups/rg", "isRootScope": false, - "originSystem": "AzureResources", - "originId": "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/resourceGroups/rg" - } - } + "originSystem": "AzureResources", + "originId": "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/resourceGroups/rg" + } +} ``` # [C#](#tab/csharp) diff --git a/api-reference/v1.0/api/accesspackage-post-resourcerolescopes.md b/api-reference/v1.0/api/accesspackage-post-resourcerolescopes.md index 3ea6676a0e2..0005ddec903 100644 --- a/api-reference/v1.0/api/accesspackage-post-resourcerolescopes.md +++ b/api-reference/v1.0/api/accesspackage-post-resourcerolescopes.md @@ -321,3 +321,202 @@ Content-type: application/json "createdDateTime": "2023-06-28T01:19:48.4216782Z" } ``` + +### Example 4: Add an Active Subscription scoped to a Resource Group Resource Role to an access package + +#### Request + +The following example shows a request to add an active Subscription scoped to a Resource Group Resource Role to an access package. + +Before this request, you must have already added the access package resource `b09a0288-a83e-4ae6-8a53-bc09aeb966ea` for the Subscription `828b526f-c769-4b19-9797-734b4843b978` to the access package catalog containing this access package. The resource could have been added to the catalog by [creating an access package resource request](entitlementmanagement-post-resourcerequests.md). + + + +```http +POST https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/accessPackages/5f7f4c7d-b3f5-4988-a17b-3f09b6f5a9ee/resourceRoleScopes +Content-type: application/json + +{ + "role": { + "originId": "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475", + "displayName": "Access Review Operator Service Role", + "description": "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.", + "resource": { + "id": "b09a0288-a83e-4ae6-8a53-bc09aeb966ea", + "description": "Dev", + "displayName": "Dev", + "resourceType": "Subscription", + "originId": "/subscriptions/828b526f-c769-4b19-9797-734b4843b978", + "originSystem": "AzureResources" + }, + "originSystem": "AzureResources", + "type": "active" + }, + "scope": { + "id": "e1e0ec8c-472d-4ec5-a8f9-29e0bc275640", + "description": "/resourceGroups/rg", + "displayName": "/resourceGroups/rg", + "isRootScope": false, + "originSystem": "AzureResources", + "originId": "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/resourceGroups/rg" + } +} +``` + +#### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + + +```http +HTTP/1.1 201 Created +Content-type: application/json + +{ + "id": "34b2d7de-e8d6-4ba8-843e-a03546feac63_e1e0ec8c-472d-4ec5-a8f9-29e0bc275640", + "createdDateTime": "2026-02-09T22:31:55.3690356Z" +} +``` + +### Example 5: Add Eligible Management Group Resource Role to an access package + +#### Request + +The following example shows a request to add an eligible Management Group scoped to a Resource Role to an access package. + +Before this request, you must have already added the access package resource `c347ca9b-a9cc-4df9-bc3c-00c8e0297692` for the Management Group `test-mgmtgroup` to the access package catalog containing this access package. The resource could have been added to the catalog by [creating an access package resource request](entitlementmanagement-post-resourcerequests.md). + + + +```http +POST https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/accessPackages/5f7f4c7d-b3f5-4988-a17b-3f09b6f5a9ee/resourceRoleScopes +Content-type: application/json + +{ + "role": { + "id": "055c76c1-a466-4f1a-9279-4a2ccaa7ac3e", + "originId": "/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475", + "displayName": "Access Review Operator Service Role", + "description": "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.", + "resource": { + "id": "c347ca9b-a9cc-4df9-bc3c-00c8e0297692", + "description": "test-mgmtgroup", + "displayName": "test-mgmtgroup", + "resourceType": "ManagementGroup", + "originId": "/providers/Microsoft.Management/managementGroups/test-mgmtgroup", + "originSystem": "AzureResources" + }, + "originSystem": "AzureResources", + "type": "eligible" + }, + "scope": { + "id": "338613b3-b410-4c6d-b5e9-45590bc8a357", + "displayName": "Root", + "description": "Root Scope", + "isRootScope": true, + "originId": "/providers/Microsoft.Management/managementGroups/test-mgmtgroup", + "originSystem": "AzureResources" + } +} +``` + +#### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + + +```http +HTTP/1.1 201 Created +Content-type: application/json + +{ + "id": "055c76c1-a466-4f1a-9279-4a2ccaa7ac3e_338613b3-b410-4c6d-b5e9-45590bc8a357", + "createdDateTime": "2026-02-09T22:23:14.8561335Z" +} +``` + +### Example 6: Add Active Subscription Resource Role to access package + +#### Request + +The following example shows a request to Add Active Subscription Resource Role to an access package scoped to a Resource Role to an access package. + +Before this request, you must have already added the access package resource `b09a0288-a83e-4ae6-8a53-bc09aeb966ea` for the Subscription `828b526f-c769-4b19-9797-734b4843b978` to the access package catalog containing this access package. The resource could have been added to the catalog by [creating an access package resource request](entitlementmanagement-post-resourcerequests.md). + + + +```http +POST https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/accessPackages/5f7f4c7d-b3f5-4988-a17b-3f09b6f5a9ee/resourceRoleScopes +Content-type: application/json + +{ + "role": { + "originId": "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475", + "displayName": "Access Review Operator Service Role", + "description": "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.", + "resource": { + "id": "b09a0288-a83e-4ae6-8a53-bc09aeb966ea", + "description": "Dev", + "displayName": "Dev", + "resourceType": "Subscription", + "originId": "/subscriptions/828b526f-c769-4b19-9797-734b4843b978", + "originSystem": "AzureResources" + }, + "originSystem": "AzureResources", + "type": "active" + }, + "scope": { + "id": "c66c1e22-1093-46fb-a8a8-c0e334113ca4", + "description": "Root", + "displayName": "Root", + "isRootScope": true, + "originSystem": "AzureResources", + "originId": "/subscriptions/828b526f-c769-4b19-9797-734b4843b978" + } +} +``` + +#### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + + +```http +HTTP/1.1 201 Created +Content-type: application/json + +{ + "id": "34b2d7de-e8d6-4ba8-843e-a03546feac63_c66c1e22-1093-46fb-a8a8-c0e334113ca4", + "createdDateTime": "2026-02-09T22:29:40.3420825Z" +} +``` diff --git a/api-reference/v1.0/api/entitlementmanagement-post-resourcerequests.md b/api-reference/v1.0/api/entitlementmanagement-post-resourcerequests.md index 1f8fe56e415..4e67d8da1f2 100644 --- a/api-reference/v1.0/api/entitlementmanagement-post-resourcerequests.md +++ b/api-reference/v1.0/api/entitlementmanagement-post-resourcerequests.md @@ -522,3 +522,107 @@ Content-type: application/json "state": "delivered" } ``` + +### Example 6: Add a Management Group Resource to catalog + +#### Request + +The following example shows a request for adding a management group resource to a catalog. + + +```http +POST https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/resourceRequests +Content-type: application/json + +{ + "requestType": "adminAdd", + "resource": { + "displayName": "test-mgmtgroup", + "description": "test-mgmtgroup", + "resourceType": "ManagementGroup", + "originId": "/providers/Microsoft.Management/managementGroups/test-mgmtgroup", + "originSystem": "AzureResources" + }, + "catalog": { + "id": "e8368470-afaf-44da-ba86-13a7318f1995" + } +} +``` + +#### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + + +```http +HTTP/1.1 201 Created +Content-type: application/json + +{ + "id": "99e156fe-d152-4005-b019-6ba816f411ea", + "requestType": "adminAdd", + "state": "delivered" +} +``` + +### Example 7: Add a Subscription Resource to catalog + +#### Request + +The following example shows a request for adding a Subscription resource to a catalog. + + +```http +POST https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/resourceRequests +Content-type: application/json + +{ + "requestType": "adminAdd", + "resource": { + "displayName": "Dev", + "description": "Dev", + "resourceType": "Subscription", + "originId": "/subscriptions/828b526f-c769-4b19-9797-734b4843b978", + "originSystem": "AzureResources" + }, + "catalog": { + "id": "e8368470-afaf-44da-ba86-13a7318f1995" + } +} +``` + +#### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + + +```http +HTTP/1.1 201 Created +Content-type: application/json + +{ + "id": "13ac6518-0597-452c-98ff-59c52b391dae", + "requestType": "adminAdd", + "state": "delivered" +} +``` diff --git a/api-reference/v1.0/resources/accesspackageresourcerole.md b/api-reference/v1.0/resources/accesspackageresourcerole.md index 2958db0717b..9916eee4cdb 100644 --- a/api-reference/v1.0/resources/accesspackageresourcerole.md +++ b/api-reference/v1.0/resources/accesspackageresourcerole.md @@ -28,7 +28,8 @@ In [Microsoft Entra entitlement management](entitlementmanagement-overview.md), |displayName|String|The display name of the resource role such as the role defined by the application.| |id|String| Read-only.| |originId|String|The unique identifier of the resource role in the origin system. For a SharePoint Online site, the originId is the sequence number of the role in the site. | -|originSystem|String|The type of the resource in the origin system, such as `SharePointOnline`, `AadApplication`, or `AadGroup`.| +|originSystem|String|The type of the resource in the origin system, such as `SharePointOnline`, `AadApplication`, `AzureResources`, or `AadGroup`.| +|type|roleType|The role type for the Azure resource role. The possible values are: `active`, `eligible`, `application`, `delegated`, `unknownFutureValue`. The values `active` and `eligible` are only supported where **originSystem** is `AzureResources` while `application` and `delegated` aren't currently implemented.| ## Relationships @@ -55,6 +56,7 @@ The following JSON representation shows the resource. "displayName": "String", "id": "String (identifier)", "originId": "String", - "originSystem": "String" + "originSystem": "String", + "type": "String" } ``` diff --git a/api-reference/v1.0/resources/accesspackageresourcescope.md b/api-reference/v1.0/resources/accesspackageresourcescope.md index 2f920cb683f..13002bc96c4 100644 --- a/api-reference/v1.0/resources/accesspackageresourcescope.md +++ b/api-reference/v1.0/resources/accesspackageresourcescope.md @@ -26,8 +26,8 @@ If the resource is in an access package catalog but hasn't yet had its roles add |displayName|String|The display name of the scope.| |id|String| Read-only.| |isRootScope|Boolean|True if the scopes are arranged in a hierarchy and this is the top or root scope of the resource.| -|originId|String|The unique identifier for the scope in the resource as defined in the origin system.| -|originSystem|String|The origin system for the scope.| +|originId|String| The unique identifier of the resource in the origin system. If a Microsoft Entra group, originId is the identifier of the group. Supports `$filter` (`eq`).| +|originSystem|String| The type of the resource in the origin system, such as `SharePointOnline`, `AadApplication`, `AadGroup`, `AzureResources`, or `CustomDataProvidedResource`. Supports `$filter` (`eq`).| ## Relationships diff --git a/api-reference/v1.0/resources/enums.md b/api-reference/v1.0/resources/enums.md index 3ca7919fd06..2bcf7aa5cc7 100644 --- a/api-reference/v1.0/resources/enums.md +++ b/api-reference/v1.0/resources/enums.md @@ -675,6 +675,16 @@ Namespace: microsoft.graph | approver | | unknownFutureValue | +### roleType values + +| Member | +| ------ | +| active | +| eligible | +| application | +| delegated | +| unknownFutureValue | + ### unifiedRoleManagementPolicyRuleTargetOperations values | Member | diff --git a/changelog/Microsoft.IGAELM.json b/changelog/Microsoft.IGAELM.json index ad446837d4f..51a94d18fc8 100644 --- a/changelog/Microsoft.IGAELM.json +++ b/changelog/Microsoft.IGAELM.json @@ -270,6 +270,32 @@ "WorkloadArea": "Identity and access", "SubArea": "Governance" }, + { + "ChangeList": [ + { + "Id": "b26be12a-1a52-489f-b223-dc9d2b0a8c31", + "ApiChange": "Enumeration", + "ChangedApiName": "roleType", + "ChangeType": "Addition", + "Description": "Added the **roleType** enumeration type.", + "Target": "roleType" + }, + { + "Id": "b26be12a-1a52-489f-b223-dc9d2b0a8c31", + "ApiChange": "Property", + "ChangedApiName": "type", + "ChangeType": "Addition", + "Description": "Added the **type** property to the [accessPackageResourceRole](https://learn.microsoft.com/en-us/graph/api/resources/accessPackageResourceRole?view=graph-rest-1.0) resource.", + "Target": "accessPackageResourceRole" + } + ], + "Id": "b26be12a-1a52-489f-b223-dc9d2b0a8c31", + "Cloud": "Prod", + "Version": "v1.0", + "CreatedDateTime": "2026-06-18T14:46:42.7323209Z", + "WorkloadArea": "Identity and access", + "SubArea": "Governance" + }, { "ChangeList": [ { From b30beb34bc31cfd4530822f840faf7ed20d05cf6 Mon Sep 17 00:00:00 2001 From: "snippet-gen-pull-automation[bot]" <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Date: Fri, 19 Jun 2026 18:10:17 +0300 Subject: [PATCH 09/52] Update reference TOC (#29109) Co-authored-by: Microsoft Graph DevX Tooling --- .../v1.0/toc/identity-and-access/toc.yml | 26 +++++++++++++++++++ 1 file changed, 26 insertions(+) diff --git a/api-reference/v1.0/toc/identity-and-access/toc.yml b/api-reference/v1.0/toc/identity-and-access/toc.yml index eada9ebb303..209400c448b 100644 --- a/api-reference/v1.0/toc/identity-and-access/toc.yml +++ b/api-reference/v1.0/toc/identity-and-access/toc.yml @@ -770,6 +770,18 @@ items: href: ../../api/accesspackageassignmentworkflowextension-delete.md - name: Access package subject href: ../../resources/accesspackagesubject.md + - name: Access package suggestion + items: + - name: Access package suggestion + href: ../../resources/accesspackagesuggestion.md + - name: Filter by current user + href: ../../api/accesspackagesuggestions-filterbycurrentuser.md + - name: Available access package + items: + - name: Available access package + href: ../../resources/availableaccesspackage.md + - name: List resourceRoleScopes + href: ../../api/availableaccesspackage-list-resourcerolescopes.md - name: Connected organization items: - name: Connected organization @@ -800,6 +812,14 @@ items: href: ../../api/connectedorganization-post-internalsponsors.md - name: Remove href: ../../api/connectedorganization-delete-internalsponsors.md + - name: End user settings + items: + - name: End user settings + href: ../../resources/endusersettings.md + - name: Get + href: ../../api/endusersettings-get.md + - name: Update + href: ../../api/endusersettings-update.md - name: Entitlement management settings items: - name: Entitlement management settings @@ -846,6 +866,12 @@ items: href: ../../resources/accesspackageresourceattributesource.md - name: Access package resource scope href: ../../resources/accesspackageresourcescope.md + - name: Access package suggestion reason + href: ../../resources/accesspackagesuggestionreason.md + - name: Access package suggestion related people based + href: ../../resources/accesspackagesuggestionrelatedpeoplebased.md + - name: Access package suggestion self assignment history based + href: ../../resources/accesspackagesuggestionselfassignmenthistorybased.md - name: Access package text input question href: ../../resources/accesspackagetextinputquestion.md - name: Access package user directory attribute store From 8fdeef761a2952c33b156a9c9f4833f726bc4001 Mon Sep 17 00:00:00 2001 From: prasadpatil111 <284865846+prasadpatil111@users.noreply.github.com> Date: Fri, 19 Jun 2026 22:50:55 +0530 Subject: [PATCH 10/52] Planner Task History API documentation (#28891) * plan history API documentation * nit changes * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update toc.mapping.json * Update plannerplan-list-historyitems.md * Update reference TOC * Update api-reference/beta/resources/plannertaskdetailsdata.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/resources/plannertaskdata.md Co-authored-by: MSFT-Andrea * address review comments * fix build issues * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update toc.mapping.json * Update whats-new-overview.md * Update reference TOC * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update toc.mapping.json * Update reference TOC * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Prasad Patil Co-authored-by: MSFT-Andrea Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --- .../beta/api/plannerplan-list-historyitems.md | 161 ++++++++++++++++++ ...annerplan-list-historyitems-permissions.md | 12 ++ api-reference/beta/resources/enums.md | 19 +++ .../beta/resources/planner-overview.md | 5 + api-reference/beta/resources/plannerdelta.md | 46 +++++ .../beta/resources/plannerhistoryitem.md | 63 +++++++ api-reference/beta/resources/plannerplan.md | 2 + .../beta/resources/plannertaskdata.md | 105 ++++++++++++ .../beta/resources/plannertaskdetailsdata.md | 65 +++++++ .../beta/resources/taskhistoryitem.md | 70 ++++++++ .../beta/toc/tasks-and-plans/toc.yml | 14 ++ api-reference/beta/toc/toc.mapping.json | 9 + changelog/Microsoft.Office.Tasks.json | 74 ++++++++ concepts/whats-new-overview.md | 4 + 14 files changed, 649 insertions(+) create mode 100644 api-reference/beta/api/plannerplan-list-historyitems.md create mode 100644 api-reference/beta/includes/permissions/plannerplan-list-historyitems-permissions.md create mode 100644 api-reference/beta/resources/plannerdelta.md create mode 100644 api-reference/beta/resources/plannerhistoryitem.md create mode 100644 api-reference/beta/resources/plannertaskdata.md create mode 100644 api-reference/beta/resources/plannertaskdetailsdata.md create mode 100644 api-reference/beta/resources/taskhistoryitem.md diff --git a/api-reference/beta/api/plannerplan-list-historyitems.md b/api-reference/beta/api/plannerplan-list-historyitems.md new file mode 100644 index 00000000000..3bb11ce6b7d --- /dev/null +++ b/api-reference/beta/api/plannerplan-list-historyitems.md @@ -0,0 +1,161 @@ +--- +title: "List historyItems" +description: "Get the history of changes made to tasks within a plan." +author: "praspati" +ms.date: 05/15/2026 +ms.localizationpriority: medium +ms.subservice: "planner" +doc_type: apiPageType +--- + +# List historyItems + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Get the [history](../resources/plannerhistoryitem.md) of changes made to tasks within a [plan](../resources/plannerplan.md). + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/plannerplan-list-historyitems-permissions.md)] + +## HTTP request + + +``` http +GET /planner/plans/{plan-id}/historyItems +``` + +## Optional query parameters + +This method supports the `$filter` OData query parameter to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). + +Use `$filter` on the **occurredDateTime** property to retrieve history items within a specific time range. + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a collection of [plannerHistoryItem](../resources/plannerhistoryitem.md) objects in the response body. + +## Examples + +### Request + +The following example shows how to get task [history items](../resources/plannerhistoryitem.md) for a plan with a date filter. + + +``` http +GET https://graph.microsoft.com/beta/planner/plans/nETqF5FS2LkCp935s-FIFm2QAFkHM/historyItems?$filter=occurredDateTime gt 2025-11-01T00:00:00Z and occurredDateTime lt 2025-12-01T00:00:00Z +``` + +### Response + +The following example shows the response. + +>**Note:** The response object shown here might be shortened for readability. + + +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/beta/$metadata#planner/plans('nETqF5FS2LkCp935s-FIFm2QAFkHM')/historyItems", + "value": [ + { + "@odata.type": "#microsoft.graph.taskHistoryItem", + "id": "historyItem-id-1", + "planId": "nETqF5FS2LkCp935s-FIFm2QAFkHM", + "entityId": "dYsWHy7-WEGMQsMaPBv_9ZUAOzQz", + "entityType": "task", + "eventType": "created", + "occurredDateTime": "2026-01-12T14:16:26.5896957Z", + "actor": { + "user": { + "displayName": null, + "id": "6699294c-9300-4ad8-a768-af3407b5e0fe" + }, + "application": { + "displayName": null, + "id": "09abbdfd-ed23-44ee-a2d9-a627a41c90f3" + } + }, + "oldData": null, + "newData": { + "createdBy": { + "user": { + "displayName": null, + "id": "6699294c-9300-4ad8-a768-af3407b5e0fe" + }, + "application": { + "displayName": null, + "id": "09abbdfd-ed23-44ee-a2d9-a627a41c90f3" + } + }, + "bucketId": "0LHuWF3PrUqKYzq-TcR3oJUADFn8", + "isArchived": false, + "title": "Initial Task Title", + "orderHint": "8584333795589189673P,", + "percentComplete": 0, + "priority": 5 + } + }, + { + "@odata.type": "#microsoft.graph.taskHistoryItem", + "id": "historyItem-id-2", + "planId": "nETqF5FS2LkCp935s-FIFm2QAFkHM", + "entityId": "dYsWHy7-WEGMQsMaPBv_9ZUAOzQz", + "entityType": "task", + "eventType": "updated", + "occurredDateTime": "2026-01-12T15:16:26.5896957Z", + "actor": { + "user": { + "displayName": null, + "id": "6699294c-9300-4ad8-a768-af3407b5e0fe" + }, + "application": { + "displayName": null, + "id": "09abbdfd-ed23-44ee-a2d9-a627a41c90f3" + } + }, + "oldData": { + "title": "Initial Task Title", + "percentComplete": 0 + }, + "newData": { + "title": "Updated Task Title", + "percentComplete": 50 + } + } + ] +} +``` diff --git a/api-reference/beta/includes/permissions/plannerplan-list-historyitems-permissions.md b/api-reference/beta/includes/permissions/plannerplan-list-historyitems-permissions.md new file mode 100644 index 00000000000..8327fd827b1 --- /dev/null +++ b/api-reference/beta/includes/permissions/plannerplan-list-historyitems-permissions.md @@ -0,0 +1,12 @@ +--- +description: Automatically generated file. DO NOT MODIFY +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permission|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|Tasks.Read|Group.Read.All, Group.ReadWrite.All, Tasks.ReadWrite| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|Tasks.Read.All|Tasks.ReadWrite.All| + diff --git a/api-reference/beta/resources/enums.md b/api-reference/beta/resources/enums.md index 1da368f367f..dba291b6991 100644 --- a/api-reference/beta/resources/enums.md +++ b/api-reference/beta/resources/enums.md @@ -282,6 +282,24 @@ Namespace: microsoft.graph |failedActivation| |unknownFutureValue| +### historyEntityType values + +|Member| +|:---| +|task| +|unknownFutureValue| + +### historyEventType values + +|Member| +|:---| +|created| +|updated| +|deleted| +|undeleted| +|moved| +|unknownFutureValue| + ### provisionState values | Member | @@ -521,6 +539,7 @@ Namespace: microsoft.graph | unknownFutureValue | | formCompletion | | approvalCompletion | +| completionInHostedApp | ### plannerApprovalStatus values diff --git a/api-reference/beta/resources/planner-overview.md b/api-reference/beta/resources/planner-overview.md index 918d91919df..ab9ba52f0bd 100644 --- a/api-reference/beta/resources/planner-overview.md +++ b/api-reference/beta/resources/planner-overview.md @@ -179,6 +179,11 @@ The delta payload objects that the Planner delta query can currently return are Use the corresponding `GET` methods on the resource to obtain the initial state of objects to be populated into the local cache. + +### Looking at history for the plan + +Planner supports an [API](../api/plannerplan-list-historyitems.md) to get the [history](plannerhistoryitem.md) of changes made to [tasks](plannertask.md) within a [plan](plannerplan.md). + ### Differentiating between object creation and object modification In certain scenarios, the caller might want to distinguish between object creation and object modification within Planner's delta query feed. diff --git a/api-reference/beta/resources/plannerdelta.md b/api-reference/beta/resources/plannerdelta.md new file mode 100644 index 00000000000..406024733f5 --- /dev/null +++ b/api-reference/beta/resources/plannerdelta.md @@ -0,0 +1,46 @@ +--- +title: "plannerDelta resource type" +description: "An abstract type that represents the base type for planner entities such as a plan or a task." +author: "praspati" +ms.date: 05/15/2026 +ms.localizationpriority: medium +ms.subservice: "planner" +doc_type: resourcePageType +--- + +# plannerDelta resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +An abstract type that represents the base type for planner entities such as a plan or a task. + +Base type of [plannerHistoryItem](plannerhistoryitem.md), [plannerTask](plannertask.md), [plannerPlan](plannerplan.md), and [plannerBucket](plannerbucket.md). + +## Methods +None. + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|id|String|The unique identifier for the entity. | + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.plannerDelta", + "id": "String (identifier)" +} +``` diff --git a/api-reference/beta/resources/plannerhistoryitem.md b/api-reference/beta/resources/plannerhistoryitem.md new file mode 100644 index 00000000000..a59ed101d4e --- /dev/null +++ b/api-reference/beta/resources/plannerhistoryitem.md @@ -0,0 +1,63 @@ +--- +title: "plannerHistoryItem resource type" +description: "An abstract type that represents a record of a change made to an entity within a planner plan." +author: "praspati" +ms.date: 05/15/2026 +ms.localizationpriority: medium +ms.subservice: "planner" +doc_type: resourcePageType +--- + +# plannerHistoryItem resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +An abstract type that represents a record of a change made to an entity within a [planner plan](../resources/plannerplan.md). This resource serves as the base for specific history item types. + +Inherits from [plannerDelta](../resources/plannerdelta.md). + +## Methods +|Method|Return type|Description| +|:---|:---|:---| +|[List](../api/plannerplan-list-historyitems.md)|[plannerHistoryItem](../resources/plannerhistoryitem.md) collection|Get the [history](../resources/plannerhistoryitem.md) of changes made to tasks within a [plan](../resources/plannerplan.md).| + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|actor|[identitySet](../resources/identityset.md)|The identity of the user or application that performed the change.| +|entityId|String|The ID of the entity that was changed.| +|entityType|historyEntityType|The type of entity that was changed. The possible values are: `task`, `unknownFutureValue`.| +|eventType|historyEventType|The type of change event that occurred. The possible values are: `created`, `updated`, `deleted`, `undeleted`, `moved`, `unknownFutureValue`.| +|id|String|The unique identifier for the history item. Inherited from [plannerDelta](../resources/plannerdelta.md).| +|occurredDateTime|DateTimeOffset|The date and time when the change occurred. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2024, is `2024-01-01T00:00:00Z`.| +|planId|String|The ID of the plan that contains the changed entity.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.plannerHistoryItem", + "id": "String (identifier)", + "planId": "String", + "entityId": "String", + "entityType": "String", + "eventType": "String", + "occurredDateTime": "String (timestamp)", + "actor": { + "@odata.type": "microsoft.graph.identitySet" + } +} +``` diff --git a/api-reference/beta/resources/plannerplan.md b/api-reference/beta/resources/plannerplan.md index 39bb0f3532f..f13c3a1ab94 100644 --- a/api-reference/beta/resources/plannerplan.md +++ b/api-reference/beta/resources/plannerplan.md @@ -31,6 +31,7 @@ Represents a plan in Microsoft 365. Either a [group](group.md) or a [user](user. |[List plan tasks](../api/plannerplan-list-tasks.md) |[plannerTask](plannertask.md) collection| Get a **plannerTask** object collection.| |[Get delta](../api/plannerplan-delta.md) | [plannerPlan](../resources/plannerplan.md) collection | Get newly created, updated, or deleted **plannerPlan** objects in either a **group** or a [plannerRoster](plannerroster.md) type container without having to perform a full read of the entire resource collection. | |[Get usage rights](../api/plannerplan-getusagerights.md)|[planUsageRight](../resources/planusageright.md)|Get the usage rights for a specific [plan](../resources/plannerplan.md) based on its sensitivity label assignment and the requesting user's permissions.| +|[List history items](../api/plannerplan-list-historyitems.md)|[plannerHistoryItem](plannerhistoryitem.md) collection|Get the [history](../resources/plannerhistoryitem.md) of changes made to tasks within a [plan](../resources/plannerplan.md).| ## Properties | Property | Type |Description| @@ -53,6 +54,7 @@ Represents a plan in Microsoft 365. Either a [group](group.md) or a [user](user. |:---------------|:--------|:----------| |buckets|[plannerBucket](plannerbucket.md) collection| Collection of buckets in the plan. Read-only. Nullable.| |details|[plannerPlanDetails](plannerplandetails.md)| Extra details about the plan. Read-only. Nullable. | +|historyItems|[plannerHistoryItem](plannerhistoryitem.md) collection| Collection of history items for entities in the plan. Read-only. Nullable. | |tasks|[plannerTask](plannertask.md) collection| Collection of tasks in the plan. Read-only. Nullable. | ## JSON representation diff --git a/api-reference/beta/resources/plannertaskdata.md b/api-reference/beta/resources/plannertaskdata.md new file mode 100644 index 00000000000..dce32908a3e --- /dev/null +++ b/api-reference/beta/resources/plannertaskdata.md @@ -0,0 +1,105 @@ +--- +title: "plannerTaskData resource type" +description: "Represents a snapshot of a planner task at a specific point in time." +author: "praspati" +ms.date: 05/15/2026 +ms.localizationpriority: medium +ms.subservice: "planner" +doc_type: resourcePageType +--- + +# plannerTaskData resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a snapshot of a [planner task](../resources/plannertask.md) at a specific point in time. This resource is used in [taskHistoryItem](../resources/taskhistoryitem.md) to capture the state of a task before and after changes. + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|activeChecklistItemCount|Int32|The number of incomplete checklist items whose value is set to `false`.| +|appliedCategories|[plannerAppliedCategories](../resources/plannerappliedcategories.md)|The categories to which the task is applied.| +|archivalInfo|[plannerArchivalInfo](../resources/plannerarchivalinfo.md)|Information about who archived or unarchived the task and why.| +|assignments|[plannerAssignments](../resources/plannerassignments.md)|The set of assignees the task is assigned to.| +|bucketId|String|Bucket ID to which the task belongs. The bucket needs to be in the same plan as the task.| +|checklistItemCount|Int32|The number of checklist items that are present on the task.| +|completedBy|[identitySet](../resources/identityset.md)|The identity of the user that completed the task.| +|completedDateTime|DateTimeOffset|The date and time at which the **percentComplete** of the task is set to `100`. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2024, is `2024-01-01T00:00:00Z`.| +|conversationThreadId|String|The thread ID of the conversation on the task that corresponds to the ID of the conversation thread object created in the group.| +|createdBy|[identitySet](../resources/identityset.md)|The identity of the user who created the task.| +|createdDateTime|DateTimeOffset|The date and time at which the task was created. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2024, is `2024-01-01T00:00:00Z`.| +|creationSource|[plannerTaskCreation](../resources/plannertaskcreation.md)|Information about the origin of the task.| +|details|[plannerTaskDetailsData](../resources/plannertaskdetailsdata.md)|Additional details about the task.| +|dueDateTime|DateTimeOffset|The date and time at which the task is due. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2024, is `2024-01-01T00:00:00Z`.| +|hasChat|Boolean|Set to `true` if the task has a chat associated with it; otherwise, `false`.| +|hasDescription|Boolean|Set to `true` if the details object of the task has a nonempty description; otherwise, `false`.| +|isArchived|Boolean|Set to `true` if the task is archived; otherwise, `false`.| +|orderHint|String|Hint used to order items of this type in a list view.| +|percentComplete|Int32|Percentage of task completion. When set to `100`, the task is considered completed.| +|previewType|plannerPreviewType|The type of preview that shows up on the task. The possible values are: `automatic`, `noPreview`, `checklist`, `description`, `reference`.| +|priority|Int32|The priority of the task. Valid values are between `0` and `10`, inclusive. Larger values indicate lower priority. For example, `0` has the highest priority and `10` has the lowest priority.| +|recurrence|[plannerTaskRecurrence](../resources/plannertaskrecurrence.md)|Defines active or inactive recurrence for the task. A `null` value indicates that the recurrence was never defined for the task.| +|referenceCount|Int32|Number of external references that exist on the task.| +|specifiedCompletionRequirements|plannerTaskCompletionRequirements|Indicates all the requirements specified on the task. The possible values are: `none`, `checklistCompletion`, `unknownFutureValue`, `formCompletion`, `approvalCompletion`, `completionInHostedApp`. Use the `Prefer: include-unknown-enum-members` request header to get the following values from this [evolvable enum](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations): `formCompletion` , `approvalCompletion` , `completionInHostedApp`.| +|startDateTime|DateTimeOffset|The date and time at which the task starts. The date and time information uses ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2021 is `2021-01-01T00:00:00Z`.| +|title|String|Title of the task.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.plannerTaskData", + "createdBy": { + "@odata.type": "microsoft.graph.identitySet" + }, + "bucketId": "String", + "isArchived": "Boolean", + "title": "String", + "orderHint": "String", + "percentComplete": "Int32", + "specifiedCompletionRequirements": "String", + "priority": "Int32", + "startDateTime": "String (timestamp)", + "createdDateTime": "String (timestamp)", + "dueDateTime": "String (timestamp)", + "hasDescription": "Boolean", + "hasChat": "Boolean", + "previewType": "String", + "completedDateTime": "String (timestamp)", + "completedBy": { + "@odata.type": "microsoft.graph.identitySet" + }, + "referenceCount": "Int32", + "checklistItemCount": "Int32", + "activeChecklistItemCount": "Int32", + "appliedCategories": { + "@odata.type": "microsoft.graph.plannerAppliedCategories" + }, + "assignments": { + "@odata.type": "microsoft.graph.plannerAssignments" + }, + "conversationThreadId": "String", + "creationSource": { + "@odata.type": "microsoft.graph.plannerTaskCreation" + }, + "recurrence": { + "@odata.type": "microsoft.graph.plannerTaskRecurrence" + }, + "archivalInfo": { + "@odata.type": "microsoft.graph.plannerArchivalInfo" + }, + "details": { + "@odata.type": "microsoft.graph.plannerTaskDetailsData" + } +} +``` diff --git a/api-reference/beta/resources/plannertaskdetailsdata.md b/api-reference/beta/resources/plannertaskdetailsdata.md new file mode 100644 index 00000000000..e82a3f44a66 --- /dev/null +++ b/api-reference/beta/resources/plannertaskdetailsdata.md @@ -0,0 +1,65 @@ +--- +title: "plannerTaskDetailsData resource type" +description: "Represents a snapshot of additional details about a planner task at a specific point in time." +author: "praspati" +ms.date: 05/15/2026 +ms.localizationpriority: medium +ms.subservice: "planner" +doc_type: resourcePageType +--- + +# plannerTaskDetailsData resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a snapshot of additional [details](../resources/plannertaskdetails.md) about a [planner task](../resources/plannertask.md) at a specific point in time. This resource is used in [plannerTaskData](../resources/plannertaskdata.md) to capture extended task information before and after changes. + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|approvalAttachment|[plannerBaseApprovalAttachment](../resources/plannerbaseapprovalattachment.md)|Detailed information about the approval that is attached to the task.| +|checklist|[plannerChecklistItems](../resources/plannerchecklistitems.md)|The collection of checklist items on the task.| +|completionRequirements|[plannerTaskCompletionRequirementDetails](../resources/plannertaskcompletionrequirementdetails.md)|Contains detailed information about requirements on the task.| +|description|String|Description of the task.| +|forms|[plannerFormsDictionary](../resources/plannerformsdictionary.md)|The collection of forms associated with the task.| +|notes|[itemBody](../resources/itembody.md)|Rich text description of the task for use by applications that support HTML content.| +|previewType|plannerPreviewType|The type of preview that shows up on the task. The possible values are: `automatic`, `noPreview`, `checklist`, `description`, `reference`.| +|references|[plannerExternalReferences](../resources/plannerexternalreferences.md)|The collection of references on the task.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.plannerTaskDetailsData", + "description": "String", + "notes": { + "@odata.type": "microsoft.graph.itemBody" + }, + "previewType": "String", + "references": { + "@odata.type": "microsoft.graph.plannerExternalReferences" + }, + "checklist": { + "@odata.type": "microsoft.graph.plannerChecklistItems" + }, + "forms": { + "@odata.type": "microsoft.graph.plannerFormsDictionary" + }, + "completionRequirements": { + "@odata.type": "microsoft.graph.plannerTaskCompletionRequirementDetails" + }, + "approvalAttachment": { + "@odata.type": "microsoft.graph.plannerBaseApprovalAttachment" + } +} +``` diff --git a/api-reference/beta/resources/taskhistoryitem.md b/api-reference/beta/resources/taskhistoryitem.md new file mode 100644 index 00000000000..e0fc45566e3 --- /dev/null +++ b/api-reference/beta/resources/taskhistoryitem.md @@ -0,0 +1,70 @@ +--- +title: "taskHistoryItem resource type" +description: "Represents a record of a change made to a task within a planner plan." +author: "praspati" +ms.date: 05/15/2026 +ms.localizationpriority: medium +ms.subservice: "planner" +doc_type: resourcePageType +--- + +# taskHistoryItem resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a record of a change made to a task within a [planner plan](../resources/plannerplan.md). Use this resource to track the history of task modifications, including creation, updates, deletions, and moves. + +Inherits from [plannerHistoryItem](../resources/plannerhistoryitem.md). + +## Methods + +For the list of supported methods, see [plannerHistoryItem](../resources/plannerhistoryitem.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|actor|[identitySet](../resources/identityset.md)|The identity of the user or application that performed the change. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md).| +|entityId|String|The ID of the task that was changed. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md).| +|entityType|historyEntityType|The type of entity that was changed. The possible values are: `task`, `unknownFutureValue`. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md). | +|eventType|historyEventType|The type of change event that occurred. The possible values are: `created`, `updated`, `deleted`, `undeleted`, `moved`, `unknownFutureValue`. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md).| +|id|String|The unique identifier for the history item. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md).| +|newData|[plannerTaskData](../resources/plannertaskdata.md)|A snapshot of the task state after the change. This property is `null` for deletion events.| +|occurredDateTime|DateTimeOffset|The date and time when the change occurred. The date and time information uses ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2021 is `2021-01-01T00:00:00Z`. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md).| +|oldData|[plannerTaskData](../resources/plannertaskdata.md)|A snapshot of the task state before the change. This property is `null` for creation and undeletion events.| +|planId|String|The ID of the plan that contains the task. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md).| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.taskHistoryItem", + "id": "String (identifier)", + "planId": "String", + "entityId": "String", + "entityType": "String", + "eventType": "String", + "occurredDateTime": "String (timestamp)", + "actor": { + "@odata.type": "microsoft.graph.identitySet" + }, + "oldData": { + "@odata.type": "microsoft.graph.plannerTaskData" + }, + "newData": { + "@odata.type": "microsoft.graph.plannerTaskData" + } +} +``` diff --git a/api-reference/beta/toc/tasks-and-plans/toc.yml b/api-reference/beta/toc/tasks-and-plans/toc.yml index 100c969e97a..73b4c72c4e2 100644 --- a/api-reference/beta/toc/tasks-and-plans/toc.yml +++ b/api-reference/beta/toc/tasks-and-plans/toc.yml @@ -30,6 +30,8 @@ items: href: ../../api/plannerplan-delta.md - name: Get usage rights href: ../../api/plannerplan-getusagerights.md + - name: List history items + href: ../../api/plannerplan-list-historyitems.md - name: Planner task items: - name: Planner task @@ -64,6 +66,14 @@ items: href: ../../api/plannerbucket-delete.md - name: Get delta href: ../../api/plannerbucket-delta.md +- name: Planner history item + items: + - name: Planner history item + href: ../../resources/plannerhistoryitem.md + - name: List + href: ../../api/plannerplan-list-historyitems.md + - name: Task history item + href: ../../resources/taskhistoryitem.md - name: Planner plan details items: - name: Planner plan details @@ -334,6 +344,10 @@ items: href: ../../resources/plannertaskcompletionrequirementdetails.md - name: Planner task creation href: ../../resources/plannertaskcreation.md + - name: Planner task data + href: ../../resources/plannertaskdata.md + - name: Planner task details data + href: ../../resources/plannertaskdetailsdata.md - name: Planner task property rule href: ../../resources/plannertaskpropertyrule.md - name: Planner task recurrence diff --git a/api-reference/beta/toc/toc.mapping.json b/api-reference/beta/toc/toc.mapping.json index f64b05cff2e..b82d108a053 100644 --- a/api-reference/beta/toc/toc.mapping.json +++ b/api-reference/beta/toc/toc.mapping.json @@ -3316,6 +3316,7 @@ "plannerPlan", "plannerTask", "plannerBucket", + "plannerHistoryItem", "plannerPlanDetails", "plannerRoster", "plannerUser", @@ -3368,6 +3369,8 @@ "plannerTaskChatReaction", "plannerTaskChatReactionEvent", "plannerTaskCreation", + "plannerTaskData", + "plannerTaskDetailsData", "plannerTaskPropertyRule", "plannerTaskRecurrence", "plannerTeamsPublicationInfo", @@ -3398,6 +3401,12 @@ } ] }, + { + "name": "Planner history item", + "resources": [ + "taskHistoryItem" + ] + }, { "name": "Task formats", "resources": [ diff --git a/changelog/Microsoft.Office.Tasks.json b/changelog/Microsoft.Office.Tasks.json index aa96e4d836c..8761bced70d 100644 --- a/changelog/Microsoft.Office.Tasks.json +++ b/changelog/Microsoft.Office.Tasks.json @@ -1,5 +1,79 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "ApiChange": "Enumeration", + "ChangedApiName": "historyEntityType", + "ChangeType": "Addition", + "Description": "Added the **historyEntityType** enumeration type.", + "Target": "historyEntityType" + }, + { + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "ApiChange": "Enumeration", + "ChangedApiName": "historyEventType", + "ChangeType": "Addition", + "Description": "Added the **historyEventType** enumeration type.", + "Target": "historyEventType" + }, + { + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "ApiChange": "Member", + "ChangedApiName": "completionInHostedApp", + "ChangeType": "Addition", + "Description": "Added the `completionInHostedApp` member to the **plannerTaskCompletionRequirements** enumeration.", + "Target": "plannerTaskCompletionRequirements" + }, + { + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "ApiChange": "Resource", + "ChangedApiName": "plannerTaskData", + "ChangeType": "Addition", + "Description": "Added the [plannerTaskData](https://learn.microsoft.com/en-us/graph/api/resources/plannerTaskData?view=graph-rest-beta) resource.", + "Target": "plannerTaskData" + }, + { + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "ApiChange": "Resource", + "ChangedApiName": "plannerTaskDetailsData", + "ChangeType": "Addition", + "Description": "Added the [plannerTaskDetailsData](https://learn.microsoft.com/en-us/graph/api/resources/plannerTaskDetailsData?view=graph-rest-beta) resource.", + "Target": "plannerTaskDetailsData" + }, + { + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "ApiChange": "Resource", + "ChangedApiName": "plannerHistoryItem", + "ChangeType": "Addition", + "Description": "Added the [plannerHistoryItem](https://learn.microsoft.com/en-us/graph/api/resources/plannerHistoryItem?view=graph-rest-beta) resource and an associated method.", + "Target": "plannerHistoryItem" + }, + { + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "ApiChange": "Relationship", + "ChangedApiName": "historyItems", + "ChangeType": "Addition", + "Description": "Added the **historyItems** relationship to the [plannerPlan](https://learn.microsoft.com/en-us/graph/api/resources/plannerPlan?view=graph-rest-beta) resource.", + "Target": "plannerPlan" + }, + { + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "ApiChange": "Resource", + "ChangedApiName": "taskHistoryItem", + "ChangeType": "Addition", + "Description": "Added the [taskHistoryItem](https://learn.microsoft.com/en-us/graph/api/resources/taskHistoryItem?view=graph-rest-beta) resource.", + "Target": "taskHistoryItem" + } + ], + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-19T07:35:12.7210574Z", + "WorkloadArea": "Tasks and plans", + "SubArea": "" + }, { "ChangeList": [ { diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index c2fba1ff9ce..a3984f5b424 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -106,6 +106,10 @@ Personal distribution lists enable users to group email recipients together and Added the [sharePointReportSettings](/graph/api/resources/sharepointreportsettings?view=graph-rest-beta&preserve-view=true) resource type and related methods for managing SharePoint API usage report metrics. Use the [enableApiUsageReport](/graph/api/sharepointreportsettings-enableapiusagereport?view=graph-rest-beta&preserve-view=true) and [disableApiUsageReport](/graph/api/sharepointreportsettings-disableapiusagereport?view=graph-rest-beta&preserve-view=true) methods to control which metrics are collected and reported for your tenant. +### Tasks and plans + +Added support for tracking task history in Planner. Use the [plannerHistoryItem](/graph/api/resources/plannerhistoryitem?view=graph-rest-beta&preserve-view=true) resource and [List historyItems](/graph/api/plannerplan-list-historyitems?view=graph-rest-beta&preserve-view=true) method to retrieve the history of changes made to tasks within a plan. The [taskHistoryItem](/graph/api/resources/taskhistoryitem?view=graph-rest-beta&preserve-view=true) resource provides snapshots of task states before and after each change through [plannerTaskData](/graph/api/resources/plannertaskdata?view=graph-rest-beta&preserve-view=true) and [plannerTaskDetailsData](/graph/api/resources/plannertaskdetailsdata?view=graph-rest-beta&preserve-view=true). + ### Teamwork and communications | Calls and online meetings Use the **meetingType** property on [onlineMeeting](/graph/api/resources/onlinemeeting?view=graph-rest-beta&preserve-view=true) and [virtualEventSession](/graph/api/resources/virtualeventsession?view=graph-rest-beta&preserve-view=true) to determine whether a meeting is ad hoc, scheduled, recurring, a broadcast, or a *Meet now* session. The property is defined on the [onlineMeetingBase](/graph/api/resources/onlinemeetingbase?view=graph-rest-beta&preserve-view=true) resource and uses the [onlineMeetingType](/graph/api/resources/onlinemeetingbase?view=graph-rest-beta&preserve-view=true#onlinemeetingtype-values) enumeration. From 74400a315619e2f0c5c6403e33f3849ff62631de Mon Sep 17 00:00:00 2001 From: VISHNU VARDHAN PACHVA <67050501+Vishnu369@users.noreply.github.com> Date: Fri, 19 Jun 2026 11:01:33 -0700 Subject: [PATCH 11/52] Add policyTipAction resource type documentation for DLP processContent API (#28967) * added policytipaction * Replace generic action string with policyTip to align with DLP action enum (policyTipAction) * Apply suggestion from @ReezaAli149 * fix review comments * Apply suggestion from @ReezaAli149 * Address review comments: fix inheritance links, remove hidden properties Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Add changelog and What's New entry for policyTipAction Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Remove hidden overrideOption property from policyTipAction Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Remove overrideOption inheritance from notifyUserAction Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Vishnu Vardhan Pachva Co-authored-by: Reeza Ali <223746809+ReezaAli149@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --- .../beta/resources/enums-security.md | 1 + .../beta/resources/notifyuseraction.md | 11 ++--- .../beta/resources/policytipaction.md | 47 +++++++++++++++++++ .../Microsoft.DataClassificationService.json | 42 +++++++++++++++++ concepts/whats-new-overview.md | 4 ++ 5 files changed, 98 insertions(+), 7 deletions(-) create mode 100644 api-reference/beta/resources/policytipaction.md diff --git a/api-reference/beta/resources/enums-security.md b/api-reference/beta/resources/enums-security.md index 342a8ba91ba..9890c14b1b2 100644 --- a/api-reference/beta/resources/enums-security.md +++ b/api-reference/beta/resources/enums-security.md @@ -749,6 +749,7 @@ Namespace: microsoft.graph.security |sPSharingNotifyUser| |sPSharingGenerateIncidentReport| |restrictWebGrounding| +|policyTip| ### executionMode values diff --git a/api-reference/beta/resources/notifyuseraction.md b/api-reference/beta/resources/notifyuseraction.md index a8c8fbebbd5..577f6413822 100644 --- a/api-reference/beta/resources/notifyuseraction.md +++ b/api-reference/beta/resources/notifyuseraction.md @@ -16,7 +16,7 @@ Namespace: microsoft.graph Represents a Data Loss Prevention (DLP) action that involves notifying users about a policy match. -Inherits from [dlpActionInfo](../resources/dlpactioninfo.md). +Inherits from [policyTipAction](../resources/policytipaction.md). ## Properties @@ -26,7 +26,7 @@ Inherits from [dlpActionInfo](../resources/dlpactioninfo.md). | actionLastModifiedDateTime | DateTimeOffset | Timestamp when the notification action configuration was last modified. | | emailText | String | The body text of the email notification sent to users. | | overrideOption | microsoft.graph.security.overrideOption | Specifies the override options available to the user. Possible values are `notAllowed`, `allowFalsePositiveOverride`, `allowWithJustification`, `allowWithoutJustification`, and `allowWithAcknowledgement`. | -| policyTip | String | The text of the policy tip displayed to the user within the application (For example, Outlook, Word). | +| policyTip | String | The text of the policy tip displayed to the user within the application (For example, Outlook, Word). Inherited from [policyTipAction](../resources/policytipaction.md). | | recipients | String collection | List of email addresses or user identifiers designated to receive the notification email. Can include sender, owner, manager, etc. | ## Relationships @@ -39,7 +39,7 @@ The following JSON representation shows the resource type. ``` json @@ -53,9 +53,6 @@ The following JSON representation shows the resource type. "actionLastModifiedDateTime": "String (timestamp)", "overrideOption": "String", "emailText": "String", - "policyTip": "String", - "policyTipUrl": "String", - "isPolicyTipShownAsDialog": "Boolean", - "customizedPolicyTipDialogText": "String" + "policyTip": "String" } ``` diff --git a/api-reference/beta/resources/policytipaction.md b/api-reference/beta/resources/policytipaction.md new file mode 100644 index 00000000000..0a900866bf6 --- /dev/null +++ b/api-reference/beta/resources/policytipaction.md @@ -0,0 +1,47 @@ +--- +title: "policyTipAction resource type" +description: "When a Data Loss Prevention (DLP) policy is triggered, guidance to display to the user is included as a policy tip." +author: "Vishnu369" +ms.date: 05/26/2026 +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +--- + +# policyTipAction resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +When a Data Loss Prevention (DLP) policy is triggered, guidance to display to the user is included as a policy tip. The **policyTipAction** is returned in the processContent and protectionScopes responses when a DLP policy with a notify-user action matches. + +Inherits from [dlpActionInfo](../resources/dlpactioninfo.md). + +## Properties + +| Property | Type | Description | +| :--- | :--- | :--- | +| action | microsoft.graph.security.dlpAction | The type of DLP action. Inherited from [dlpActionInfo](../resources/dlpactioninfo.md). | +| policyTip | String | The text of the policy tip that explains what triggered the DLP policy. Developers can display this information to users in the app. | + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.policyTipAction", + "action": "policyTip", + "policyTip": "String" +} +``` diff --git a/changelog/Microsoft.DataClassificationService.json b/changelog/Microsoft.DataClassificationService.json index 4a431e1e39b..1e2dbed677d 100644 --- a/changelog/Microsoft.DataClassificationService.json +++ b/changelog/Microsoft.DataClassificationService.json @@ -1,5 +1,47 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "c9d06e62-9da2-47bc-9a90-6940b8078c55", + "ApiChange": "Member", + "ChangedApiName": "policyTip", + "ChangeType": "Addition", + "Description": "Added the `policyTip` member to the **dlpAction** enumeration.", + "Target": "dlpAction" + }, + { + "Id": "c9d06e62-9da2-47bc-9a90-6940b8078c55", + "ApiChange": "Property", + "ChangedApiName": "overrideOption", + "ChangeType": "Deletion", + "Description": "Removed the **overrideOption** property from the [notifyUserAction](https://learn.microsoft.com/en-us/graph/api/resources/notifyUserAction?view=graph-rest-beta) resource.", + "Target": "notifyUserAction" + }, + { + "Id": "c9d06e62-9da2-47bc-9a90-6940b8078c55", + "ApiChange": "Property", + "ChangedApiName": "policyTip", + "ChangeType": "Deletion", + "Description": "Removed the **policyTip** property from the [notifyUserAction](https://learn.microsoft.com/en-us/graph/api/resources/notifyUserAction?view=graph-rest-beta) resource.", + "Target": "notifyUserAction" + }, + { + "Id": "c9d06e62-9da2-47bc-9a90-6940b8078c55", + "ApiChange": "Resource", + "ChangedApiName": "policyTipAction", + "ChangeType": "Addition", + "Description": "Added the [policyTipAction](https://learn.microsoft.com/en-us/graph/api/resources/policyTipAction?view=graph-rest-beta) resource.", + "Target": "policyTipAction" + } + ], + "Id": "c9d06e62-9da2-47bc-9a90-6940b8078c55", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-19T16:29:50.6220555Z", + "WorkloadArea": "Security", + "SubArea": "" + }, { "ChangeList": [ { diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index a3984f5b424..3aa3fb67cd7 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -63,6 +63,10 @@ Application permissions for the [user: translateExchangeIds](/graph/api/user-tra ## June 2026: New in preview only +### Security | Data security and compliance + +Added the [policyTipAction](/graph/api/resources/policytipaction?view=graph-rest-beta&preserve-view=true) resource type and the `policyTip` member to the **dlpAction** enumeration. This enables applications to receive policy tip guidance as a standalone action when DLP policies are triggered through the processContent and protectionScopes APIs. + ### Backup storage Use the new full workload backup APIs to protect entire Microsoft 365 workloads (SharePoint Online, OneDrive for work or school, and Exchange Online) with minimal administrative overhead. Instead of manually selecting each item to protect, you can create a protection policy that backs up all data in a workload and then specify only the items to exclude from backup. For more information, see [exclusionUnitBase](/graph/api/resources/exclusionunitbase?view=graph-rest-beta&preserve-view=true) and [exclusionUnitBulkAdditionJob](/graph/api/resources/exclusionunitbulkadditionjob?view=graph-rest-beta&preserve-view=true). From 7c311b4d10a84f280ab13de588c715370d5008bb Mon Sep 17 00:00:00 2001 From: Yossi Bruss <287477490+yossibruss-ms@users.noreply.github.com> Date: Fri, 19 Jun 2026 21:28:50 +0300 Subject: [PATCH 12/52] Document Custom detection rules API for beta promotion (PR 15852483) (#28951) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit * Document Custom detection rules API for beta promotion (PR 15852483) - Add 43 resource docs (detectionRule, detectionAction, alertTemplate, entityMappingConfiguration, 18 entity mapping types, automated action hierarchy, MITRE types) - Add 111 API operation docs (rulesRoot, detectionRule, detectionAction, alertTemplate, entityMappings collections and casts) - Update TOC under Security with new Custom detection rules tree (149 hrefs) - Add changelog entry and What's New section for May 2026 preview - Apply deprecation banners to legacy detection rule surface (removal 2026-05-01) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Attach documentation plan for AI-assisted authoring review Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Restore temp-docstubs-instructions.md; drop documentation-plan.md from folder The verify-temp-docstubs CI requires only temp-docstubs-instructions.md in this folder. The documentation plan will be attached to the PR description instead. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Add permission include files for Custom detection rules APIs Adds 109 -permissions.md include files referenced by the new API operation docs. All operations are bound to CustomDetection.Read.All (least for read) and CustomDetection.ReadWrite.All (least for write, also higher for read). Personal MSA not supported. Sourced from Permissions/CustomDetection.json in the workloads repo. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Fix API Doctor validation errors for detection rules docs - Rename duplicate method names in 4 parent-context API files (detectionaction_get_alerttemplate, detectionaction_update_alerttemplate, detectionrule_get_detectionaction, detectionrule_update_detectionaction) - Update 3 broken links in security-api-overview.md to new security-rulesroot-{list,post,delete}-detectionrules.md file names - Remove non-standard 'name' field from response blockType in 4 abstract entityMapping CRUD files so API Doctor can pair request and response - Add 'truncated: true' to response blockType in 9 derived entityMapping list operations to suppress 'missing required properties' on truncated example responses Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Use Collection(...) @odata.type for entityMapping list responses API Doctor was reporting missing required properties at the root of list responses because the @odata.type metadata declared a single object type while the JSON example is wrapped in {value: [...]}. Switching to Collection(...) matches the convention used by other list operations (e.g., appcatalogs-list-teamsapps, basesitepage-list) and lets the validator inspect items inside the value array, where the required properties (@odata.type, id, and column properties) are present. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Add missing dnsDomainColumn and upnSuffixColumn to update_entitymapping example The accountEntityMapping example used in the update_entitymapping request and response was missing two required column properties. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * fix * fix * fix * fix * fix * fix * fix * fix * fix * fix * Address self-review findings for custom detection rules beta promotion - Replace literal "String" placeholders with realistic Defender XDR pseudo-values (suspicious encoded PowerShell from Office scenario) - Add entityMappings (accounts/hosts/files) and tactics to POST request example; include entityMappings (accounts) in response examples to satisfy host/account/email required-asset rule - Remove redundant @odata.type tags from non-polymorphic types in JSON examples - Link detectionRuleStatus enum to enums-security.md (matches repo convention) - Reorder ruleSchedule JSON keys alphabetically to match Properties table - Fix "16 derived types" to "17" in responseAction deprecation note - Strip Markdown link syntax from YAML front-matter descriptions on 18 entityMapping derived type files (renders literally in search snippets otherwise) - Update deprecation date from 2026-05-01 to 2026-10-01 across PR files (44 occurrences) - Add missing terminating period in responseAction body sentence Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Move Custom detection rules What's New entry from May 2026 to June 2026 We're now in June; the entry should appear in the current month's preview section so it surfaces correctly when published. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Address review comments on detection rule API examples security-detectionrule-get.md: - Restore deleted background paragraph about KQL-based custom detections - Enrich GET response example with new-schema fields: full alertTemplate (description, recommendedActions, tactics with MITRE technique) and automatedActions (isolateDevices, initiateInvestigations) - Remove deprecated isEnabled from the example All 4 API method examples: - Replace generic GUID with memorable client-provided id "office-encoded-powershell" for readability Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply GET-style enrichment to POST, LIST, and UPDATE response examples Mirror the GET response shape across all CRUD methods so customers see consistent new-schema content (tactics with MITRE technique, automatedActions with isolateDevices and initiateInvestigations) in every example. Remove deprecated isEnabled from all three response bodies. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Address review: whats-new, TOC, and changelog cleanup (Group A) - whats-new (#1): replace verbose multi-bullet entry with single-sentence Updated entry linking only to detectionRule - toc.yml (#2): revert generated file - toc.mapping.json (#2): add 'Custom detection rules' childNode with detectionRule resource and all related types as complexTypes; remove flat detectionRule from parent Security resources - changelog (#19): reset to origin/main and prepend single new entry with all 72 ChangeList items sharing the parent Id per repo convention * Address review: detectionRule resource (Group B) - #8: simplify Methods table to verb-only links - #9: move isEnabled (deprecated) to bottom of Properties table - #10: add detectorId (deprecated) and lastRunDetails (deprecated) properties at the bottom, plus to JSON representation, citing 2026-10-01 removal date - #11: document supported OData query parameters above the Properties table - #20: note that the detectionAction relationship is expanded by default * Address review: ruleSchedule resource (Group C) - #3: change period type from Duration to String (matches schema Edm.String) - #4: update JSON representation period value from 'String (duration)' to 'String' - #14: move deprecated properties (nextRunDateTime, period) to the bottom of the Properties table and rename with '(deprecated)' suffix * Address review: alertTemplate resource (Group D) - #21: add tactics to the Properties table (Collection(mitreTactic)) per schema - #22: remove tactics from Relationships (it is a property, not a navigation) - #34: add tactics and impactedAssets to the JSON representation - consistency with Group B/C: rename deprecated properties with (deprecated) suffix and move to the bottom of the Properties table - note that entityMappings relationship is expanded by default (same pattern as detectionAction) * Address review: present nested types as complex types (Group E) - mitreTactic (#23, #26, #27, #28): apply Faith's #23 wording suggestion, remove Inherits/Methods/id, move techniques from Relationships to Properties (matches schema), update JSON - mitreTechnique (#24, #25, #28): remove Inherits/Methods/id, fix wording ('relationship of' -> 'property of') - detectionAction (#28 global per offline alignment): remove Inherits/Methods/id/baseType, move alertTemplate from Relationships to Properties, update JSON - alertTemplate (#28 global per offline alignment): remove Inherits/Methods/id/baseType, move entityMappings from Relationships to Properties (alphabetical), update JSON - entityMappingConfiguration (#28 global per offline alignment): remove Inherits/Methods/id/baseType, move all 18 entity-mapping collections from Relationships to Properties, add inline placeholders to JSON - entityMapping (#28 global per offline alignment): remove Inherits/Methods/baseType from blockType comment * Address review: label deprecated resources and properties (Group F) - #15 querycondition: rename lastModifiedDateTime to '(deprecated)' and move to bottom (Group B/C pattern) - #16 rundetails: add '(deprecated)' suffix to YAML title and H1 - #30 impactedasset: add '(deprecated)' suffix to YAML title and H1 - #32 responseaction (base + 17 derived types): add '(deprecated)' suffix to YAML title and H1; add IMPORTANT note to each derived type referencing the automatedAction replacement * Address review: retire protectionRule and revert userAccount (Group G) - #31 protectionRule: type was removed from the schema in the schema PR; retire the doc per repo deprecate-retire guideline (delete file, remove from toc.mapping.json, add Deletion changelog entry); no redirect needed because the doc had no Methods table - #33 userAccount: revert addition of deprecated tenantId property (unrelated to this PR; property never existed in the schema) * Address review: API operation fixes (Group H) - #5 grammar: 'your organization network' -> 'your organization''s network' in security-detectionrule-get.md - #17: create rbac-security-detection-rules-apis-read.md and rbac-security-detection-rules-apis-write.md include files following the Defender XDR Unified RBAC model (Detection tuning permission per the permissions catalog) with Microsoft Entra role alternatives; reference the appropriate include after the permissions include in all 5 API operation files - #18: in security-rulesroot-list-detectionrules.md, explicitly enumerate the supported OData query parameters instead of saying 'some of the OData query parameters' * Address review: add rulesRoot resource and rules navigation (Group I) - Add new resource doc security-rulesroot.md modeled after collaborationRoot, with the 5 detectionRule CRUD operations and the detectionRules relationship - Update security.md to add the rules relationship returning rulesRoot - Update toc.mapping.json to include rulesRoot under the Custom detection rules childNode - Addresses gap flagged in Faith's overall review summary * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi * Address Acrolinx feedback on deprecated responseAction docs - Spell out the removal date (2026-10-01 -> October 1, 2026) in the IMPORTANT banner of all 17 derived responseAction docs to satisfy the Microsoft style guide. - security-disableuserresponseaction.md: fix 'on premises' -> 'on-premises' in description and body wording. * Document organizationalScope.deviceGroups and deprecate scopeType/scopeNames Mirrors the schema change applied in AGS PR #15852483: - Add deviceGroups (Collection(String)) as the live property - Mark scopeType and scopeNames as deprecated (October 1, 2026) and move them to the bottom of the Properties table - Update JSON representation - Add changelog entries (1 Addition + 2 Deprecations) under the existing PR changelog entry * Remove teamsMessageEntityMapping references (not promoted to prod yet) The teamsMessageEntityMapping type was removed from the schema PR (iteration 3: 'Remove teams message entity - not supported by UI'). Cleaning up doc references that lagged behind: - Delete api-reference/beta/resources/security-teamsmessageentitymapping.md - security-entitymapping.md: drop teamsMessageEntityMapping from the derived-types bullet list - security-entitymappingconfiguration.md: drop teamsMessages from the Properties table and JSON representation - toc.mapping.json: drop teamsMessageEntityMapping from the Custom detection rules childNode - changelog/Microsoft.M365.Defender.json: remove the teamsMessageEntityMapping Addition item from this PR's changelog entry (never shipped) Leaves teamsMessageEvidence and teamsMessageDeliveryAction (unrelated types) untouched. * Add query capabilities, remove unsupported enum values * Add per-property filter operaors * Change proeprties to relationships * include all status values * Add deprecation notice in impacted assets * Add changelog entry to suppress schema PR warning * Add changelog entries for remaining moved protectionRule properties Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Add changelog entry for detectionRule/id Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update reference TOC * Update api-reference/beta/resources/security-detectionrule.md * Apply suggestion from @FaithOmbongi * Apply suggestion from @FaithOmbongi * Fix What's New ordering * Reset changelog * Add back changelog * Re-ran graph review * Acrolinx fixes * Correct erroneous push for alertTemplate * alertTemplate is complex type. Doc stubs were wrong? Removed unnecessary baseType from JSON representation. * Align docs with EntityType→ComplexType schema change (PR 16082892) - detectionRule: move detectionAction from Relationships to Properties - entityMapping: remove entity inheritance, id, keyProperty (now ComplexType) - 17 *EntityMapping subtypes: remove id, keyProperty - alertTemplate: fix JSON syntax (missing comma) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Remove Methods sections from ComplexType resources (ADO PR 16082892) --------- Co-authored-by: Yossi Bruss Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Yossi Bruss Co-authored-by: Faith Moraa Ombongi Co-authored-by: Microsoft Graph DevX Tooling --- .../beta/api/security-detectionrule-delete.md | 103 --- .../beta/api/security-detectionrule-get.md | 172 ++--- .../beta/api/security-detectionrule-list.md | 278 -------- ...urity-detectionrule-post-detectionrules.md | 161 ----- .../beta/api/security-detectionrule-update.md | 170 ++--- ...ecurity-rulesroot-delete-detectionrules.md | 81 +++ .../security-rulesroot-list-detectionrules.md | 151 ++++ .../security-rulesroot-post-detectionrules.md | 213 ++++++ ...sroot-delete-detectionrules-permissions.md | 11 + ...lesroot-list-detectionrules-permissions.md | 11 + ...lesroot-post-detectionrules-permissions.md | 11 + ...rbac-security-detection-rules-apis-read.md | 13 + ...bac-security-detection-rules-apis-write.md | 12 + .../beta/resources/enums-security.md | 9 + .../security-accountentitymapping.md | 58 ++ .../security-accountobjectidaction.md | 46 ++ .../resources/security-accountsidaction.md | 46 ++ .../resources/security-alertcustomdetails.md | 43 ++ .../beta/resources/security-alerttemplate.md | 42 +- .../security-allowfileresponseaction.md | 7 +- .../security-amazonresourceentitymapping.md | 46 ++ .../beta/resources/security-api-overview.md | 6 +- .../resources/security-automatedaction.md | 49 ++ .../resources/security-automatedactionset.md | 138 ++++ .../security-azureresourceentitymapping.md | 46 ++ .../security-blockfileresponseaction.md | 7 +- .../security-cloudapplicationentitymapping.md | 48 ++ ...llectinvestigationpackageresponseaction.md | 7 +- .../resources/security-detectionaction.md | 36 +- .../beta/resources/security-detectionrule.md | 78 ++- .../beta/resources/security-deviceaction.md | 46 ++ .../security-disableuserresponseaction.md | 11 +- .../resources/security-dnsentitymapping.md | 50 ++ .../beta/resources/security-emailaction.md | 48 ++ .../beta/resources/security-entitymapping.md | 58 ++ .../security-entitymappingconfiguration.md | 109 +++ .../beta/resources/security-fileaction.md | 52 ++ .../resources/security-fileentitymapping.md | 50 ++ ...ty-forceuserpasswordresetresponseaction.md | 7 +- ...curity-googlecloudresourceentitymapping.md | 46 ++ .../security-harddeleteresponseaction.md | 7 +- .../resources/security-hostentitymapping.md | 54 ++ .../beta/resources/security-impactedasset.md | 9 +- .../resources/security-impacteddeviceasset.md | 9 +- .../security-impactedmailboxasset.md | 9 +- .../resources/security-impacteduserasset.md | 9 +- .../security-incidenttaskresponseaction.md | 7 +- ...ity-initiateinvestigationresponseaction.md | 7 +- .../resources/security-ipentitymapping.md | 48 ++ .../resources/security-isolatedeviceaction.md | 48 ++ .../security-isolatedeviceresponseaction.md | 7 +- .../security-mailboxentitymapping.md | 46 ++ .../security-mailclusterentitymapping.md | 48 ++ .../security-mailmessageentitymapping.md | 52 ++ ...ity-markuserascompromisedresponseaction.md | 7 +- .../beta/resources/security-mitretactic.md | 49 ++ .../beta/resources/security-mitretechnique.md | 47 ++ ...curity-movetodeleteditemsresponseaction.md | 7 +- .../security-movetoinboxresponseaction.md | 7 +- .../security-movetojunkresponseaction.md | 7 +- .../security-oauthapplicationentitymapping.md | 46 ++ .../resources/security-organizationalscope.md | 16 +- .../security-processentitymapping.md | 48 ++ .../beta/resources/security-protectionrule.md | 58 -- .../beta/resources/security-querycondition.md | 11 +- .../security-registryvalueentitymapping.md | 48 ++ .../beta/resources/security-responseaction.md | 11 +- ...rity-restrictappexecutionresponseaction.md | 7 +- .../beta/resources/security-ruleschedule.md | 17 +- .../beta/resources/security-rulesroot.md | 46 ++ ...security-runantivirusscanresponseaction.md | 7 +- .../beta/resources/security-rundetails.md | 9 +- .../security-securitygroupentitymapping.md | 50 ++ .../security-softdeleteresponseaction.md | 7 +- .../security-stopandquarantinefileaction.md | 48 ++ ...ity-stopandquarantinefileresponseaction.md | 7 +- .../resources/security-urlentitymapping.md | 46 ++ api-reference/beta/resources/security.md | 1 + api-reference/beta/toc/security/toc.yml | 120 +++- api-reference/beta/toc/toc.mapping.json | 48 +- changelog/Microsoft.M365.Defender.json | 642 ++++++++++++++++++ concepts/whats-new-overview.md | 1 + 82 files changed, 3416 insertions(+), 938 deletions(-) delete mode 100644 api-reference/beta/api/security-detectionrule-delete.md delete mode 100644 api-reference/beta/api/security-detectionrule-list.md delete mode 100644 api-reference/beta/api/security-detectionrule-post-detectionrules.md create mode 100644 api-reference/beta/api/security-rulesroot-delete-detectionrules.md create mode 100644 api-reference/beta/api/security-rulesroot-list-detectionrules.md create mode 100644 api-reference/beta/api/security-rulesroot-post-detectionrules.md create mode 100644 api-reference/beta/includes/permissions/security-rulesroot-delete-detectionrules-permissions.md create mode 100644 api-reference/beta/includes/permissions/security-rulesroot-list-detectionrules-permissions.md create mode 100644 api-reference/beta/includes/permissions/security-rulesroot-post-detectionrules-permissions.md create mode 100644 api-reference/beta/includes/rbac-for-apis/rbac-security-detection-rules-apis-read.md create mode 100644 api-reference/beta/includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md create mode 100644 api-reference/beta/resources/security-accountentitymapping.md create mode 100644 api-reference/beta/resources/security-accountobjectidaction.md create mode 100644 api-reference/beta/resources/security-accountsidaction.md create mode 100644 api-reference/beta/resources/security-alertcustomdetails.md create mode 100644 api-reference/beta/resources/security-amazonresourceentitymapping.md create mode 100644 api-reference/beta/resources/security-automatedaction.md create mode 100644 api-reference/beta/resources/security-automatedactionset.md create mode 100644 api-reference/beta/resources/security-azureresourceentitymapping.md create mode 100644 api-reference/beta/resources/security-cloudapplicationentitymapping.md create mode 100644 api-reference/beta/resources/security-deviceaction.md create mode 100644 api-reference/beta/resources/security-dnsentitymapping.md create mode 100644 api-reference/beta/resources/security-emailaction.md create mode 100644 api-reference/beta/resources/security-entitymapping.md create mode 100644 api-reference/beta/resources/security-entitymappingconfiguration.md create mode 100644 api-reference/beta/resources/security-fileaction.md create mode 100644 api-reference/beta/resources/security-fileentitymapping.md create mode 100644 api-reference/beta/resources/security-googlecloudresourceentitymapping.md create mode 100644 api-reference/beta/resources/security-hostentitymapping.md create mode 100644 api-reference/beta/resources/security-ipentitymapping.md create mode 100644 api-reference/beta/resources/security-isolatedeviceaction.md create mode 100644 api-reference/beta/resources/security-mailboxentitymapping.md create mode 100644 api-reference/beta/resources/security-mailclusterentitymapping.md create mode 100644 api-reference/beta/resources/security-mailmessageentitymapping.md create mode 100644 api-reference/beta/resources/security-mitretactic.md create mode 100644 api-reference/beta/resources/security-mitretechnique.md create mode 100644 api-reference/beta/resources/security-oauthapplicationentitymapping.md create mode 100644 api-reference/beta/resources/security-processentitymapping.md delete mode 100644 api-reference/beta/resources/security-protectionrule.md create mode 100644 api-reference/beta/resources/security-registryvalueentitymapping.md create mode 100644 api-reference/beta/resources/security-rulesroot.md create mode 100644 api-reference/beta/resources/security-securitygroupentitymapping.md create mode 100644 api-reference/beta/resources/security-stopandquarantinefileaction.md create mode 100644 api-reference/beta/resources/security-urlentitymapping.md diff --git a/api-reference/beta/api/security-detectionrule-delete.md b/api-reference/beta/api/security-detectionrule-delete.md deleted file mode 100644 index 1689696edfe..00000000000 --- a/api-reference/beta/api/security-detectionrule-delete.md +++ /dev/null @@ -1,103 +0,0 @@ ---- -title: "Delete detectionRule" -description: "Delete a custom detection rule." -author: "mmekler" -ms.localizationpriority: medium -ms.subservice: "security" -doc_type: apiPageType -ms.date: 06/21/2024 ---- - -# Delete detectionRule -Namespace: microsoft.graph.security - -[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] - -Delete a [custom detection rule](../resources/security-detectionrule.md). - -[!INCLUDE [national-cloud-support](../../includes/global-only.md)] - -## Permissions -Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - - -[!INCLUDE [permissions-table](../includes/permissions/security-detectionrule-delete-permissions.md)] - -## HTTP request - - -```http -DELETE /security/rules/detectionRules/{ruleId} -``` - -## Request headers -|Name|Description| -|:---|:---| -|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| - -## Request body -Don't supply a request body for this method. - -## Response - -If successful, this method returns a `204 No Content` response code. - -## Examples - -### Request -The following example shows a request. -# [HTTP](#tab/http) - -```http -DELETE https://graph.microsoft.com/beta/security/rules/detectionRules/302 -``` - -# [C#](#tab/csharp) -[!INCLUDE [sample-code](../includes/snippets/csharp/delete-detectionrule-csharp-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Go](#tab/go) -[!INCLUDE [sample-code](../includes/snippets/go/delete-detectionrule-go-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Java](#tab/java) -[!INCLUDE [sample-code](../includes/snippets/java/delete-detectionrule-java-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [JavaScript](#tab/javascript) -[!INCLUDE [sample-code](../includes/snippets/javascript/delete-detectionrule-javascript-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [PHP](#tab/php) -[!INCLUDE [sample-code](../includes/snippets/php/delete-detectionrule-php-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [PowerShell](#tab/powershell) -[!INCLUDE [sample-code](../includes/snippets/powershell/delete-detectionrule-powershell-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Python](#tab/python) -[!INCLUDE [sample-code](../includes/snippets/python/delete-detectionrule-python-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - ---- - -### Response -The following example shows the response. ->**Note:** The response object shown here might be shortened for readability. - -```http -HTTP/1.1 204 No Content -``` - diff --git a/api-reference/beta/api/security-detectionrule-get.md b/api-reference/beta/api/security-detectionrule-get.md index bb4da07be11..920f150274d 100644 --- a/api-reference/beta/api/security-detectionrule-get.md +++ b/api-reference/beta/api/security-detectionrule-get.md @@ -1,50 +1,58 @@ --- title: "Get detectionRule" -description: "Read the properties and relationships of a custom detection rule." +description: "Read the properties and relationships of a detectionRule object." author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: apiPageType -ms.date: 06/21/2024 +ms.date: 05/25/2026 --- # Get detectionRule + Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Read the properties and relatonships of a [custom detection rule](../resources/security-detectionrule.md). - -With custom detections, you can proactively monitor for and respond to various events and system states, including suspected breach activity and misconfigured assets in their organization network. -Custom detection rules, which are written in [Kusto query language (KQL)](/azure/data-explorer/kusto/query/), automatically trigger [alerts](../resources/security-alert.md) and response actions when events occur that match a KQL query. +Read the properties and relationships of a [detectionRule](../resources/security-detectionrule.md) object. -[!INCLUDE [national-cloud-support](../../includes/global-only.md)] +With custom detections, you can proactively monitor for and respond to various events and system states, including suspected breach activity and misconfigured assets in your organization's network. Custom detection rules, which are written in [Kusto query language (KQL)](/azure/data-explorer/kusto/query/), automatically trigger [alerts](../resources/security-alert.md) and automated actions when events occur that match a KQL query. ## Permissions + Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-detectionrule-get-permissions.md)] +[!INCLUDE [rbac-security-detection-rules-apis-read](../includes/rbac-for-apis/rbac-security-detection-rules-apis-read.md)] + ## HTTP request -```http -GET /security/rules/detectionRules/{ruleId} +``` http +GET /security/rules/detectionRules/{detectionRuleId} ``` ## Optional query parameters + This method supports some of the OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers + |Name|Description| |:---|:---| |Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| ## Request body + Don't supply a request body for this method. ## Response @@ -54,124 +62,88 @@ If successful, this method returns a `200 OK` response code and a [microsoft.gra ## Examples ### Request + The following example shows a request. -# [HTTP](#tab/http) + -```msgraph-interactive -GET https://graph.microsoft.com/beta/security/rules/detectionRules/7506 +``` http +GET https://graph.microsoft.com/beta/security/rules/detectionRules/office-encoded-powershell ``` -# [C#](#tab/csharp) -[!INCLUDE [sample-code](../includes/snippets/csharp/get-detectionrule-csharp-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Go](#tab/go) -[!INCLUDE [sample-code](../includes/snippets/go/get-detectionrule-go-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Java](#tab/java) -[!INCLUDE [sample-code](../includes/snippets/java/get-detectionrule-java-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [JavaScript](#tab/javascript) -[!INCLUDE [sample-code](../includes/snippets/javascript/get-detectionrule-javascript-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [PHP](#tab/php) -[!INCLUDE [sample-code](../includes/snippets/php/get-detectionrule-php-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [PowerShell](#tab/powershell) -[!INCLUDE [sample-code](../includes/snippets/powershell/get-detectionrule-powershell-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Python](#tab/python) -[!INCLUDE [sample-code](../includes/snippets/python/get-detectionrule-python-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - ---- - ### Response + The following example shows the response. + >**Note:** The response object shown here might be shortened for readability. + -```http +``` http HTTP/1.1 200 OK Content-Type: application/json { "@odata.type": "#microsoft.graph.security.detectionRule", - "id": "7506", - "displayName": "ban file", - "isEnabled": true, - "createdBy": "NaderK@winatptestlic06.ccsctp.net", - "createdDateTime": "2021-02-28T16:28:15.3863467Z", - "lastModifiedDateTime": "2023-05-24T09:26:11.8630516Z", - "lastModifiedBy": "GlobalAdmin@unifiedrbactest3.ccsctp.net", - "detectorId": "67895317-b2a8-4ac3-8f8b-fa6b7765f2fe", + "id": "office-encoded-powershell", + "displayName": "Suspicious encoded PowerShell from Office", + "description": "Detects encoded PowerShell processes launched by Office applications, a common phishing payload pattern.", + "status": "enabled", + "createdBy": "alice@contoso.com", + "createdDateTime": "2026-05-25T10:15:00Z", + "lastModifiedBy": "alice@contoso.com", + "lastModifiedDateTime": "2026-05-25T10:15:00Z", "queryCondition": { - "queryText": "DeviceFileEvents\r\n| where Timestamp > ago(1h)\r\n| where FileName == \"ifz30zlx.dll\"", - "lastModifiedDateTime": null + "queryText": "DeviceProcessEvents | where InitiatingProcessFileName in~ ('winword.exe','excel.exe','outlook.exe') | where FileName == 'powershell.exe' | where ProcessCommandLine has '-enc'" }, "schedule": { - "period": "24H", - "nextRunDateTime": "2023-06-26T08:52:06.1766667Z" - }, - "lastRunDetails": { - "lastRunDateTime": "2023-06-25T08:52:06.1766667Z", - "status": null, - "failureReason": null, - "errorCode": null + "frequency": "PT1H" }, "detectionAction": { "alertTemplate": { - "title": "unwanted dll", - "description": "test", - "severity": "low", - "category": "Malware", - "recommendedActions": null, - "mitreTechniques": [], - "impactedAssets": [] - }, - "organizationalScope": null, - "responseActions": [ - { - "@odata.type": "#microsoft.graph.security.restrictAppExecutionResponseAction", - "identifier": "deviceId" - }, - { - "@odata.type": "#microsoft.graph.security.initiateInvestigationResponseAction", - "identifier": "deviceId" - }, - { - "@odata.type": "#microsoft.graph.security.collectInvestigationPackageResponseAction", - "identifier": "deviceId" - }, - { - "@odata.type": "#microsoft.graph.security.runAntivirusScanResponseAction", - "identifier": "deviceId" + "title": "Suspicious encoded PowerShell from Office", + "description": "An Office app launched an encoded PowerShell command, which may indicate phishing-driven code execution.", + "severity": "high", + "recommendedActions": "Investigate the parent Office document, isolate the device, and review the user's recent email activity.", + "entityMappings": { + "accounts": [ + { + "nameColumn": "AccountName", + "sidColumn": "AccountSid" + } + ] }, - { - "@odata.type": "#microsoft.graph.security.isolateDeviceResponseAction", - "isolationType": "full", - "identifier": "deviceId" - }, - { - "@odata.type": "#microsoft.graph.security.blockFileResponseAction", - "identifier": "sha1", - "deviceGroupNames": [] - } - ] + "tactics": [ + { + "tactic": "Execution", + "techniques": [ + { + "technique": "T1059.001" + } + ] + } + ] + }, + "automatedActions": { + "isolateDevices": [ + { + "deviceIdColumn": "DeviceId", + "isolationType": "full" + } + ], + "initiateInvestigations": [ + { + "deviceIdColumn": "DeviceId" + } + ] + } } } -``` - +``` \ No newline at end of file diff --git a/api-reference/beta/api/security-detectionrule-list.md b/api-reference/beta/api/security-detectionrule-list.md deleted file mode 100644 index 6cd0408c730..00000000000 --- a/api-reference/beta/api/security-detectionrule-list.md +++ /dev/null @@ -1,278 +0,0 @@ ---- -title: "List detectionRules" -description: "Get a list of the custom detection rules and their properties." -author: "mmekler" -ms.localizationpriority: medium -ms.subservice: "security" -doc_type: apiPageType -ms.date: 06/21/2024 ---- - -# List detectionRules -Namespace: microsoft.graph.security - -[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] - -Get a list of [custom detection rules](../resources/security-detectionrule.md). -With custom detections, you can proactively monitor for and respond to various events and system states, including suspected breach activity and misconfigured assets in their organization network. -Custom detection rules, which are written in [Kusto query language (KQL)](/azure/data-explorer/kusto/query/), automatically trigger [alerts](../resources/security-alert.md) and response actions once there are events matching their KQL queries. - -[!INCLUDE [national-cloud-support](../../includes/global-only.md)] - -## Permissions -Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - - -[!INCLUDE [permissions-table](../includes/permissions/security-detectionrule-list-permissions.md)] - -## HTTP request - - -```http -GET /security/rules/detectionRules -``` - -## Optional query parameters -This method supports some of the OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). - -## Request headers -|Name|Description| -|:---|:---| -|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| - -## Request body -Don't supply a request body for this method. - -## Response - -If successful, this method returns a `200 OK` response code and a collection of [detectionRule](../resources/security-detectionrule.md) objects in the response body. - -## Examples - -### Request -The following example shows a request. -# [HTTP](#tab/http) - -```msgraph-interactive -GET https://graph.microsoft.com/beta/security/rules/detectionRules?$top=3 -``` - -# [C#](#tab/csharp) -[!INCLUDE [sample-code](../includes/snippets/csharp/list-detectionrule-csharp-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Go](#tab/go) -[!INCLUDE [sample-code](../includes/snippets/go/list-detectionrule-go-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Java](#tab/java) -[!INCLUDE [sample-code](../includes/snippets/java/list-detectionrule-java-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [JavaScript](#tab/javascript) -[!INCLUDE [sample-code](../includes/snippets/javascript/list-detectionrule-javascript-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [PHP](#tab/php) -[!INCLUDE [sample-code](../includes/snippets/php/list-detectionrule-php-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [PowerShell](#tab/powershell) -[!INCLUDE [sample-code](../includes/snippets/powershell/list-detectionrule-powershell-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Python](#tab/python) -[!INCLUDE [sample-code](../includes/snippets/python/list-detectionrule-python-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - ---- - -### Response -The following example shows the response. ->**Note:** The response object shown here might be shortened for readability. - -```http -HTTP/1.1 200 OK -Content-Type: application/json - -{ - "value": [ - { - "@odata.type": "#microsoft.graph.security.detectionRule", - "id": "7506", - "displayName": "ban file", - "isEnabled": true, - "createdBy": "NaderK@winatptestlic06.ccsctp.net", - "createdDateTime": "2021-02-28T16:28:15.3863467Z", - "lastModifiedDateTime": "2023-05-24T09:26:11.8630516Z", - "lastModifiedBy": "GlobalAdmin@unifiedrbactest3.ccsctp.net", - "detectorId": "67895317-b2a8-4ac3-8f8b-fa6b7765f2fe", - "queryCondition": { - "queryText": "DeviceFileEvents\r\n| where Timestamp > ago(1h)\r\n| where FileName == \"ifz30zlx.dll\"", - "lastModifiedDateTime": null - }, - "schedule": { - "period": "24H", - "nextRunDateTime": "2023-06-26T08:52:06.1766667Z" - }, - "lastRunDetails": { - "lastRunDateTime": "2023-06-25T08:52:06.1766667Z", - "status": null, - "failureReason": null, - "errorCode": null - }, - "detectionAction": { - "alertTemplate": { - "title": "unwanted dll", - "description": "test", - "severity": "low", - "category": "Malware", - "recommendedActions": null, - "mitreTechniques": [], - "impactedAssets": [] - }, - "organizationalScope": null, - "responseActions": [ - { - "@odata.type": "#microsoft.graph.security.restrictAppExecutionResponseAction", - "identifier": "deviceId" - }, - { - "@odata.type": "#microsoft.graph.security.initiateInvestigationResponseAction", - "identifier": "deviceId" - }, - { - "@odata.type": "#microsoft.graph.security.collectInvestigationPackageResponseAction", - "identifier": "deviceId" - }, - { - "@odata.type": "#microsoft.graph.security.runAntivirusScanResponseAction", - "identifier": "deviceId" - }, - { - "@odata.type": "#microsoft.graph.security.isolateDeviceResponseAction", - "isolationType": "full", - "identifier": "deviceId" - }, - { - "@odata.type": "#microsoft.graph.security.blockFileResponseAction", - "identifier": "sha1", - "deviceGroupNames": [] - } - ] - } - }, - { - "@odata.type": "#microsoft.graph.security.detectionRule", - "id": "8575", - "displayName": "Continuous_EmailAttachmentInfo_Mod300", - "isEnabled": true, - "createdBy": "rony@winatptestlic06.ccsctp.net", - "createdDateTime": "2021-11-03T21:32:01.6144651Z", - "lastModifiedDateTime": "2022-11-03T19:27:14.4187141Z", - "lastModifiedBy": "InESecAdmin@winatptestlic06.ccsctp.net", - "detectorId": "56ef4994-fe31-4ac9-b29f-0ca2f2cc9112", - "queryCondition": { - "queryText": "EmailAttachmentInfo\r\n| extend second = datetime_diff('second',now(),Timestamp)\r\n| where second % 300 == 0 ", - "lastModifiedDateTime": "2022-11-03T19:27:14.4331537Z" - }, - "schedule": { - "period": "0", - "nextRunDateTime": "2021-11-03T21:32:01.7863185Z" - }, - "lastRunDetails": { - "lastRunDateTime": "2021-11-03T21:32:01.7863185Z", - "status": null, - "failureReason": null, - "errorCode": null - }, - "detectionAction": { - "alertTemplate": { - "title": "EmailAttachmentInfo", - "description": "EmailAttachmentInfo", - "severity": "low", - "category": "Exfiltration", - "recommendedActions": "EmailAttachmentInfo", - "mitreTechniques": [], - "impactedAssets": [ - { - "@odata.type": "#microsoft.graph.security.impactedMailboxAsset", - "identifier": "recipientEmailAddress" - }, - { - "@odata.type": "#microsoft.graph.security.impactedUserAsset", - "identifier": "recipientObjectId" - } - ] - }, - "organizationalScope": null, - "responseActions": [ - { - "@odata.type": "#microsoft.graph.security.moveToDeletedItemsResponseAction", - "identifier": "networkMessageId, recipientEmailAddress" - } - ] - } - }, - { - "@odata.type": "#microsoft.graph.security.detectionRule", - "id": "9794", - "displayName": "UPDATED DET: Office/LoLBin Network Connection to Low-Reputation TLD", - "isEnabled": true, - "createdBy": "NaderK@winatptestlic06.ccsctp.net", - "createdDateTime": "2022-02-02T10:26:01.7708581Z", - "lastModifiedDateTime": "2022-02-02T10:26:01.7708581Z", - "lastModifiedBy": "NaderK@winatptestlic06.ccsctp.net", - "detectorId": "67aa92a1-b04b-4f2a-a223-236968a3da96", - "queryCondition": { - "queryText": "//https://www.spamhaus.org/statistics/tlds/ http://www.surbl.org/tld https://www.iana.org/domains/root/db https://unit42.paloaltonetworks.com/top-level-domains-cybercrime/\r\nDeviceNetworkEvents\r\n| where isnotempty(RemoteUrl) and RemoteIPType == \"Public\"\r\n| where InitiatingProcessFileName in~ (\"winword.exe\", \"excel.exe\", \"powerpnt.exe\", \"rundll32.exe\", \"regsvr32.exe\", \"certutil.exe\", \"bitsadmin.exe\", \"wscript.exe\", \"cscript.exe\", \"powershell.exe\", \"pwsh.exe\", \"powershell_ise.exe\")\r\n| extend TopLevelDomain=tolower(extract(@\"([A-Za-z0-9-]{1,63}\\.)+([A-Za-z]{2,10})\", 2, RemoteUrl))\r\n| where TopLevelDomain in (\"xyz\", \"top\", \"live\", \"loan\", \"club\", \"surf\", \"work\", \"biz\", \"ryukyu\", \"press\", \"ltd\", \"bid\", \"vip\", \"online\", \"download\" \"buzz\", \"cam\", \"ru\", \"cn\", \"ci\", \"ga\", \"gq\", \"tk\", \"tw\", \"ml\", \"cf\", \"cfd\", \"icu\", \"cm\")\r\n| extend TimeDiff=datetime_diff(\"Second\", Timestamp, InitiatingProcessCreationTime)\r\n| where TimeDiff < 30\r\n| project-reorder Timestamp, DeviceName, RemoteUrl, TopLevelDomain, TimeDiff, InitiatingProcessCommandLine, *\r\n//| summarize count() by InitiatingProcessFolderPath, TopLevelDomain, RemoteUrl", - "lastModifiedDateTime": null - }, - "schedule": { - "period": "1H", - "nextRunDateTime": "2023-06-25T10:17:06.4366667Z" - }, - "lastRunDetails": { - "lastRunDateTime": "2023-06-25T09:17:06.4366667Z", - "status": null, - "failureReason": null, - "errorCode": null - }, - "detectionAction": { - "alertTemplate": { - "title": "updated Office/LoLBin Network Connection to Low-Reputation TLD", - "description": "This is a custom detection created by the Centene Detection Engineering team.\n\nAn Office application or Living-Off-The-Land Binary made an immediate remote connection to a domain with a low-reputation top level domain after execution. This activity is suspicious as threat actors typically use low-reputation TLDs for malicious purposes, such as hosting payloads for potential targets. These TLDs are often abused because of their low cost and lack of oversite. The TLDs included in the list cover destinations that have either a high count or a high percentage of low-reputation sites. ", - "severity": "low", - "category": "CommandAndControl", - "recommendedActions": "Check the reputation of the RemoteUrl through OSINT tools such as VirusTotal and Hybrid Analysis.\n\nReview the document and device timeline for additional context and IOCs. \n\nCheck for related alerts on the associated endpoint. ", - "mitreTechniques": ["T1071.001"], - "impactedAssets": [ - { - "@odata.type": "#microsoft.graph.security.impactedDeviceAsset", - "identifier": "deviceId" - } - ] - }, - "organizationalScope": { - "scopeType": "deviceGroup", - "scopeNames": ["UnassignedGroup"] - }, - "responseActions": [] - } - } - ] -} -``` - diff --git a/api-reference/beta/api/security-detectionrule-post-detectionrules.md b/api-reference/beta/api/security-detectionrule-post-detectionrules.md deleted file mode 100644 index c4e2462113c..00000000000 --- a/api-reference/beta/api/security-detectionrule-post-detectionrules.md +++ /dev/null @@ -1,161 +0,0 @@ ---- -title: "Create detectionRule" -description: "Create a new custom detection rule." -author: "mmekler" -ms.localizationpriority: medium -ms.subservice: "security" -doc_type: apiPageType -ms.date: 06/21/2024 ---- - -# Create detectionRule -Namespace: microsoft.graph.security - -[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] - -Create a [custom detection rule](../resources/security-detectionrule.md). -With custom detections, you can proactively monitor for and respond to various events and system states, including suspected breach activity and misconfigured assets in their organization's network. -Custom detection rules, which are written in [Kusto query language (KQL)](/azure/data-explorer/kusto/query/), automatically trigger [alerts](../resources/security-alert.md) and response actions once there are events matching their KQL queries. - - -[!INCLUDE [national-cloud-support](../../includes/global-only.md)] - -## Permissions -Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - - -[!INCLUDE [permissions-table](../includes/permissions/security-detectionrule-post-detectionrules-permissions.md)] - -## HTTP request - - -```http -POST /security/rules/detectionRules -``` - -## Request headers -|Name|Description| -|:---|:---| -|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| -|Content-Type|application/json. Required.| - -## Request body -Within the request body, supply a [microsoft.graph.security.detectionRule](../resources/security-detectionrule.md). Some metadata fields are unnecessary and are ignored, such as 'createdBy' and 'lastModifiedDateTime'. - -## Response - -If successful, this method returns a `201 Created` response code and a [microsoft.graph.security.detectionRule](../resources/security-detectionrule.md) object in the response body. - -## Examples - -### Request -The following example shows a request. - -```http -POST https://graph.microsoft.com/beta/security/rules/detectionRules -Content-Type: application/json -{ - "displayName": "Some rule name", - "isEnabled": true, - "queryCondition": { - "queryText": "DeviceProcessEvents | take 1" - }, - "schedule": { - "period": "12H" - }, - "detectionAction": { - "alertTemplate": { - "title": "Some alert title", - "description": "Some alert description", - "severity": "medium", - "category": "Execution", - "recommendedActions": null, - "mitreTechniques": [], - "impactedAssets": [ - { - "@odata.type": "#microsoft.graph.security.impactedDeviceAsset", - "identifier": "deviceId" - } - ] - }, - "organizationalScope": null, - "responseActions": [ - { - "@odata.type": "#microsoft.graph.security.isolateDeviceResponseAction", - "identifier": "deviceId", - "isolationType": "full" - } - ] - } -} -``` - -### Response -The following example shows the response. ->**Note:** The response object shown here might be shortened for readability. - -```http -HTTP/1.1 201 Created -Content-Type: application/json - -{ - "@odata.type": "#microsoft.graph.security.detectionRule", - "id": "35079", - "displayName": "Some rule name", - "isEnabled": true, - "createdBy": "MichaelMekler@winatptestlic06.ccsctp.net", - "createdDateTime": "2023-06-25T09:37:28.6149005Z", - "lastModifiedDateTime": "2023-06-25T09:37:28.6149005Z", - "lastModifiedBy": "MichaelMekler@winatptestlic06.ccsctp.net", - "detectorId": "67aa92a1-b04b-4f2a-a223-236968a3da96", - "queryCondition": { - "queryText": "DeviceProcessEvents | take 1", - "lastModifiedDateTime": null - }, - "schedule": { - "period": "12H", - "nextRunDateTime": "2023-06-25T09:37:28.6149005Z" - }, - "lastRunDetails": { - "lastRunDateTime": null, - "status": null, - "failureReason": null, - "errorCode": null - }, - "detectionAction": { - "alertTemplate": { - "title": "Some alert title", - "description": "Some alert description", - "severity": "medium", - "category": "Execution", - "recommendedActions": null, - "mitreTechniques": [], - "impactedAssets": [ - { - "@odata.type": "#microsoft.graph.security.impactedDeviceAsset", - "identifier": "deviceId" - } - ] - }, - "organizationalScope": null, - "responseActions": [ - { - "@odata.type": "#microsoft.graph.security.isolateDeviceResponseAction", - "isolationType": "full", - "identifier": "deviceId" - } - ] - } -} -``` - diff --git a/api-reference/beta/api/security-detectionrule-update.md b/api-reference/beta/api/security-detectionrule-update.md index e0a9e737946..2ffda6e4dfa 100644 --- a/api-reference/beta/api/security-detectionrule-update.md +++ b/api-reference/beta/api/security-detectionrule-update.md @@ -1,152 +1,162 @@ --- title: "Update detectionRule" -description: "Update the properties of a custom detection rule." +description: "Update the properties of a detectionRule object." author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: apiPageType -ms.date: 06/21/2024 +ms.date: 05/25/2026 --- # Update detectionRule + Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Update the properties of a [custom detection rule](../resources/security-detectionrule.md). - -[!INCLUDE [national-cloud-support](../../includes/global-only.md)] +Update the properties of a [detectionRule](../resources/security-detectionrule.md) object. ## Permissions + Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-detectionrule-update-permissions.md)] +[!INCLUDE [rbac-security-detection-rules-apis-write](../includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md)] + ## HTTP request -```http -PATCH /security/rules/detectionRules/{ruleId} +``` http +PATCH /security/rules/detectionRules/{detectionRuleId} ``` ## Request headers -| Name | Description | -|:--------------|:----------------------------| -| Authorization |Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| -| Content-Type | application/json. Required. | + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| +|Content-Type|application/json. Required.| ## Request body -Provide the properties of a [microsoft.graph.security.detectionRule](../resources/security-detectionrule.md) to update, and those properties only. -The properties that can be updated are specified in the following table: - -| Property | Type | Description | -|:-------------------------------------------------|:---------------------------------------------------------------------------------------------|:-----------------------------------------------------------------| -| displayName | String | Optional. | -| isEnabled | Boolean | Optional. | -| detectionAction/alertTemplate/title | String | Optional. | -| detectionAction/alertTemplate/category | String | Optional. | -| detectionAction/alertTemplate/description | String | Optional. | -| detectionAction/alertTemplate/recommendedActions | String | Optional. Provide 'null' to delete the existing response actions | -| detectionAction/alertTemplate/severity | [microsoft.graph.alertSeverity](../resources/enums.md#alertseverity-values) | Optional. | -| detectionAction/alertTemplate/impactedAssets | [microsoft.graph.security.impactedAsset](../resources/security-impactedasset.md) | Optional. Provide 'null' to delete the existing impacted assets. | -| detectionAction/responseActions | [microsoft.graph.security.responseAction](../resources/security-responseaction.md) | Optional. | -| detectionAction/organizationalScope | [microsoft.graph.security.organizationalScope](../resources/security-organizationalscope.md) | Optional. | -| queryCondition/queryText | String | Optional. | -| schedule/period | String | Optional. | +[!INCLUDE [table-intro](../../includes/update-property-table-intro.md)] + +|Property|Type|Description| +|:---|:---|:---| +|description|String|A user-supplied description of the detection rule.| +|detectionAction|[microsoft.graph.security.detectionAction](../resources/security-detectionaction.md)|The actions taken when a detection is made by this rule, including the alert that is created and any automated response actions.| +|displayName|String|The display name of the rule.| +|isEnabled|Boolean|**Deprecated.** Use **status** instead. The `isEnabled` property will be removed from this resource on 2026-10-01.| +|queryCondition|[microsoft.graph.security.queryCondition](../resources/security-querycondition.md)|The advanced hunting query that defines the detection logic of this rule.| +|schedule|[microsoft.graph.security.ruleSchedule](../resources/security-ruleschedule.md)|The triggering schedule of this rule.| +|status|[microsoft.graph.security.detectionRuleStatus](../resources/enums-security.md#detectionrulestatus-values)|The current run status of the rule. The possible values are: `enabled`, `disabled`, `autoDisabled`, `unknownFutureValue`.| ## Response -If successful, this method returns a `200 OK` response code and an updated [microsoft.graph.security.detectionRule](../resources/security-detectionrule.md) object in the response body. +If successful, this method returns a `200 OK` response code and a [microsoft.graph.security.detectionRule](../resources/security-detectionrule.md) object in the response body. ## Examples ### Request + The following example shows a request. + -```http -PATCH https://graph.microsoft.com/beta/security/rules/detectionRules/35079 +``` http +PATCH https://graph.microsoft.com/beta/security/rules/detectionRules/office-encoded-powershell Content-Type: application/json + { - "schedule": { - "period": "24H" - }, - "detectionAction": { - "alertTemplate": { - "title": "Different alert title" - } + "status": "disabled", + "queryCondition": { + "queryText": "DeviceProcessEvents | where InitiatingProcessFileName in~ ('winword.exe','excel.exe','outlook.exe') | where FileName == 'powershell.exe' | where ProcessCommandLine has '-enc'" } } ``` - ### Response + The following example shows the response. + >**Note:** The response object shown here might be shortened for readability. + -```http +``` http HTTP/1.1 200 OK Content-Type: application/json { "@odata.type": "#microsoft.graph.security.detectionRule", - "id": "35079", - "displayName": "Some rule name", - "isEnabled": true, - "createdBy": "MichaelMekler@winatptestlic06.ccsctp.net", - "createdDateTime": "2023-06-25T09:37:28.6149005Z", - "lastModifiedDateTime": "2023-06-25T09:38:09.5960938Z", - "lastModifiedBy": "MichaelMekler@winatptestlic06.ccsctp.net", - "detectorId": "67aa92a1-b04b-4f2a-a223-236968a3da96", + "id": "office-encoded-powershell", + "displayName": "Suspicious encoded PowerShell from Office", + "description": "Detects encoded PowerShell processes launched by Office applications, a common phishing payload pattern.", + "status": "disabled", + "createdBy": "alice@contoso.com", + "createdDateTime": "2026-05-25T10:15:00Z", + "lastModifiedBy": "alice@contoso.com", + "lastModifiedDateTime": "2026-05-28T14:30:00Z", "queryCondition": { - "queryText": "DeviceProcessEvents | take 1", - "lastModifiedDateTime": null + "queryText": "DeviceProcessEvents | where InitiatingProcessFileName in~ ('winword.exe','excel.exe','outlook.exe') | where FileName == 'powershell.exe' | where ProcessCommandLine has '-enc'" }, "schedule": { - "period": "24H", - "nextRunDateTime": "2023-06-25T09:37:28.6149005Z" - }, - "lastRunDetails": { - "lastRunDateTime": null, - "status": null, - "failureReason": null, - "errorCode": null + "frequency": "PT1H" }, "detectionAction": { "alertTemplate": { - "title": "Different alert title", - "description": "Some alert description", - "severity": "medium", - "category": "Execution", - "recommendedActions": null, - "mitreTechniques": [], - "impactedAssets": [ + "title": "Suspicious encoded PowerShell from Office", + "description": "An Office app launched an encoded PowerShell command, which may indicate phishing-driven code execution.", + "severity": "high", + "recommendedActions": "Investigate the parent Office document, isolate the device, and review the user's recent email activity.", + "entityMappings": { + "accounts": [ + { + "nameColumn": "AccountName", + "sidColumn": "AccountSid" + } + ] + }, + "tactics": [ { - "@odata.type": "#microsoft.graph.security.impactedDeviceAsset", - "identifier": "deviceId" + "tactic": "Execution", + "techniques": [ + { + "technique": "T1059.001" + } + ] } ] }, - "organizationalScope": null, - "responseActions": [ - { - "@odata.type": "#microsoft.graph.security.isolateDeviceResponseAction", - "isolationType": "full", - "identifier": "deviceId" - } - ] + "automatedActions": { + "isolateDevices": [ + { + "deviceIdColumn": "DeviceId", + "isolationType": "full" + } + ], + "initiateInvestigations": [ + { + "deviceIdColumn": "DeviceId" + } + ] + } } } -``` - +``` \ No newline at end of file diff --git a/api-reference/beta/api/security-rulesroot-delete-detectionrules.md b/api-reference/beta/api/security-rulesroot-delete-detectionrules.md new file mode 100644 index 00000000000..7101572d78c --- /dev/null +++ b/api-reference/beta/api/security-rulesroot-delete-detectionrules.md @@ -0,0 +1,81 @@ +--- +title: "Delete detectionRule" +description: "Delete a detectionRule object." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: apiPageType +ms.date: 05/25/2026 +--- + +# Delete detectionRule + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Delete a [detectionRule](../resources/security-detectionrule.md) object. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/security-rulesroot-delete-detectionrules-permissions.md)] + +[!INCLUDE [rbac-security-detection-rules-apis-write](../includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md)] + +## HTTP request + + +``` http +DELETE /security/rules/detectionRules/{detectionRuleId} +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `204 No Content` response code. + +## Examples + +### Request + +The following example shows a request. + + +``` http +DELETE https://graph.microsoft.com/beta/security/rules/detectionRules/4790e8ec-9488-3dde-c3a6-be0c4ba14cf9 +``` + +### Response + +The following example shows the response. + + +``` http +HTTP/1.1 204 No Content +``` \ No newline at end of file diff --git a/api-reference/beta/api/security-rulesroot-list-detectionrules.md b/api-reference/beta/api/security-rulesroot-list-detectionrules.md new file mode 100644 index 00000000000..546928abb48 --- /dev/null +++ b/api-reference/beta/api/security-rulesroot-list-detectionrules.md @@ -0,0 +1,151 @@ +--- +title: "List detectionRule objects" +description: "Get a list of detectionRule objects and their properties." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: apiPageType +ms.date: 05/25/2026 +--- + +# List detectionRule objects + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Get a list of [detectionRule](../resources/security-detectionrule.md) objects and their properties. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/security-rulesroot-list-detectionrules-permissions.md)] + +[!INCLUDE [rbac-security-detection-rules-apis-read](../includes/rbac-for-apis/rbac-security-detection-rules-apis-read.md)] + +## HTTP request + + +``` http +GET /security/rules/detectionRules +``` + +## Optional query parameters + +This method supports the `$select`, `$top`, `$skip`, `$count`, `$filter`, and `$orderby` [OData query parameters](/graph/query-parameters) to help customize the response. For the per-property list of supported `$filter` operators and `$orderby` properties, see [detectionRule properties](../resources/security-detectionrule.md#properties). + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a collection of [microsoft.graph.security.detectionRule](../resources/security-detectionrule.md) objects in the response body. + +## Examples + +### Request + +The following example shows a request. + + +``` http +GET https://graph.microsoft.com/beta/security/rules/detectionRules +``` + +### Response + +The following example shows the response. + +>**Note:** The response object shown here might be shortened for readability. + + +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value": [ + { + "@odata.type": "#microsoft.graph.security.detectionRule", + "id": "office-encoded-powershell", + "displayName": "Suspicious encoded PowerShell from Office", + "description": "Detects encoded PowerShell processes launched by Office applications, a common phishing payload pattern.", + "status": "enabled", + "createdBy": "alice@contoso.com", + "createdDateTime": "2026-05-25T10:15:00Z", + "lastModifiedBy": "alice@contoso.com", + "lastModifiedDateTime": "2026-05-25T10:15:00Z", + "queryCondition": { + "queryText": "DeviceProcessEvents | where InitiatingProcessFileName in~ ('winword.exe','excel.exe','outlook.exe') | where FileName == 'powershell.exe' | where ProcessCommandLine has '-enc'" + }, + "schedule": { + "frequency": "PT1H" + }, + "detectionAction": { + "alertTemplate": { + "title": "Suspicious encoded PowerShell from Office", + "description": "An Office app launched an encoded PowerShell command, which may indicate phishing-driven code execution.", + "severity": "high", + "recommendedActions": "Investigate the parent Office document, isolate the device, and review the user's recent email activity.", + "entityMappings": { + "accounts": [ + { + "nameColumn": "AccountName", + "sidColumn": "AccountSid" + } + ] + }, + "tactics": [ + { + "tactic": "Execution", + "techniques": [ + { + "technique": "T1059.001" + } + ] + } + ] + }, + "automatedActions": { + "isolateDevices": [ + { + "deviceIdColumn": "DeviceId", + "isolationType": "full" + } + ], + "initiateInvestigations": [ + { + "deviceIdColumn": "DeviceId" + } + ] + } + } + } + ] +} +``` \ No newline at end of file diff --git a/api-reference/beta/api/security-rulesroot-post-detectionrules.md b/api-reference/beta/api/security-rulesroot-post-detectionrules.md new file mode 100644 index 00000000000..ee48784dcaa --- /dev/null +++ b/api-reference/beta/api/security-rulesroot-post-detectionrules.md @@ -0,0 +1,213 @@ +--- +title: "Create detectionRule" +description: "Create a new detectionRule object." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: apiPageType +ms.date: 05/25/2026 +--- + +# Create detectionRule + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Create a new [detectionRule](../resources/security-detectionrule.md) object. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/security-rulesroot-post-detectionrules-permissions.md)] + +[!INCLUDE [rbac-security-detection-rules-apis-write](../includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md)] + +## HTTP request + + +``` http +POST /security/rules/detectionRules +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| +|Content-Type|application/json. Required.| + +## Request body + +In the request body, supply a JSON representation of the [microsoft.graph.security.detectionRule](../resources/security-detectionrule.md) object. + +You can specify the following properties and relationships when creating a **detectionRule**. + +|Property|Type|Description| +|:---|:---|:---| +|description|String|A user-supplied description of the detection rule. Optional.| +|detectionAction|[microsoft.graph.security.detectionAction](../resources/security-detectionaction.md)|The actions taken when a detection is made by this rule, including the alert that is created and any automated response actions. Optional.| +|displayName|String|The display name of the rule. Required.| +|id|String|The client-provided unique identifier of the rule. Required.| +|isEnabled|Boolean|**Deprecated.** Use **status** instead. The `isEnabled` property will be removed from this resource on 2026-10-01. Optional.| +|queryCondition|[microsoft.graph.security.queryCondition](../resources/security-querycondition.md)|The advanced hunting query that defines the detection logic of this rule. Required.| +|schedule|[microsoft.graph.security.ruleSchedule](../resources/security-ruleschedule.md)|The triggering schedule of this rule. Required.| +|status|[microsoft.graph.security.detectionRuleStatus](../resources/enums-security.md#detectionrulestatus-values)|The current run status of the rule. The possible values are: `enabled`, `disabled`, `autoDisabled`, `unknownFutureValue`. Required.| + +## Response + +If successful, this method returns a `201 Created` response code and a [microsoft.graph.security.detectionRule](../resources/security-detectionrule.md) object in the response body. + +## Examples + +### Request + +The following example shows a request. + + +``` http +POST https://graph.microsoft.com/beta/security/rules/detectionRules +Content-Type: application/json + +{ + "@odata.type": "#microsoft.graph.security.detectionRule", + "id": "office-encoded-powershell", + "displayName": "Suspicious encoded PowerShell from Office", + "description": "Detects encoded PowerShell processes launched by Office applications, a common phishing payload pattern.", + "status": "enabled", + "queryCondition": { + "queryText": "DeviceProcessEvents | where InitiatingProcessFileName in~ ('winword.exe','excel.exe','outlook.exe') | where FileName == 'powershell.exe' | where ProcessCommandLine has '-enc'" + }, + "schedule": { + "frequency": "PT1H" + }, + "detectionAction": { + "alertTemplate": { + "title": "Suspicious encoded PowerShell from Office", + "description": "An Office app launched an encoded PowerShell command, which may indicate phishing-driven code execution.", + "severity": "high", + "recommendedActions": "Investigate the parent Office document, isolate the device, and review the user's recent email activity.", + "entityMappings": { + "accounts": [ + { + "nameColumn": "AccountName", + "ntDomainColumn": "AccountDomain", + "sidColumn": "AccountSid" + } + ], + "hosts": [ + { + "deviceIdColumn": "DeviceId", + "nameColumn": "DeviceName" + } + ], + "files": [ + { + "nameColumn": "FileName", + "sha1Column": "SHA1", + "sha256Column": "SHA256" + } + ] + }, + "tactics": [ + { + "tactic": "Execution", + "techniques": [ + { + "technique": "T1059.001" + } + ] + } + ] + } + } +} +``` + +### Response + +The following example shows the response. + +>**Note:** The response object shown here might be shortened for readability. + + +``` http +HTTP/1.1 201 Created +Content-Type: application/json +Location: https://graph.microsoft.com/beta/security/rules/detectionRules/office-encoded-powershell + +{ + "@odata.type": "#microsoft.graph.security.detectionRule", + "id": "office-encoded-powershell", + "displayName": "Suspicious encoded PowerShell from Office", + "description": "Detects encoded PowerShell processes launched by Office applications, a common phishing payload pattern.", + "status": "enabled", + "createdBy": "alice@contoso.com", + "createdDateTime": "2026-05-25T10:15:00Z", + "lastModifiedBy": "alice@contoso.com", + "lastModifiedDateTime": "2026-05-25T10:15:00Z", + "queryCondition": { + "queryText": "DeviceProcessEvents | where InitiatingProcessFileName in~ ('winword.exe','excel.exe','outlook.exe') | where FileName == 'powershell.exe' | where ProcessCommandLine has '-enc'" + }, + "schedule": { + "frequency": "PT1H" + }, + "detectionAction": { + "alertTemplate": { + "title": "Suspicious encoded PowerShell from Office", + "description": "An Office app launched an encoded PowerShell command, which may indicate phishing-driven code execution.", + "severity": "high", + "recommendedActions": "Investigate the parent Office document, isolate the device, and review the user's recent email activity.", + "entityMappings": { + "accounts": [ + { + "nameColumn": "AccountName", + "sidColumn": "AccountSid" + } + ] + }, + "tactics": [ + { + "tactic": "Execution", + "techniques": [ + { + "technique": "T1059.001" + } + ] + } + ] + }, + "automatedActions": { + "isolateDevices": [ + { + "deviceIdColumn": "DeviceId", + "isolationType": "full" + } + ], + "initiateInvestigations": [ + { + "deviceIdColumn": "DeviceId" + } + ] + } + } +} +``` \ No newline at end of file diff --git a/api-reference/beta/includes/permissions/security-rulesroot-delete-detectionrules-permissions.md b/api-reference/beta/includes/permissions/security-rulesroot-delete-detectionrules-permissions.md new file mode 100644 index 00000000000..09905b20ce8 --- /dev/null +++ b/api-reference/beta/includes/permissions/security-rulesroot-delete-detectionrules-permissions.md @@ -0,0 +1,11 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|CustomDetection.ReadWrite.All|Not available.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|CustomDetection.ReadWrite.All|Not available.| diff --git a/api-reference/beta/includes/permissions/security-rulesroot-list-detectionrules-permissions.md b/api-reference/beta/includes/permissions/security-rulesroot-list-detectionrules-permissions.md new file mode 100644 index 00000000000..ce584032b88 --- /dev/null +++ b/api-reference/beta/includes/permissions/security-rulesroot-list-detectionrules-permissions.md @@ -0,0 +1,11 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|CustomDetection.Read.All|CustomDetection.ReadWrite.All| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|CustomDetection.Read.All|CustomDetection.ReadWrite.All| diff --git a/api-reference/beta/includes/permissions/security-rulesroot-post-detectionrules-permissions.md b/api-reference/beta/includes/permissions/security-rulesroot-post-detectionrules-permissions.md new file mode 100644 index 00000000000..09905b20ce8 --- /dev/null +++ b/api-reference/beta/includes/permissions/security-rulesroot-post-detectionrules-permissions.md @@ -0,0 +1,11 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|CustomDetection.ReadWrite.All|Not available.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|CustomDetection.ReadWrite.All|Not available.| diff --git a/api-reference/beta/includes/rbac-for-apis/rbac-security-detection-rules-apis-read.md b/api-reference/beta/includes/rbac-for-apis/rbac-security-detection-rules-apis-read.md new file mode 100644 index 00000000000..0bf7b4cf706 --- /dev/null +++ b/api-reference/beta/includes/rbac-for-apis/rbac-security-detection-rules-apis-read.md @@ -0,0 +1,13 @@ +--- +author: yossibruss-ms +ms.topic: include +--- + +> [!IMPORTANT] +> For delegated access using work or school accounts, the signed-in user must be assigned a role that grants the permissions required for this operation. Custom detection rules use the Microsoft Defender XDR Unified role-based access control (RBAC) model. The following [Microsoft Entra roles](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json) are supported: +> - **Security Reader** +> - **Global Reader** +> - **Security Operator** +> - **Security Administrator** +> +> Additional workload-specific read permissions might be required to view rules that target data from specific Defender workloads (for example, Defender for Endpoint, Defender for Office 365). For more information, see [Microsoft Defender XDR Unified RBAC](/defender-xdr/manage-rbac). \ No newline at end of file diff --git a/api-reference/beta/includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md b/api-reference/beta/includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md new file mode 100644 index 00000000000..29a51cd0793 --- /dev/null +++ b/api-reference/beta/includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md @@ -0,0 +1,12 @@ +--- +author: yossibruss-ms +ms.topic: include +--- + +> [!IMPORTANT] +> For delegated access using work or school accounts, the signed-in user must be assigned a role that grants the permissions required for this operation. Custom detection rules use the Microsoft Defender XDR Unified role-based access control (RBAC) model. The following roles are supported: +> - **Detection tuning (Manage)** - A [Microsoft Defender XDR Unified RBAC](/defender-xdr/custom-permissions-details) permission that grants manage access to detections in the Microsoft Defender portal, including custom detections, alert tuning, and threat indicators of compromise. +> - **Security Administrator** - A [Microsoft Entra role](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json#security-administrator) that grants manage permissions across Microsoft Defender portals and services. +> - **Security Operator** - A [Microsoft Entra role](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json#security-operator). Sufficient for managing custom detection rules only when role-based access control is turned off in Microsoft Defender for Endpoint. If RBAC is configured, the **Manage Security Settings** permission for Defender for Endpoint is also required. +> +> Additional workload-specific permissions might be required to manage rules that target data from specific Defender workloads (for example, Defender for Endpoint, Defender for Office 365). For more information, see [Required permissions for managing custom detections](/defender-xdr/custom-detection-rules#required-permissions-for-managing-custom-detections). \ No newline at end of file diff --git a/api-reference/beta/resources/enums-security.md b/api-reference/beta/resources/enums-security.md index 9890c14b1b2..dde4251964b 100644 --- a/api-reference/beta/resources/enums-security.md +++ b/api-reference/beta/resources/enums-security.md @@ -375,6 +375,15 @@ Namespace: microsoft.graph.security | prevented | unknownFutureValue +### detectionRuleStatus values + +| Member | +| :----------------- | +| enabled | +| disabled | +| autoDisabled | +| unknownFutureValue | + ### eventPropagationStatus values | Member | diff --git a/api-reference/beta/resources/security-accountentitymapping.md b/api-reference/beta/resources/security-accountentitymapping.md new file mode 100644 index 00000000000..0e9a7126b3f --- /dev/null +++ b/api-reference/beta/resources/security-accountentitymapping.md @@ -0,0 +1,58 @@ +--- +title: "accountEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to an account entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# accountEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to an account entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|aadUserIdColumn|String|Name of the detection query column that maps to the Microsoft Entra user ID of the alert entity.| +|dnsDomainColumn|String|Name of the detection query column that maps to the DNS domain of the alert entity.| +|nameColumn|String|Name of the detection query column that maps to the name of the alert entity.| +|ntDomainColumn|String|Name of the detection query column that maps to the NT domain of the alert entity.| +|sidColumn|String|Name of the detection query column that maps to the security identifier (SID) of the alert entity.| +|upnColumn|String|Name of the detection query column that maps to the user principal name (UPN) of the alert entity.| +|upnSuffixColumn|String|Name of the detection query column that maps to the UPN suffix of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.accountEntityMapping", + "aadUserIdColumn": "String", + "dnsDomainColumn": "String", + "nameColumn": "String", + "ntDomainColumn": "String", + "sidColumn": "String", + "upnColumn": "String", + "upnSuffixColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-accountobjectidaction.md b/api-reference/beta/resources/security-accountobjectidaction.md new file mode 100644 index 00000000000..fcdc47847ef --- /dev/null +++ b/api-reference/beta/resources/security-accountobjectidaction.md @@ -0,0 +1,46 @@ +--- +title: "accountObjectIdAction resource type" +description: "Represents an automated action that targets an account by Microsoft Entra object ID from a custom detection rule query." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# accountObjectIdAction resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents an [automatedAction](../resources/security-automatedaction.md) that targets an account by Microsoft Entra object ID from a [detectionRule](../resources/security-detectionrule.md) hunting query. The action uses the configured account object ID column from the query output to identify the account. + +Inherits from [automatedAction](../resources/security-automatedaction.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|accountObjectIdColumn|String|Name of the hunting-query result column that contains the Microsoft Entra object ID of the targeted account.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.accountObjectIdAction", + "accountObjectIdColumn": "String" +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-accountsidaction.md b/api-reference/beta/resources/security-accountsidaction.md new file mode 100644 index 00000000000..6d719478286 --- /dev/null +++ b/api-reference/beta/resources/security-accountsidaction.md @@ -0,0 +1,46 @@ +--- +title: "accountSidAction resource type" +description: "Represents an automated action that targets an account by security identifier from a custom detection rule query." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# accountSidAction resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents an [automatedAction](../resources/security-automatedaction.md) that targets an account by security identifier (SID) from a [detectionRule](../resources/security-detectionrule.md) hunting query. The action uses the configured account SID column from the query output to identify the account. + +Inherits from [automatedAction](../resources/security-automatedaction.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|accountSidColumn|String|Name of the hunting-query result column that contains the SID of the targeted account.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.accountSidAction", + "accountSidColumn": "String" +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-alertcustomdetails.md b/api-reference/beta/resources/security-alertcustomdetails.md new file mode 100644 index 00000000000..a6814dfd542 --- /dev/null +++ b/api-reference/beta/resources/security-alertcustomdetails.md @@ -0,0 +1,43 @@ +--- +title: "alertCustomDetails resource type" +description: "Contains custom key-value detail pairs to include in an alert generated by a custom detection rule." +author: "mmekler" +ms.date: 05/25/2026 +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +--- + +# alertCustomDetails resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Contains custom key-value detail pairs to include in an alert generated by a custom detection rule. This object is configured in the **customDetails** property of an [alertTemplate](../resources/security-alerttemplate.md). + +This resource is an open type that allows more values to be returned than defined. + +## Properties + +None. + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.alertCustomDetails" +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-alerttemplate.md b/api-reference/beta/resources/security-alerttemplate.md index c99415f25d8..fdd6936ad80 100644 --- a/api-reference/beta/resources/security-alerttemplate.md +++ b/api-reference/beta/resources/security-alerttemplate.md @@ -5,7 +5,7 @@ author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: resourcePageType -ms.date: 03/06/2024 +ms.date: 06/17/2026 --- # alertTemplate resource type @@ -14,25 +14,29 @@ Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Describes the alert that is generated in response to a detection by a [custom detection rule](../resources/security-detectionrule.md). +Describes the alert that is generated in response to a detection by a [custom detection rule](../resources/security-detectionrule.md), including the alert metadata, recommended actions, custom details, MITRE tactics, and entity mappings. ## Properties -| Property | Type | Description | -|--------------------|---------------------------------------------------------------------------------------------|---------------------------------------------------------------------------------------------------------| -| title | String | Name of the alert triggered by the custom detection rule. | -| description | String | Description of the alert triggered by the custom detection rule. | -| severity | [microsoft.graph.alertSeverity](../resources/enums.md#alertseverity-values) | Severity assigned to the alert triggered by the custom detection rule. | -| category | String | Category assigned to the alert triggered by the custom detection rule. | -| mitreTechniques | String collection | MITRE technique assigned to the alert triggered by the custom detection rule. | -| recommendedActions | String | Recommended actions to mitigate the threat related to the alert triggered by the custom detection rule. | -| impactedAssets | [microsoft.graph.security.impactedAsset](../resources/security-impactedasset.md) collection | Which asset or assets were impacted based on the alert triggered by the custom detection rule. | - +|Property|Type|Description| +|:---|:---|:---| +|customDetails|[microsoft.graph.security.alertCustomDetails](../resources/security-alertcustomdetails.md)|Custom key-value detail pairs to include in the alert. Each value identifies the detection query column that supplies the corresponding custom detail.| +|description|String|Description of the alert triggered by the custom detection rule.| +|entityMappings|[microsoft.graph.security.entityMappingConfiguration](../resources/security-entitymappingconfiguration.md)|Defines how detection query columns map to the entities that are attached to the resulting alert.| +|recommendedActions|String|Recommended actions to mitigate the threat related to the alert triggered by the custom detection rule.| +|severity|[microsoft.graph.security.alertSeverity](../resources/security-alert.md#alertseverity-values)|Severity assigned to the alert triggered by the custom detection rule. The possible values are: `informational`, `low`, `medium`, `high`.| +|tactics|[microsoft.graph.security.mitreTactic](../resources/security-mitretactic.md) collection|The MITRE ATT&CK tactics framing for this alert.| +|title|String|Name of the alert triggered by the custom detection rule.| +|category (deprecated)|String|Indicates the category assigned to the alert triggered by the custom detection rule. **Deprecated.** Use **tactics** instead. This property will be removed from this resource on 2026-10-01.| +|impactedAssets (deprecated)|[microsoft.graph.security.impactedAsset](../resources/security-impactedasset.md) collection|Indicates the impacted assets for the alert triggered by the custom detection rule. **Deprecated.** Use **entityMappings** instead. This property will be removed from this resource on 2026-10-01.| +|mitreTechniques (deprecated)|String collection|Indicates the MITRE techniques assigned to the alert triggered by the custom detection rule. **Deprecated.** Use **tactics** instead. This property will be removed from this resource on 2026-10-01.| ## Relationships + None. ## JSON representation + The following JSON representation shows the resource type. +``` json +{ + "@odata.type": "#microsoft.graph.security.amazonResourceEntityMapping", + "amazonResourceIdColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-api-overview.md b/api-reference/beta/resources/security-api-overview.md index 960d9d0d411..c258f5a0351 100644 --- a/api-reference/beta/resources/security-api-overview.md +++ b/api-reference/beta/resources/security-api-overview.md @@ -92,11 +92,11 @@ You can create advanced hunting [Custom detection rules](/microsoft-365/security ### Quotas -1. [Get multiple rules](../api/security-detectionrule-list.md): 10 rules per minute per application, 300 rules per hour per application, 600 rules per hour per tenant +1. [Get multiple rules](../api/security-rulesroot-list-detectionrules.md): 10 rules per minute per application, 300 rules per hour per application, 600 rules per hour per tenant 2. [Get a single rule](../api/security-detectionrule-get.md): 100 rules per minute per application, 1,500 rules per hour per application, 1,800 rules per hour per tenant -3. [Create rule](../api/security-detectionrule-post-detectionRules.md): 10 rules per minute per application, 1,500 rules per hour per application, 1,800 rules per hour per tenant +3. [Create rule](../api/security-rulesroot-post-detectionrules.md): 10 rules per minute per application, 1,500 rules per hour per application, 1,800 rules per hour per tenant 4. [Update rule](../api/security-detectionrule-update.md): 100 rules per minute per application, 1,500 rules per hour per application, 1,800 rules per hour per tenant -5. [Delete rule](../api/security-detectionrule-delete.md): 100 rules per minute per application, 1,500 rules per hour per application, 1,800 rules per hour per tenant +5. [Delete rule](../api/security-rulesroot-delete-detectionrules.md): 100 rules per minute per application, 1,500 rules per hour per application, 1,800 rules per hour per tenant ## Alerts Alerts are detailed warnings about suspicious activities in a customer's tenant that Microsoft or partner security providers have identified and flagged for action. Attacks typically employ various techniques against different types of entities, such as devices, users, and mailboxes. The result is alerts from multiple security providers for multiple entities in the tenant. Piecing the individual alerts together to gain insight into an attack can be challenging and time-consuming. diff --git a/api-reference/beta/resources/security-automatedaction.md b/api-reference/beta/resources/security-automatedaction.md new file mode 100644 index 00000000000..a10b8ac9f05 --- /dev/null +++ b/api-reference/beta/resources/security-automatedaction.md @@ -0,0 +1,49 @@ +--- +title: "automatedAction resource type" +description: "Represents an automated response action configured on a custom detection rule." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# automatedAction resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents an automated response action configured in the **automatedActions** property of a [detectionAction](../resources/security-detectionaction.md) for a [detectionRule](../resources/security-detectionrule.md). This type is abstract and cannot be instantiated directly. Use one of the following derived types, differentiated by `@odata.type`: + +- [accountObjectIdAction](../resources/security-accountobjectidaction.md) +- [accountSidAction](../resources/security-accountsidaction.md) +- [deviceAction](../resources/security-deviceaction.md) +- [emailAction](../resources/security-emailaction.md) +- [fileAction](../resources/security-fileaction.md) +- [isolateDeviceAction](../resources/security-isolatedeviceaction.md) +- [stopAndQuarantineFileAction](../resources/security-stopandquarantinefileaction.md) + +## Properties + +None. + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.automatedAction" +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-automatedactionset.md b/api-reference/beta/resources/security-automatedactionset.md new file mode 100644 index 00000000000..0f639f0dcca --- /dev/null +++ b/api-reference/beta/resources/security-automatedactionset.md @@ -0,0 +1,138 @@ +--- +title: "automatedActionSet resource type" +description: "Contains the automated response actions grouped by target entity type for a custom detection rule." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# automatedActionSet resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Contains the automated response actions grouped by target entity type in the **automatedActions** property of a [detectionAction](../resources/security-detectionaction.md) for a [detectionRule](../resources/security-detectionrule.md). Each collection identifies the hunting-query output columns used to locate the impacted devices, files, accounts, or email messages for the action. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|allowFiles|[microsoft.graph.security.fileAction](../resources/security-fileaction.md) collection|File actions that allow files identified by file hash columns in the hunting-query results.| +|blockFiles|[microsoft.graph.security.fileAction](../resources/security-fileaction.md) collection|File actions that block files identified by file hash columns in the hunting-query results.| +|collectInvestigationPackages|[microsoft.graph.security.deviceAction](../resources/security-deviceaction.md) collection|Device actions that collect investigation packages from devices identified in the hunting-query results.| +|disableUsers|[microsoft.graph.security.accountSidAction](../resources/security-accountsidaction.md) collection|Account actions that disable users identified by account SID columns in the hunting-query results.| +|forceUserPasswordResets|[microsoft.graph.security.accountSidAction](../resources/security-accountsidaction.md) collection|Account actions that force password resets for users identified by account SID columns in the hunting-query results.| +|hardDeleteEmails|[microsoft.graph.security.emailAction](../resources/security-emailaction.md) collection|Email actions that permanently delete messages identified in the hunting-query results.| +|initiateInvestigations|[microsoft.graph.security.deviceAction](../resources/security-deviceaction.md) collection|Device actions that initiate investigations on devices identified in the hunting-query results.| +|isolateDevices|[microsoft.graph.security.isolateDeviceAction](../resources/security-isolatedeviceaction.md) collection|Device actions that isolate devices identified in the hunting-query results.| +|markUsersAsCompromised|[microsoft.graph.security.accountObjectIdAction](../resources/security-accountobjectidaction.md) collection|Account actions that mark users as compromised when they're identified by Microsoft Entra object ID columns in the hunting-query results.| +|moveEmailsToDeletedItems|[microsoft.graph.security.emailAction](../resources/security-emailaction.md) collection|Email actions that move messages identified in the hunting-query results to Deleted Items.| +|moveEmailsToInbox|[microsoft.graph.security.emailAction](../resources/security-emailaction.md) collection|Email actions that move messages identified in the hunting-query results to the Inbox.| +|moveEmailsToJunk|[microsoft.graph.security.emailAction](../resources/security-emailaction.md) collection|Email actions that move messages identified in the hunting-query results to Junk Email.| +|restrictAppExecutions|[microsoft.graph.security.deviceAction](../resources/security-deviceaction.md) collection|Device actions that restrict app execution on devices identified in the hunting-query results.| +|runAntivirusScans|[microsoft.graph.security.deviceAction](../resources/security-deviceaction.md) collection|Device actions that run antivirus scans on devices identified in the hunting-query results.| +|softDeleteEmails|[microsoft.graph.security.emailAction](../resources/security-emailaction.md) collection|Email actions that soft-delete messages identified in the hunting-query results.| +|stopAndQuarantineFiles|[microsoft.graph.security.stopAndQuarantineFileAction](../resources/security-stopandquarantinefileaction.md) collection|File actions that stop running files and quarantine them on devices identified in the hunting-query results.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.automatedActionSet", + "allowFiles": [ + { + "@odata.type": "microsoft.graph.security.fileAction" + } + ], + "blockFiles": [ + { + "@odata.type": "microsoft.graph.security.fileAction" + } + ], + "collectInvestigationPackages": [ + { + "@odata.type": "microsoft.graph.security.deviceAction" + } + ], + "disableUsers": [ + { + "@odata.type": "microsoft.graph.security.accountSidAction" + } + ], + "forceUserPasswordResets": [ + { + "@odata.type": "microsoft.graph.security.accountSidAction" + } + ], + "hardDeleteEmails": [ + { + "@odata.type": "microsoft.graph.security.emailAction" + } + ], + "initiateInvestigations": [ + { + "@odata.type": "microsoft.graph.security.deviceAction" + } + ], + "isolateDevices": [ + { + "@odata.type": "microsoft.graph.security.isolateDeviceAction" + } + ], + "markUsersAsCompromised": [ + { + "@odata.type": "microsoft.graph.security.accountObjectIdAction" + } + ], + "moveEmailsToDeletedItems": [ + { + "@odata.type": "microsoft.graph.security.emailAction" + } + ], + "moveEmailsToInbox": [ + { + "@odata.type": "microsoft.graph.security.emailAction" + } + ], + "moveEmailsToJunk": [ + { + "@odata.type": "microsoft.graph.security.emailAction" + } + ], + "restrictAppExecutions": [ + { + "@odata.type": "microsoft.graph.security.deviceAction" + } + ], + "runAntivirusScans": [ + { + "@odata.type": "microsoft.graph.security.deviceAction" + } + ], + "softDeleteEmails": [ + { + "@odata.type": "microsoft.graph.security.emailAction" + } + ], + "stopAndQuarantineFiles": [ + { + "@odata.type": "microsoft.graph.security.stopAndQuarantineFileAction" + } + ] +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-azureresourceentitymapping.md b/api-reference/beta/resources/security-azureresourceentitymapping.md new file mode 100644 index 00000000000..ac4e0e1aa20 --- /dev/null +++ b/api-reference/beta/resources/security-azureresourceentitymapping.md @@ -0,0 +1,46 @@ +--- +title: "azureResourceEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to an Azure resource entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# azureResourceEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to an Azure resource entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|resourceIdColumn|String|Name of the detection query column that maps to the resource ID of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.azureResourceEntityMapping", + "resourceIdColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-blockfileresponseaction.md b/api-reference/beta/resources/security-blockfileresponseaction.md index eb232000d07..6127427491b 100644 --- a/api-reference/beta/resources/security-blockfileresponseaction.md +++ b/api-reference/beta/resources/security-blockfileresponseaction.md @@ -1,5 +1,5 @@ --- -title: "blockFileResponseAction resource type" +title: "blockFileResponseAction resource type (deprecated)" description: "Describes a response action that blocks a file from running on devices controlled by Microsoft Defender for Endpoint." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# blockFileResponseAction resource type +# blockFileResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **blockFileResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes a response action that blocks a file from running on devices controlled by Microsoft Defender for Endpoint. Inherits from [microsoft.graph.security.responseAction](../resources/security-responseaction.md). diff --git a/api-reference/beta/resources/security-cloudapplicationentitymapping.md b/api-reference/beta/resources/security-cloudapplicationentitymapping.md new file mode 100644 index 00000000000..30c4513b70c --- /dev/null +++ b/api-reference/beta/resources/security-cloudapplicationentitymapping.md @@ -0,0 +1,48 @@ +--- +title: "cloudApplicationEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to a cloud application entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# cloudApplicationEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to a cloud application entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|appIdColumn|String|Name of the detection query column that maps to the application ID of the alert entity.| +|nameColumn|String|Name of the detection query column that maps to the name of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.cloudApplicationEntityMapping", + "appIdColumn": "String", + "nameColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-collectinvestigationpackageresponseaction.md b/api-reference/beta/resources/security-collectinvestigationpackageresponseaction.md index b8dc6051f10..e928cc4c2f4 100644 --- a/api-reference/beta/resources/security-collectinvestigationpackageresponseaction.md +++ b/api-reference/beta/resources/security-collectinvestigationpackageresponseaction.md @@ -1,5 +1,5 @@ --- -title: "collectInvestigationPackageResponseAction resource type" +title: "collectInvestigationPackageResponseAction resource type (deprecated)" description: "Describes a response action that collects details for an investigation package." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# collectInvestigationPackageResponseAction resource type +# collectInvestigationPackageResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **collectInvestigationPackageResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes a response action that collects details for an investigation package. Inherits from [microsoft.graph.security.responseAction](../resources/security-responseaction.md). diff --git a/api-reference/beta/resources/security-detectionaction.md b/api-reference/beta/resources/security-detectionaction.md index d124dc2956b..9cda4938c95 100644 --- a/api-reference/beta/resources/security-detectionaction.md +++ b/api-reference/beta/resources/security-detectionaction.md @@ -5,7 +5,7 @@ author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: resourcePageType -ms.date: 03/06/2024 +ms.date: 05/25/2026 --- # detectionAction resource type @@ -14,20 +14,25 @@ Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Describes the actions that will be taken after a detection is made by a [custom detection rule](../resources/security-detectionrule.md). +Describes the actions that are taken after a detection is made by a [custom detection rule](../resources/security-detectionrule.md), including the alert that is created and any automated actions that run against impacted entities. ## Properties -| Property | Type | Description | -|:--------------------|:----------------------------------------------------------------------------------------------|:----------------------------------------------------------------------| -| alertTemplate | [microsoft.graph.security.alertTemplate](../resources/security-alerttemplate.md) | Template for the generated alert. | -| organizationalScope | [microsoft.graph.security.organizationalScope](../resources/security-organizationalscope.md) | Groups to which the custom detection rule applies. | -| responseActions | [microsoft.graph.security.responseAction](../resources/security-responseaction.md) collection | Actions taken on impacted assets as set in the custom detection rule. | + +|Property|Type|Description| +|:---|:---|:---| +|alertTemplate|[microsoft.graph.security.alertTemplate](../resources/security-alerttemplate.md)|The template that defines the alert that is generated when this rule detects a match, including alert metadata (severity, title, description), entity mappings, custom details, and MITRE tactics.| +|automatedActions|[microsoft.graph.security.automatedActionSet](../resources/security-automatedactionset.md)|The set of automated actions to run against entities that match the detection. Replaces the deprecated **responseActions** property.| +|organizationalScope|[microsoft.graph.security.organizationalScope](../resources/security-organizationalscope.md)|The set of groups (for example, device groups) to which the parent custom detection rule applies.| +|responseActions (deprecated)|[microsoft.graph.security.responseAction](../resources/security-responseaction.md) collection|Actions taken on impacted assets as set in the custom detection rule. **Deprecated.** Use **automatedActions** instead. This property will be removed from this resource on 2026-10-01.| ## Relationships + None. ## JSON representation + The following JSON representation shows the resource type. + @@ -66,24 +71,25 @@ The following JSON representation shows the resource type. "@odata.type": "#microsoft.graph.security.detectionRule", "id": "String (identifier)", "displayName": "String", - "isEnabled": "Boolean", - "detectorId": "String", + "description": "String", + "status": "String", "createdBy": "String", "createdDateTime": "String (timestamp)", - "lastModifiedDateTime": "String (timestamp)", "lastModifiedBy": "String", + "lastModifiedDateTime": "String (timestamp)", "queryCondition": { "@odata.type": "microsoft.graph.security.queryCondition" }, "schedule": { "@odata.type": "microsoft.graph.security.ruleSchedule" }, - "lastRunDetails": { - "@odata.type": "microsoft.graph.security.runDetails" - }, "detectionAction": { "@odata.type": "microsoft.graph.security.detectionAction" + }, + "detectorId": "String", + "isEnabled": "Boolean", + "lastRunDetails": { + "@odata.type": "microsoft.graph.security.runDetails" } } -``` - +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-deviceaction.md b/api-reference/beta/resources/security-deviceaction.md new file mode 100644 index 00000000000..68cb04a039a --- /dev/null +++ b/api-reference/beta/resources/security-deviceaction.md @@ -0,0 +1,46 @@ +--- +title: "deviceAction resource type" +description: "Represents an automated action that targets a device returned by a custom detection rule query." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# deviceAction resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents an [automatedAction](../resources/security-automatedaction.md) that targets a device returned by a [detectionRule](../resources/security-detectionrule.md) hunting query. The action uses a device ID column from the query output to identify the device. + +Inherits from [automatedAction](../resources/security-automatedaction.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|deviceIdColumn|String|Name of the hunting-query result column that contains the device ID for the targeted device.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.deviceAction", + "deviceIdColumn": "String" +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-disableuserresponseaction.md b/api-reference/beta/resources/security-disableuserresponseaction.md index 51050059162..7f10452ab88 100644 --- a/api-reference/beta/resources/security-disableuserresponseaction.md +++ b/api-reference/beta/resources/security-disableuserresponseaction.md @@ -1,6 +1,6 @@ --- -title: "disableUserResponseAction resource type" -description: "Describes a response action that temporarily prevents a user from logging in to the on premises network." +title: "disableUserResponseAction resource type (deprecated)" +description: "Describes a response action that temporarily prevents a user from logging in to the on-premises network." author: "mmekler" ms.subservice: "security" doc_type: resourcePageType @@ -8,13 +8,16 @@ ms.localizationpriority: medium ms.date: 03/06/2024 --- -# disableUserResponseAction resource type +# disableUserResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Describes a response action that temporarily prevents a user from logging in to the on premises network. +> [!IMPORTANT] +> The **disableUserResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + +Describes a response action that temporarily prevents a user from logging in to the on-premises network. Inherits from [microsoft.graph.security.responseAction](../resources/security-responseaction.md). diff --git a/api-reference/beta/resources/security-dnsentitymapping.md b/api-reference/beta/resources/security-dnsentitymapping.md new file mode 100644 index 00000000000..c1202798be8 --- /dev/null +++ b/api-reference/beta/resources/security-dnsentitymapping.md @@ -0,0 +1,50 @@ +--- +title: "dnsEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to a DNS entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# dnsEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to a DNS entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|domainNameColumn|String|Name of the detection query column that maps to the domain name of the alert entity.| +|hostIpAddressColumn|String|Name of the detection query column that maps to the host IP address of the alert entity.| +|serverIpColumn|String|Name of the detection query column that maps to the server IP address of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.dnsEntityMapping", + "domainNameColumn": "String", + "hostIpAddressColumn": "String", + "serverIpColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-emailaction.md b/api-reference/beta/resources/security-emailaction.md new file mode 100644 index 00000000000..bb4b8582c80 --- /dev/null +++ b/api-reference/beta/resources/security-emailaction.md @@ -0,0 +1,48 @@ +--- +title: "emailAction resource type" +description: "Represents an automated action that targets an email message returned by a custom detection rule query." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# emailAction resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents an [automatedAction](../resources/security-automatedaction.md) that targets an email message returned by a [detectionRule](../resources/security-detectionrule.md) hunting query. The action uses message and recipient columns from the query output to identify the email message. + +Inherits from [automatedAction](../resources/security-automatedaction.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|networkMessageIdColumn|String|Name of the hunting-query result column that contains the network message ID of the targeted email message.| +|recipientColumn|String|Name of the hunting-query result column that contains the recipient of the targeted email message.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.emailAction", + "networkMessageIdColumn": "String", + "recipientColumn": "String" +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-entitymapping.md b/api-reference/beta/resources/security-entitymapping.md new file mode 100644 index 00000000000..d69b72310f5 --- /dev/null +++ b/api-reference/beta/resources/security-entitymapping.md @@ -0,0 +1,58 @@ +--- +title: "entityMapping resource type" +description: "Abstract base type for entity mappings that translate detection query columns into alert entities." +author: "mmekler" +ms.date: 06/17/2026 +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +--- + +# entityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +This type is abstract and can't be instantiated directly. It's the base type for the following entity mapping types: + +- [accountEntityMapping](../resources/security-accountentitymapping.md) +- [amazonResourceEntityMapping](../resources/security-amazonresourceentitymapping.md) +- [azureResourceEntityMapping](../resources/security-azureresourceentitymapping.md) +- [cloudApplicationEntityMapping](../resources/security-cloudapplicationentitymapping.md) +- [dnsEntityMapping](../resources/security-dnsentitymapping.md) +- [fileEntityMapping](../resources/security-fileentitymapping.md) +- [googleCloudResourceEntityMapping](../resources/security-googlecloudresourceentitymapping.md) +- [hostEntityMapping](../resources/security-hostentitymapping.md) +- [ipEntityMapping](../resources/security-ipentitymapping.md) +- [mailboxEntityMapping](../resources/security-mailboxentitymapping.md) +- [mailClusterEntityMapping](../resources/security-mailclusterentitymapping.md) +- [mailMessageEntityMapping](../resources/security-mailmessageentitymapping.md) +- [oAuthApplicationEntityMapping](../resources/security-oauthapplicationentitymapping.md) +- [processEntityMapping](../resources/security-processentitymapping.md) +- [registryValueEntityMapping](../resources/security-registryvalueentitymapping.md) +- [securityGroupEntityMapping](../resources/security-securitygroupentitymapping.md) +- [urlEntityMapping](../resources/security-urlentitymapping.md) + +## Properties + +None. + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.entityMapping" +} +``` diff --git a/api-reference/beta/resources/security-entitymappingconfiguration.md b/api-reference/beta/resources/security-entitymappingconfiguration.md new file mode 100644 index 00000000000..15275746f19 --- /dev/null +++ b/api-reference/beta/resources/security-entitymappingconfiguration.md @@ -0,0 +1,109 @@ +--- +title: "entityMappingConfiguration resource type" +description: "Holds the per-entity-type mappings that translate detection query columns into alert entities." +author: "mmekler" +ms.date: 05/25/2026 +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +--- + +# entityMappingConfiguration resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Holds the per-entity-type mappings that translate detection query columns into the entities that are attached to the resulting alert. This resource is configured in the **entityMappings** property of an [alertTemplate](../resources/security-alerttemplate.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|accounts|[microsoft.graph.security.accountEntityMapping](../resources/security-accountentitymapping.md) collection|Mappings from detection query columns to account entities attached to the alert.| +|amazonResources|[microsoft.graph.security.amazonResourceEntityMapping](../resources/security-amazonresourceentitymapping.md) collection|Mappings from detection query columns to Amazon Web Services resource entities attached to the alert.| +|azureResources|[microsoft.graph.security.azureResourceEntityMapping](../resources/security-azureresourceentitymapping.md) collection|Mappings from detection query columns to Azure resource entities attached to the alert.| +|cloudApplications|[microsoft.graph.security.cloudApplicationEntityMapping](../resources/security-cloudapplicationentitymapping.md) collection|Mappings from detection query columns to cloud application entities attached to the alert.| +|dns|[microsoft.graph.security.dnsEntityMapping](../resources/security-dnsentitymapping.md) collection|Mappings from detection query columns to DNS entities attached to the alert.| +|files|[microsoft.graph.security.fileEntityMapping](../resources/security-fileentitymapping.md) collection|Mappings from detection query columns to file entities attached to the alert.| +|googleCloudResources|[microsoft.graph.security.googleCloudResourceEntityMapping](../resources/security-googlecloudresourceentitymapping.md) collection|Mappings from detection query columns to Google Cloud resource entities attached to the alert.| +|hosts|[microsoft.graph.security.hostEntityMapping](../resources/security-hostentitymapping.md) collection|Mappings from detection query columns to host entities attached to the alert.| +|ips|[microsoft.graph.security.ipEntityMapping](../resources/security-ipentitymapping.md) collection|Mappings from detection query columns to IP address entities attached to the alert.| +|mailboxes|[microsoft.graph.security.mailboxEntityMapping](../resources/security-mailboxentitymapping.md) collection|Mappings from detection query columns to mailbox entities attached to the alert.| +|mailClusters|[microsoft.graph.security.mailClusterEntityMapping](../resources/security-mailclusterentitymapping.md) collection|Mappings from detection query columns to mail cluster entities attached to the alert.| +|mailMessages|[microsoft.graph.security.mailMessageEntityMapping](../resources/security-mailmessageentitymapping.md) collection|Mappings from detection query columns to mail message entities attached to the alert.| +|oAuthApplications|[microsoft.graph.security.oAuthApplicationEntityMapping](../resources/security-oauthapplicationentitymapping.md) collection|Mappings from detection query columns to OAuth application entities attached to the alert.| +|processes|[microsoft.graph.security.processEntityMapping](../resources/security-processentitymapping.md) collection|Mappings from detection query columns to process entities attached to the alert.| +|registryValues|[microsoft.graph.security.registryValueEntityMapping](../resources/security-registryvalueentitymapping.md) collection|Mappings from detection query columns to registry value entities attached to the alert.| +|securityGroups|[microsoft.graph.security.securityGroupEntityMapping](../resources/security-securitygroupentitymapping.md) collection|Mappings from detection query columns to security group entities attached to the alert.| +|urls|[microsoft.graph.security.urlEntityMapping](../resources/security-urlentitymapping.md) collection|Mappings from detection query columns to URL entities attached to the alert.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.entityMappingConfiguration", + "accounts": [ + { "@odata.type": "microsoft.graph.security.accountEntityMapping" } + ], + "amazonResources": [ + { "@odata.type": "microsoft.graph.security.amazonResourceEntityMapping" } + ], + "azureResources": [ + { "@odata.type": "microsoft.graph.security.azureResourceEntityMapping" } + ], + "cloudApplications": [ + { "@odata.type": "microsoft.graph.security.cloudApplicationEntityMapping" } + ], + "dns": [ + { "@odata.type": "microsoft.graph.security.dnsEntityMapping" } + ], + "files": [ + { "@odata.type": "microsoft.graph.security.fileEntityMapping" } + ], + "googleCloudResources": [ + { "@odata.type": "microsoft.graph.security.googleCloudResourceEntityMapping" } + ], + "hosts": [ + { "@odata.type": "microsoft.graph.security.hostEntityMapping" } + ], + "ips": [ + { "@odata.type": "microsoft.graph.security.ipEntityMapping" } + ], + "mailboxes": [ + { "@odata.type": "microsoft.graph.security.mailboxEntityMapping" } + ], + "mailClusters": [ + { "@odata.type": "microsoft.graph.security.mailClusterEntityMapping" } + ], + "mailMessages": [ + { "@odata.type": "microsoft.graph.security.mailMessageEntityMapping" } + ], + "oAuthApplications": [ + { "@odata.type": "microsoft.graph.security.oAuthApplicationEntityMapping" } + ], + "processes": [ + { "@odata.type": "microsoft.graph.security.processEntityMapping" } + ], + "registryValues": [ + { "@odata.type": "microsoft.graph.security.registryValueEntityMapping" } + ], + "securityGroups": [ + { "@odata.type": "microsoft.graph.security.securityGroupEntityMapping" } + ], + "urls": [ + { "@odata.type": "microsoft.graph.security.urlEntityMapping" } + ] +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-fileaction.md b/api-reference/beta/resources/security-fileaction.md new file mode 100644 index 00000000000..70eccf1404d --- /dev/null +++ b/api-reference/beta/resources/security-fileaction.md @@ -0,0 +1,52 @@ +--- +title: "fileAction resource type" +description: "Represents an automated action that targets files returned by a custom detection rule query." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# fileAction resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents an [automatedAction](../resources/security-automatedaction.md) that targets files returned by a [detectionRule](../resources/security-detectionrule.md) hunting query. The action uses file hash columns from the query output to identify the files. + +Inherits from [automatedAction](../resources/security-automatedaction.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|deviceGroupNames|String collection|Names of the device groups where the file action applies.| +|sha1Column|String|Name of the hunting-query result column that contains the SHA-1 hash of the targeted file.| +|sha256Column|String|Name of the hunting-query result column that contains the SHA-256 hash of the targeted file.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.fileAction", + "deviceGroupNames": [ + "String" + ], + "sha1Column": "String", + "sha256Column": "String" +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-fileentitymapping.md b/api-reference/beta/resources/security-fileentitymapping.md new file mode 100644 index 00000000000..5ce7c7c4b38 --- /dev/null +++ b/api-reference/beta/resources/security-fileentitymapping.md @@ -0,0 +1,50 @@ +--- +title: "fileEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to a file entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# fileEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to a file entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|nameColumn|String|Name of the detection query column that maps to the name of the alert entity.| +|sha1Column|String|Name of the detection query column that maps to the SHA-1 hash of the alert entity.| +|sha256Column|String|Name of the detection query column that maps to the SHA-256 hash of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.fileEntityMapping", + "nameColumn": "String", + "sha1Column": "String", + "sha256Column": "String" +} +``` diff --git a/api-reference/beta/resources/security-forceuserpasswordresetresponseaction.md b/api-reference/beta/resources/security-forceuserpasswordresetresponseaction.md index 1a13daab878..3a264943ef3 100644 --- a/api-reference/beta/resources/security-forceuserpasswordresetresponseaction.md +++ b/api-reference/beta/resources/security-forceuserpasswordresetresponseaction.md @@ -1,5 +1,5 @@ --- -title: "forceUserPasswordResetResponseAction resource type" +title: "forceUserPasswordResetResponseAction resource type (deprecated)" description: "Describes a response action that prompts the user to change their password the next time they sign in." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# forceUserPasswordResetResponseAction resource type +# forceUserPasswordResetResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **forceUserPasswordResetResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes a response action that prompts the user to change their password the next time they sign in. diff --git a/api-reference/beta/resources/security-googlecloudresourceentitymapping.md b/api-reference/beta/resources/security-googlecloudresourceentitymapping.md new file mode 100644 index 00000000000..a173505022f --- /dev/null +++ b/api-reference/beta/resources/security-googlecloudresourceentitymapping.md @@ -0,0 +1,46 @@ +--- +title: "googleCloudResourceEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to a Google Cloud resource entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# googleCloudResourceEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to a Google Cloud resource entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|fullResourceNameColumn|String|Name of the detection query column that maps to the full resource name of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.googleCloudResourceEntityMapping", + "fullResourceNameColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-harddeleteresponseaction.md b/api-reference/beta/resources/security-harddeleteresponseaction.md index eb89308bc19..e19c9a3e0ac 100644 --- a/api-reference/beta/resources/security-harddeleteresponseaction.md +++ b/api-reference/beta/resources/security-harddeleteresponseaction.md @@ -1,5 +1,5 @@ --- -title: "hardDeleteResponseAction resource type" +title: "hardDeleteResponseAction resource type (deprecated)" description: "Describes a response action that hard-deletes an email message." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# hardDeleteResponseAction resource type +# hardDeleteResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **hardDeleteResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes a response action that hard-deletes an email message. Inherits from [microsoft.graph.security.responseAction](../resources/security-responseaction.md). diff --git a/api-reference/beta/resources/security-hostentitymapping.md b/api-reference/beta/resources/security-hostentitymapping.md new file mode 100644 index 00000000000..dc1169958ae --- /dev/null +++ b/api-reference/beta/resources/security-hostentitymapping.md @@ -0,0 +1,54 @@ +--- +title: "hostEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to a host entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# hostEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to a host entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|deviceIdColumn|String|Name of the detection query column that maps to the device ID of the alert entity.| +|dnsDomainColumn|String|Name of the detection query column that maps to the DNS domain of the alert entity.| +|nameColumn|String|Name of the detection query column that maps to the name of the alert entity.| +|netBiosNameColumn|String|Name of the detection query column that maps to the NetBIOS name of the alert entity.| +|ntDomainColumn|String|Name of the detection query column that maps to the NT domain of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.hostEntityMapping", + "deviceIdColumn": "String", + "dnsDomainColumn": "String", + "nameColumn": "String", + "netBiosNameColumn": "String", + "ntDomainColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-impactedasset.md b/api-reference/beta/resources/security-impactedasset.md index 1dc4ad3cf69..d9b0b95ef76 100644 --- a/api-reference/beta/resources/security-impactedasset.md +++ b/api-reference/beta/resources/security-impactedasset.md @@ -1,19 +1,22 @@ --- -title: "impactedAsset resource type" +title: "impactedAsset resource type (deprecated)" description: "Represents an asset that was identified in an alert triggered by a custom detection rule." author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: resourcePageType -ms.date: 03/06/2024 +ms.date: 05/25/2026 --- -# impactedAsset resource type +# impactedAsset resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **impactedAsset** resource type and all derived types are deprecated and will be removed on 2026-10-01. Use [entityMapping](../resources/security-entitymapping.md) and its derived types via `alertTemplate.entityMappings` instead. See the [custom detection rule](../resources/security-detectionrule.md) topic for the new shape. + Represents an asset that was identified in an alert triggered by a [custom detection rule](../resources/security-detectionrule.md). This type is abstract, and serves as the base type for the following asset types. diff --git a/api-reference/beta/resources/security-impacteddeviceasset.md b/api-reference/beta/resources/security-impacteddeviceasset.md index 467e28f1f7c..02466b374df 100644 --- a/api-reference/beta/resources/security-impacteddeviceasset.md +++ b/api-reference/beta/resources/security-impacteddeviceasset.md @@ -1,19 +1,22 @@ --- -title: "impactedDeviceAsset resource type" +title: "impactedDeviceAsset resource type (deprecated)" description: "Represents a device that was identified in an alert triggered by a custom detection rule." author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: resourcePageType -ms.date: 03/06/2024 +ms.date: 05/25/2026 --- -# impactedDeviceAsset resource type +# impactedDeviceAsset resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **impactedDeviceAsset** resource type is deprecated and will be removed on 2026-10-01. Use [entityMapping](../resources/security-entitymapping.md) and its derived types via `alertTemplate.entityMappings` instead. See the [custom detection rule](../resources/security-detectionrule.md) topic for the new shape. + Represents a device that was identified in an alert triggered by a [custom detection rule](../resources/security-detectionrule.md). Inherits from [microsoft.graph.security.impactedAsset](../resources/security-impactedasset.md). diff --git a/api-reference/beta/resources/security-impactedmailboxasset.md b/api-reference/beta/resources/security-impactedmailboxasset.md index decfc981760..f69bd1ba435 100644 --- a/api-reference/beta/resources/security-impactedmailboxasset.md +++ b/api-reference/beta/resources/security-impactedmailboxasset.md @@ -1,19 +1,22 @@ --- -title: "impactedMailboxAsset resource type" +title: "impactedMailboxAsset resource type (deprecated)" description: "Represents a mailbox that was identified in an alert triggered by a custom detection rule." author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: resourcePageType -ms.date: 03/06/2024 +ms.date: 05/25/2026 --- -# impactedMailboxAsset resource type +# impactedMailboxAsset resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **impactedMailboxAsset** resource type is deprecated and will be removed on 2026-10-01. Use [entityMapping](../resources/security-entitymapping.md) and its derived types via `alertTemplate.entityMappings` instead. See the [custom detection rule](../resources/security-detectionrule.md) topic for the new shape. + Represents a mailbox that was identified in an alert triggered by a [custom detection rule](../resources/security-detectionrule.md). Inherits from [microsoft.graph.security.impactedAsset](../resources/security-impactedasset.md). diff --git a/api-reference/beta/resources/security-impacteduserasset.md b/api-reference/beta/resources/security-impacteduserasset.md index 082e6e53f7b..ca3a7b8babe 100644 --- a/api-reference/beta/resources/security-impacteduserasset.md +++ b/api-reference/beta/resources/security-impacteduserasset.md @@ -1,19 +1,22 @@ --- -title: "impactedUserAsset resource type" +title: "impactedUserAsset resource type (deprecated)" description: "Represents a user account that was identified in an alert triggered by a custom detection rule." author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: resourcePageType -ms.date: 03/06/2024 +ms.date: 05/25/2026 --- -# impactedUserAsset resource type +# impactedUserAsset resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **impactedUserAsset** resource type is deprecated and will be removed on 2026-10-01. Use [entityMapping](../resources/security-entitymapping.md) and its derived types via `alertTemplate.entityMappings` instead. See the [custom detection rule](../resources/security-detectionrule.md) topic for the new shape. + Represents a user account that was identified in an alert triggered by a [custom detection rule](../resources/security-detectionrule.md). Inherits from [microsoft.graph.security.impactedAsset](../resources/security-impactedasset.md). diff --git a/api-reference/beta/resources/security-incidenttaskresponseaction.md b/api-reference/beta/resources/security-incidenttaskresponseaction.md index 907a993f6a1..7fd01c396a7 100644 --- a/api-reference/beta/resources/security-incidenttaskresponseaction.md +++ b/api-reference/beta/resources/security-incidenttaskresponseaction.md @@ -1,5 +1,5 @@ --- -title: "incidentTaskResponseAction resource type" +title: "incidentTaskResponseAction resource type (deprecated)" description: "Represents a base type for all incident task response actions in Microsoft Defender XDR." author: "BenAlfasi" ms.date: 06/25/2025 @@ -8,12 +8,15 @@ ms.subservice: "security" doc_type: resourcePageType --- -# incidentTaskResponseAction resource type +# incidentTaskResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **incidentTaskResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Represents the base type for all incident task response actions in Microsoft Defender XDR. This is an abstract type that cannot be instantiated directly but serves as the parent type for the following specific response actions that can be executed on incident tasks. - [stopAndQuarantineFileIncidentTaskResponseAction](../resources/security-stopandquarantinefileincidenttaskresponseaction.md) - Used to stop and quarantine a file. diff --git a/api-reference/beta/resources/security-initiateinvestigationresponseaction.md b/api-reference/beta/resources/security-initiateinvestigationresponseaction.md index a163ee93080..b87653bd9f6 100644 --- a/api-reference/beta/resources/security-initiateinvestigationresponseaction.md +++ b/api-reference/beta/resources/security-initiateinvestigationresponseaction.md @@ -1,5 +1,5 @@ --- -title: "initiateInvestigationResponseAction resource type" +title: "initiateInvestigationResponseAction resource type (deprecated)" description: "Describes a response action that starts an automated investigation of a device." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# initiateInvestigationResponseAction resource type +# initiateInvestigationResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **initiateInvestigationResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes a response action that starts an automated investigation of a device. Inherits from [microsoft.graph.security.responseAction](../resources/security-responseaction.md). diff --git a/api-reference/beta/resources/security-ipentitymapping.md b/api-reference/beta/resources/security-ipentitymapping.md new file mode 100644 index 00000000000..16a57ea3e38 --- /dev/null +++ b/api-reference/beta/resources/security-ipentitymapping.md @@ -0,0 +1,48 @@ +--- +title: "ipEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to an IP entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# ipEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to an IP entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|addressColumn|String|Name of the detection query column that maps to the IP address of the alert entity.| +|scopeColumn|String|Name of the detection query column that maps to the scope of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.ipEntityMapping", + "addressColumn": "String", + "scopeColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-isolatedeviceaction.md b/api-reference/beta/resources/security-isolatedeviceaction.md new file mode 100644 index 00000000000..d940028fd75 --- /dev/null +++ b/api-reference/beta/resources/security-isolatedeviceaction.md @@ -0,0 +1,48 @@ +--- +title: "isolateDeviceAction resource type" +description: "Represents an automated action that isolates a device returned by a custom detection rule query." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# isolateDeviceAction resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a [deviceAction](../resources/security-deviceaction.md) that isolates a device returned by a [detectionRule](../resources/security-detectionrule.md) hunting query. The action uses the device ID column from the query output to identify the device to isolate. + +Inherits from [deviceAction](../resources/security-deviceaction.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|deviceIdColumn|String|Name of the hunting-query result column that contains the device ID for the targeted device. Inherited from [deviceAction](../resources/security-deviceaction.md).| +|isolationType|microsoft.graph.security.isolationType|Type of isolation to apply to the device. The possible values are: `full`, `selective`, `unknownFutureValue`.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.isolateDeviceAction", + "deviceIdColumn": "String", + "isolationType": "String" +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-isolatedeviceresponseaction.md b/api-reference/beta/resources/security-isolatedeviceresponseaction.md index 720169b69c8..dc845d212c1 100644 --- a/api-reference/beta/resources/security-isolatedeviceresponseaction.md +++ b/api-reference/beta/resources/security-isolatedeviceresponseaction.md @@ -1,5 +1,5 @@ --- -title: "isolateDeviceResponseAction resource type" +title: "isolateDeviceResponseAction resource type (deprecated)" description: "Describes a response action that uses Microsoft Defender to apply full network isolation to a device." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# isolateDeviceResponseAction resource type +# isolateDeviceResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **isolateDeviceResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes a response action that uses Microsoft Defender to apply full network isolation to a device. This response action prevents the device from connecting to any application or service. diff --git a/api-reference/beta/resources/security-mailboxentitymapping.md b/api-reference/beta/resources/security-mailboxentitymapping.md new file mode 100644 index 00000000000..dd8050ae838 --- /dev/null +++ b/api-reference/beta/resources/security-mailboxentitymapping.md @@ -0,0 +1,46 @@ +--- +title: "mailboxEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to a mailbox entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# mailboxEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to a mailbox entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|primaryAddressColumn|String|Name of the detection query column that maps to the primary email address of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.mailboxEntityMapping", + "primaryAddressColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-mailclusterentitymapping.md b/api-reference/beta/resources/security-mailclusterentitymapping.md new file mode 100644 index 00000000000..8f010c388ad --- /dev/null +++ b/api-reference/beta/resources/security-mailclusterentitymapping.md @@ -0,0 +1,48 @@ +--- +title: "mailClusterEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to a mail cluster entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# mailClusterEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to a mail cluster entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|queryColumn|String|Name of the detection query column that maps to the query of the alert entity.| +|sourceColumn|String|Name of the detection query column that maps to the source of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.mailClusterEntityMapping", + "queryColumn": "String", + "sourceColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-mailmessageentitymapping.md b/api-reference/beta/resources/security-mailmessageentitymapping.md new file mode 100644 index 00000000000..8acb4c3dfdd --- /dev/null +++ b/api-reference/beta/resources/security-mailmessageentitymapping.md @@ -0,0 +1,52 @@ +--- +title: "mailMessageEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to a mail message entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# mailMessageEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to a mail message entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|networkMessageIdColumn|String|Name of the detection query column that maps to the network message ID of the alert entity.| +|recipientColumn|String|Name of the detection query column that maps to the recipient of the alert entity.| +|senderColumn|String|Name of the detection query column that maps to the sender of the alert entity.| +|subjectColumn|String|Name of the detection query column that maps to the subject of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.mailMessageEntityMapping", + "networkMessageIdColumn": "String", + "recipientColumn": "String", + "senderColumn": "String", + "subjectColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-markuserascompromisedresponseaction.md b/api-reference/beta/resources/security-markuserascompromisedresponseaction.md index d321edc9273..814f92b073a 100644 --- a/api-reference/beta/resources/security-markuserascompromisedresponseaction.md +++ b/api-reference/beta/resources/security-markuserascompromisedresponseaction.md @@ -1,5 +1,5 @@ --- -title: "markUserAsCompromisedResponseAction resource type" +title: "markUserAsCompromisedResponseAction resource type (deprecated)" description: "Describes a response action that sets the user's risk level to 'high' in Microsoft Entra ID." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# markUserAsCompromisedResponseAction resource type +# markUserAsCompromisedResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **markUserAsCompromisedResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes a response action that sets the user's risk level to "high" in Microsoft Entra ID. This response action sets the user's risk level to `high` in Microsoft Entra ID, which triggers the identity protection policies for a `high` risk level. diff --git a/api-reference/beta/resources/security-mitretactic.md b/api-reference/beta/resources/security-mitretactic.md new file mode 100644 index 00000000000..46384a5a478 --- /dev/null +++ b/api-reference/beta/resources/security-mitretactic.md @@ -0,0 +1,49 @@ +--- +title: "mitreTactic resource type" +description: "Represents a MITRE ATT&CK tactic and the techniques used within it." +author: "mmekler" +ms.date: 05/25/2026 +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +--- + +# mitreTactic resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a MITRE ATT&CK tactic and the techniques used within it. This resource is configured in the **tactics** property of an [alertTemplate](../resources/security-alerttemplate.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|tactic|String|The MITRE tactic identifier, for example, `Exploit`.| +|techniques|[microsoft.graph.security.mitreTechnique](../resources/security-mitretechnique.md) collection|The techniques observed within this tactic.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.mitreTactic", + "tactic": "String", + "techniques": [ + { + "@odata.type": "microsoft.graph.security.mitreTechnique" + } + ] +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-mitretechnique.md b/api-reference/beta/resources/security-mitretechnique.md new file mode 100644 index 00000000000..b12ffe95794 --- /dev/null +++ b/api-reference/beta/resources/security-mitretechnique.md @@ -0,0 +1,47 @@ +--- +title: "mitreTechnique resource type" +description: "Represents a MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) technique and optional subtechniques." +author: "mmekler" +ms.date: 05/25/2026 +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +--- + +# mitreTechnique resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) technique and optional subtechniques. This resource is configured in the **techniques** property of a [mitreTactic](../resources/security-mitretactic.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|subTechniques|String collection|The MITRE ATT&CK subtechnique identifiers that are associated with this technique, for example, `T1059.001`.| +|technique|String|The MITRE ATT&CK technique identifier, for example, `T1059`.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.mitreTechnique", + "subTechniques": [ + "String" + ], + "technique": "String" +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-movetodeleteditemsresponseaction.md b/api-reference/beta/resources/security-movetodeleteditemsresponseaction.md index 93abd916ad2..bd1e3fcd1ea 100644 --- a/api-reference/beta/resources/security-movetodeleteditemsresponseaction.md +++ b/api-reference/beta/resources/security-movetodeleteditemsresponseaction.md @@ -1,5 +1,5 @@ --- -title: "moveToDeletedItemsResponseAction resource type" +title: "moveToDeletedItemsResponseAction resource type (deprecated)" description: "Describes an email response action that moves the email message to the user's Deleted items folder." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# moveToDeletedItemsResponseAction resource type +# moveToDeletedItemsResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **moveToDeletedItemsResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes an email response action that moves the email message to the user's Deleted items folder. Inherits from [microsoft.graph.security.responseAction](../resources/security-responseaction.md). diff --git a/api-reference/beta/resources/security-movetoinboxresponseaction.md b/api-reference/beta/resources/security-movetoinboxresponseaction.md index 8499843721a..05d8dd9d2d6 100644 --- a/api-reference/beta/resources/security-movetoinboxresponseaction.md +++ b/api-reference/beta/resources/security-movetoinboxresponseaction.md @@ -1,5 +1,5 @@ --- -title: "moveToInboxResponseAction resource type" +title: "moveToInboxResponseAction resource type (deprecated)" description: "Describes an email response action that moves the email message to the user's Inbox." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# moveToInboxResponseAction resource type +# moveToInboxResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **moveToInboxResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes an email response action that moves the email message to the user's Inbox. Inherits from [microsoft.graph.security.responseAction](../resources/security-responseaction.md). diff --git a/api-reference/beta/resources/security-movetojunkresponseaction.md b/api-reference/beta/resources/security-movetojunkresponseaction.md index 359d0013f7e..6a8db2dcd35 100644 --- a/api-reference/beta/resources/security-movetojunkresponseaction.md +++ b/api-reference/beta/resources/security-movetojunkresponseaction.md @@ -1,5 +1,5 @@ --- -title: "moveToJunkResponseAction resource type" +title: "moveToJunkResponseAction resource type (deprecated)" description: "Describes an email response action that moves the email message to the user's Junk folder." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# moveToJunkResponseAction resource type +# moveToJunkResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **moveToJunkResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes an email response action that moves the email message to the user's Junk folder. Inherits from [microsoft.graph.security.responseAction](../resources/security-responseaction.md). diff --git a/api-reference/beta/resources/security-oauthapplicationentitymapping.md b/api-reference/beta/resources/security-oauthapplicationentitymapping.md new file mode 100644 index 00000000000..41d4238d24f --- /dev/null +++ b/api-reference/beta/resources/security-oauthapplicationentitymapping.md @@ -0,0 +1,46 @@ +--- +title: "oAuthApplicationEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to an OAuth application entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# oAuthApplicationEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to an OAuth application entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|oAuthAppIdColumn|String|Name of the detection query column that maps to the OAuth application ID of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.oAuthApplicationEntityMapping", + "oAuthAppIdColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-organizationalscope.md b/api-reference/beta/resources/security-organizationalscope.md index 50cd166b947..157865ef6ff 100644 --- a/api-reference/beta/resources/security-organizationalscope.md +++ b/api-reference/beta/resources/security-organizationalscope.md @@ -5,7 +5,7 @@ author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: resourcePageType -ms.date: 03/06/2024 +ms.date: 06/03/2026 --- # organizationalScope resource type @@ -17,10 +17,12 @@ Namespace: microsoft.graph.security Represents a scope that specifies which devices are covered by a [custom detection rule's](../resources/security-detectionrule.md) [detection action](../resources/security-detectionaction.md). ## Properties -| Property | Type | Description | -|:-----------|:--------------------------------------------------------------------------------------|:----------------------------------------------------------------------------------------------------| -| scopeNames | String collection | List of groups to which the custom detection rule applies. | -| scopeType | [microsoft.graph.security.scopeType](../resources/enums-security.md#scopetype-values) | The type of the organizational scope. The possible values are: `deviceGroup`, `unknownFutureValue`. | + +|Property|Type|Description| +|:---|:---|:---| +|deviceGroups|String collection|List of device groups to which the custom detection rule applies.| +|scopeNames (deprecated)|String collection|List of groups to which the custom detection rule applies. **Deprecated.** Use **deviceGroups** instead. This property will be removed from this resource on October 1, 2026.| +|scopeType (deprecated)|[microsoft.graph.security.scopeType](../resources/enums-security.md#scopetype-values)|The type of the organizational scope. The possible values are: `deviceGroup`, `unknownFutureValue`. **Deprecated.** Use **deviceGroups** instead. This property will be removed from this resource on October 1, 2026.| ## Relationships None. @@ -35,6 +37,9 @@ The following JSON representation shows the resource type. ``` json { "@odata.type": "#microsoft.graph.security.organizationalScope", + "deviceGroups": [ + "String" + ], "scopeType": "String", "scopeNames": [ "String" @@ -42,3 +47,4 @@ The following JSON representation shows the resource type. } ``` + diff --git a/api-reference/beta/resources/security-processentitymapping.md b/api-reference/beta/resources/security-processentitymapping.md new file mode 100644 index 00000000000..0e1e5f3eb61 --- /dev/null +++ b/api-reference/beta/resources/security-processentitymapping.md @@ -0,0 +1,48 @@ +--- +title: "processEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to a process entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# processEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to a process entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|sha1Column|String|Name of the detection query column that maps to the SHA-1 hash of the alert entity.| +|sha256Column|String|Name of the detection query column that maps to the SHA-256 hash of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.processEntityMapping", + "sha1Column": "String", + "sha256Column": "String" +} +``` diff --git a/api-reference/beta/resources/security-protectionrule.md b/api-reference/beta/resources/security-protectionrule.md deleted file mode 100644 index 46bcc66f9f0..00000000000 --- a/api-reference/beta/resources/security-protectionrule.md +++ /dev/null @@ -1,58 +0,0 @@ ---- -title: "protectionRule resource type" -description: "Represents a rule, which contains basic properties such as ID, name, and so on." -author: "mmekler" -ms.localizationpriority: medium -ms.subservice: "security" -doc_type: resourcePageType -ms.date: 03/06/2024 ---- - -# protectionRule resource type - -Namespace: microsoft.graph.security - -[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] - -Represents a rule, which contains basic properties such as ID, name, and so on. -This type is abstract. - -Inherits from [microsoft.graph.entity](../resources/entity.md). - -## Properties -| Property | Type | Description | -|:---------------------|:---------------|:-------------------------------------------------------| -| createdBy | String | Name of the user or application that created the rule. | -| createdDateTime | DateTimeOffset | Timestamp of rule creation. | -| displayName | String | Name of the rule. | -| id | String | Unique identifier to represent the rule. | -| isEnabled | Boolean | Whether rule is turned on for the tenant. | -| lastModifiedBy | String | Name of the user or application who last updated the rule. | -| lastModifiedDateTime | DateTimeOffset | Timestamp of when the rule was last updated. | - -## Relationships -None. - -## JSON representation -The following JSON representation shows the resource type. - -``` json -{ - "@odata.type": "#microsoft.graph.security.protectionRule", - "id": "String (identifier)", - "displayName": "String", - "isEnabled": "Boolean", - "createdBy": "String", - "createdDateTime": "String (timestamp)", - "lastModifiedDateTime": "String (timestamp)", - "lastModifiedBy": "String" -} -``` - diff --git a/api-reference/beta/resources/security-querycondition.md b/api-reference/beta/resources/security-querycondition.md index d494edbc351..11fab6b4f2c 100644 --- a/api-reference/beta/resources/security-querycondition.md +++ b/api-reference/beta/resources/security-querycondition.md @@ -5,7 +5,7 @@ author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: resourcePageType -ms.date: 03/06/2024 +ms.date: 05/25/2026 --- # queryCondition resource type @@ -17,10 +17,11 @@ Namespace: microsoft.graph.security Represents the [advanced hunting](../api/security-security-runhuntingquery.md) query that defines the behavior of a [custom detection rule](../resources/security-detectionrule.md). ## Properties -| Property | Type | Description | -|:---------------------|:---------------|:---------------------------------------------------------------------------| -| lastModifiedDateTime | DateTimeOffset | Timestamp of when the query in the custom detection rule was last updated. | -| queryText | String | Contents of the query. | + +|Property|Type|Description| +|:---|:---|:---| +|queryText|String|Contents of the query.| +|lastModifiedDateTime (deprecated)|DateTimeOffset|Timestamp of when the query in the custom detection rule was last updated. **Deprecated.** This property will be removed from this resource on 2026-10-01.| ## Relationships None. diff --git a/api-reference/beta/resources/security-registryvalueentitymapping.md b/api-reference/beta/resources/security-registryvalueentitymapping.md new file mode 100644 index 00000000000..6fca0970b67 --- /dev/null +++ b/api-reference/beta/resources/security-registryvalueentitymapping.md @@ -0,0 +1,48 @@ +--- +title: "registryValueEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to a registry value entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# registryValueEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to a registry value entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|keyColumn|String|Name of the detection query column that maps to the registry key of the alert entity.| +|valueNameColumn|String|Name of the detection query column that maps to the value name of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.registryValueEntityMapping", + "keyColumn": "String", + "valueNameColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-responseaction.md b/api-reference/beta/resources/security-responseaction.md index 36ff896a97d..465c7d4d84f 100644 --- a/api-reference/beta/resources/security-responseaction.md +++ b/api-reference/beta/resources/security-responseaction.md @@ -1,20 +1,23 @@ --- -title: "responseAction resource type" +title: "responseAction resource type (deprecated)" description: "Describes an action taken on impacted assets as set in the custom detection rule." author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: resourcePageType -ms.date: 03/06/2024 +ms.date: 05/25/2026 --- -# responseAction resource type +# responseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Describes an action taken on [impacted assets](../resources/security-impactedasset.md) as set in a [custom detection rule](../resources/security-detectionrule.md). For more information, see [response actions](/microsoft-365/security/defender/custom-detection-rules#4-specify-actions) +> [!IMPORTANT] +> The **responseAction** resource type and all 17 derived types are deprecated and will be removed on 2026-10-01. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + +Describes an action taken on [impacted assets](../resources/security-impactedasset.md) as set in a [custom detection rule](../resources/security-detectionrule.md). For more information, see [response actions](/microsoft-365/security/defender/custom-detection-rules#4-specify-actions). This type is abstract and has multiple response action types that are derived from it: diff --git a/api-reference/beta/resources/security-restrictappexecutionresponseaction.md b/api-reference/beta/resources/security-restrictappexecutionresponseaction.md index 69e45045097..32ede773079 100644 --- a/api-reference/beta/resources/security-restrictappexecutionresponseaction.md +++ b/api-reference/beta/resources/security-restrictappexecutionresponseaction.md @@ -1,5 +1,5 @@ --- -title: "restrictAppExecutionResponseAction resource type" +title: "restrictAppExecutionResponseAction resource type (deprecated)" description: "Describes a response action that sets restrictions on device to allow only files that are signed with a Microsoft-issued certificate to run." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# restrictAppExecutionResponseAction resource type +# restrictAppExecutionResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **restrictAppExecutionResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes a response action that sets restrictions on device to allow only files that are signed with a Microsoft-issued certificate to run. Inherits from [microsoft.graph.security.responseAction](../resources/security-responseaction.md). diff --git a/api-reference/beta/resources/security-ruleschedule.md b/api-reference/beta/resources/security-ruleschedule.md index 5ff834fcfc0..063a367c7b3 100644 --- a/api-reference/beta/resources/security-ruleschedule.md +++ b/api-reference/beta/resources/security-ruleschedule.md @@ -5,7 +5,7 @@ author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: resourcePageType -ms.date: 03/06/2024 +ms.date: 05/25/2026 --- # ruleSchedule resource type @@ -17,10 +17,12 @@ Namespace: microsoft.graph.security Represents how often the [custom detection rule](../resources/security-detectionrule.md) runs, and when it next runs. ## Properties -| Property | Type | Description | -|:----------------|:---------------|:--------------------------------------------------------------------------------------------------------------------------------------------------| -| nextRunDateTime | DateTimeOffset | Timestamp of the custom detection rule's next scheduled run. | -| period | String | How often the detection rule is set to run. The allowed values are: `0`, `1H`, `3H`, `12H`, or `24H`. "0" signifies the rule is run continuously. | + +|Property|Type|Description| +|:---|:---|:---| +|frequency|Duration|The recurring time interval at which the rule runs (ISO 8601 duration, for example P1D for daily, PT1H for hourly).| +|nextRunDateTime (deprecated)|DateTimeOffset|Timestamp of the custom detection rule's next scheduled run. **Deprecated.** This property will be removed from this resource on 2026-10-01.| +|period (deprecated)|String|How often the detection rule is set to run. The allowed values are: `0`, `1H`, `3H`, `12H`, or `24H`. `0` signifies the rule is run continuously. **Deprecated.** Use **frequency** instead. This property will be removed from this resource on 2026-10-01.| ## Relationships None. @@ -35,8 +37,9 @@ The following JSON representation shows the resource type. ``` json { "@odata.type": "#microsoft.graph.security.ruleSchedule", - "period": "String", - "nextRunDateTime": "String (timestamp)" + "frequency": "String (duration)", + "nextRunDateTime": "String (timestamp)", + "period": "String" } ``` diff --git a/api-reference/beta/resources/security-rulesroot.md b/api-reference/beta/resources/security-rulesroot.md new file mode 100644 index 00000000000..8b0baaeb296 --- /dev/null +++ b/api-reference/beta/resources/security-rulesroot.md @@ -0,0 +1,46 @@ +--- +title: "rulesRoot resource type" +description: "Container that holds the custom detection rules in Microsoft Defender XDR." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# rulesRoot resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Container that holds the [custom detection rules](../resources/security-detectionrule.md) configured for the tenant in Microsoft Defender XDR. Accessed as a singleton from the [security](../resources/security.md) resource through the `rules` navigation property. + +## Methods + +None. + +## Properties + +None. + +## Relationships + +|Relationship|Type|Description| +|:---|:---|:---| +|detectionRules|[microsoft.graph.security.detectionRule](../resources/security-detectionrule.md) collection|The custom detection rules configured for the tenant.| + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.rulesRoot" +} +``` diff --git a/api-reference/beta/resources/security-runantivirusscanresponseaction.md b/api-reference/beta/resources/security-runantivirusscanresponseaction.md index d30a1e943c1..b03f6ad3dd3 100644 --- a/api-reference/beta/resources/security-runantivirusscanresponseaction.md +++ b/api-reference/beta/resources/security-runantivirusscanresponseaction.md @@ -1,5 +1,5 @@ --- -title: "runAntivirusScanResponseAction resource type" +title: "runAntivirusScanResponseAction resource type (deprecated)" description: "Describes a response action that performs a full Microsoft Defender Antivirus scan on the device." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# runAntivirusScanResponseAction resource type +# runAntivirusScanResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **runAntivirusScanResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes a response action that performs a full Microsoft Defender Antivirus scan on the device. Inherits from [microsoft.graph.security.responseAction](../resources/security-responseaction.md). diff --git a/api-reference/beta/resources/security-rundetails.md b/api-reference/beta/resources/security-rundetails.md index 397d9ef006a..c7631a79ae2 100644 --- a/api-reference/beta/resources/security-rundetails.md +++ b/api-reference/beta/resources/security-rundetails.md @@ -1,19 +1,22 @@ --- -title: "runDetails resource type" +title: "runDetails resource type (deprecated)" description: "Represents an instance of a custom detection rule run." author: "mmekler" ms.localizationpriority: medium ms.subservice: "security" doc_type: resourcePageType -ms.date: 03/06/2024 +ms.date: 05/25/2026 --- -# runDetails resource type +# runDetails resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **runDetails** resource type is deprecated and will be removed on 2026-10-01. Run history is no longer surfaced through the custom detection rules API. + Represents an instance of a [custom detection rule](../resources/security-detectionrule.md) run. ## Properties diff --git a/api-reference/beta/resources/security-securitygroupentitymapping.md b/api-reference/beta/resources/security-securitygroupentitymapping.md new file mode 100644 index 00000000000..2e581dc0e6c --- /dev/null +++ b/api-reference/beta/resources/security-securitygroupentitymapping.md @@ -0,0 +1,50 @@ +--- +title: "securityGroupEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to a security group entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# securityGroupEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to a security group entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|distinguishedNameColumn|String|Name of the detection query column that maps to the distinguished name of the alert entity.| +|objectIdColumn|String|Name of the detection query column that maps to the object ID of the alert entity.| +|sidColumn|String|Name of the detection query column that maps to the security identifier (SID) of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.securityGroupEntityMapping", + "distinguishedNameColumn": "String", + "objectIdColumn": "String", + "sidColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security-softdeleteresponseaction.md b/api-reference/beta/resources/security-softdeleteresponseaction.md index 143333dae6d..bf316d07123 100644 --- a/api-reference/beta/resources/security-softdeleteresponseaction.md +++ b/api-reference/beta/resources/security-softdeleteresponseaction.md @@ -1,5 +1,5 @@ --- -title: "softDeleteResponseAction resource type" +title: "softDeleteResponseAction resource type (deprecated)" description: "Describes the soft delete response action, which moves the email message to a Deleted folder in the cloud but doesn't delete the email message permanently." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# softDeleteResponseAction resource type +# softDeleteResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **softDeleteResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes the soft delete response action, which moves the email message to a Deleted folder in the cloud but doesn't delete the email message permanently. Only administrators can perform this response action. Inherits from [microsoft.graph.security.responseAction](../resources/security-responseaction.md). diff --git a/api-reference/beta/resources/security-stopandquarantinefileaction.md b/api-reference/beta/resources/security-stopandquarantinefileaction.md new file mode 100644 index 00000000000..1554c191d36 --- /dev/null +++ b/api-reference/beta/resources/security-stopandquarantinefileaction.md @@ -0,0 +1,48 @@ +--- +title: "stopAndQuarantineFileAction resource type" +description: "Represents an automated action that stops and quarantines a file on a device returned by a custom detection rule query." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# stopAndQuarantineFileAction resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents an [automatedAction](../resources/security-automatedaction.md) that stops and quarantines a file on a device returned by a [detectionRule](../resources/security-detectionrule.md) hunting query. The action uses device ID and SHA-1 columns from the query output to identify where to stop and quarantine the file. + +Inherits from [automatedAction](../resources/security-automatedaction.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|deviceIdColumn|String|Name of the hunting-query result column that contains the device ID for the device where the file was observed.| +|sha1Column|String|Name of the hunting-query result column that contains the SHA-1 hash of the file to stop and quarantine.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.stopAndQuarantineFileAction", + "deviceIdColumn": "String", + "sha1Column": "String" +} +``` \ No newline at end of file diff --git a/api-reference/beta/resources/security-stopandquarantinefileresponseaction.md b/api-reference/beta/resources/security-stopandquarantinefileresponseaction.md index cd6f8e1e199..468dffa4ca1 100644 --- a/api-reference/beta/resources/security-stopandquarantinefileresponseaction.md +++ b/api-reference/beta/resources/security-stopandquarantinefileresponseaction.md @@ -1,5 +1,5 @@ --- -title: "stopAndQuarantineFileResponseAction resource type" +title: "stopAndQuarantineFileResponseAction resource type (deprecated)" description: "Describes response action that moves the file from its current location to quarantine." author: "mmekler" ms.localizationpriority: medium @@ -8,12 +8,15 @@ doc_type: resourcePageType ms.date: 03/06/2024 --- -# stopAndQuarantineFileResponseAction resource type +# stopAndQuarantineFileResponseAction resource type (deprecated) Namespace: microsoft.graph.security [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] +> [!IMPORTANT] +> The **stopAndQuarantineFileResponseAction** resource type is deprecated and will be removed on October 1, 2026. Use [automatedAction](../resources/security-automatedaction.md) (grouped via [automatedActionSet](../resources/security-automatedactionset.md)) on the [detectionAction](../resources/security-detectionaction.md) resource instead. + Describes response action that moves the file from its current location to quarantine. Inherits from [microsoft.graph.security.responseAction](../resources/security-responseaction.md). diff --git a/api-reference/beta/resources/security-urlentitymapping.md b/api-reference/beta/resources/security-urlentitymapping.md new file mode 100644 index 00000000000..017c4e12bdb --- /dev/null +++ b/api-reference/beta/resources/security-urlentitymapping.md @@ -0,0 +1,46 @@ +--- +title: "urlEntityMapping resource type" +description: "Represents a mapping from columns in a custom detection rule query result to a URL entity that is attached to the resulting alert." +author: "mmekler" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/25/2026 +--- + +# urlEntityMapping resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a mapping from columns in a [custom detection rule](../resources/security-detectionrule.md) query result to a URL entity that is attached to the resulting alert. + +Base type: [entityMapping](../resources/security-entitymapping.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|addressColumn|String|Name of the detection query column that maps to the URL address of the alert entity.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.security.urlEntityMapping", + "addressColumn": "String" +} +``` diff --git a/api-reference/beta/resources/security.md b/api-reference/beta/resources/security.md index eba970f127e..dcfe88765c9 100644 --- a/api-reference/beta/resources/security.md +++ b/api-reference/beta/resources/security.md @@ -36,6 +36,7 @@ None. |incidentTasks|[microsoft.graph.security.incidentTask](security-incidenttask.md) collection|A collection of tasks associated with security incidents.| |incidents | [microsoft.graph.security.incident](security-incident.md) collection | A collection of incidents in Microsoft 365 Defender, each of which is a set of correlated alerts and associated metadata that reflects the story of an attack.| |partner| [microsoft.graph.partner.security.partnerSecurity](../resources/partner-security-partnersecurity.md) | A container that safeguards the Microsoft Azure resources of Microsoft Cloud Solution Provider (CSP) partners' customers, including alerts, scores, and all aspects of security. | +|rules|[microsoft.graph.security.rulesRoot](../resources/security-rulesroot.md)|Container for the security rules configured in Microsoft Defender XDR, including [custom detection rules](../resources/security-detectionrule.md).| |secureScores | [secureScore](securescore.md) collection | Measurements of tenants' security posture to help protect them from threats. | |securityCopilot | [securityCopilot](../resources/securitycopilot.md) collection | Represents the resources related to Microsoft Security Copilot. | |securityactions|[securityAction](../resources/securityaction.md) collection|Actions that respond to alerts to block malicious activities.| diff --git a/api-reference/beta/toc/security/toc.yml b/api-reference/beta/toc/security/toc.yml index 58ff6b23691..e3bdfacb7b0 100644 --- a/api-reference/beta/toc/security/toc.yml +++ b/api-reference/beta/toc/security/toc.yml @@ -290,6 +290,112 @@ items: items: - name: Audit info href: ../../resources/security-auditinfo.md +- name: Custom detection rules + items: + - name: Rules root + items: + - name: Rules root + href: ../../resources/security-rulesroot.md + - name: List + href: ../../api/security-rulesroot-list-detectionrules.md + - name: Create + href: ../../api/security-rulesroot-post-detectionrules.md + - name: Get + href: ../../api/security-detectionrule-get.md + - name: Update + href: ../../api/security-detectionrule-update.md + - name: Delete + href: ../../api/security-rulesroot-delete-detectionrules.md + - name: Detection rule + items: + - name: Detection rule + href: ../../resources/security-detectionrule.md + - name: List + href: ../../api/security-rulesroot-list-detectionrules.md + - name: Create + href: ../../api/security-rulesroot-post-detectionrules.md + - name: Get + href: ../../api/security-detectionrule-get.md + - name: Update + href: ../../api/security-detectionrule-update.md + - name: Delete + href: ../../api/security-rulesroot-delete-detectionrules.md + - name: Complex types + items: + - name: Account entity mapping + href: ../../resources/security-accountentitymapping.md + - name: Account object id action + href: ../../resources/security-accountobjectidaction.md + - name: Account sid action + href: ../../resources/security-accountsidaction.md + - name: Alert custom details + href: ../../resources/security-alertcustomdetails.md + - name: Alert template + href: ../../resources/security-alerttemplate.md + - name: Amazon resource entity mapping + href: ../../resources/security-amazonresourceentitymapping.md + - name: Automated action + href: ../../resources/security-automatedaction.md + - name: Automated action set + href: ../../resources/security-automatedactionset.md + - name: Azure resource entity mapping + href: ../../resources/security-azureresourceentitymapping.md + - name: Cloud application entity mapping + href: ../../resources/security-cloudapplicationentitymapping.md + - name: Detection action + href: ../../resources/security-detectionaction.md + - name: Device action + href: ../../resources/security-deviceaction.md + - name: DNS entity mapping + href: ../../resources/security-dnsentitymapping.md + - name: Email action + href: ../../resources/security-emailaction.md + - name: Entity mapping + href: ../../resources/security-entitymapping.md + - name: Entity mapping configuration + href: ../../resources/security-entitymappingconfiguration.md + - name: File action + href: ../../resources/security-fileaction.md + - name: File entity mapping + href: ../../resources/security-fileentitymapping.md + - name: Google cloud resource entity mapping + href: ../../resources/security-googlecloudresourceentitymapping.md + - name: Host entity mapping + href: ../../resources/security-hostentitymapping.md + - name: Impacted asset + href: ../../resources/security-impactedasset.md + - name: IP entity mapping + href: ../../resources/security-ipentitymapping.md + - name: Isolate device action + href: ../../resources/security-isolatedeviceaction.md + - name: Mail cluster entity mapping + href: ../../resources/security-mailclusterentitymapping.md + - name: Mail message entity mapping + href: ../../resources/security-mailmessageentitymapping.md + - name: Mailbox entity mapping + href: ../../resources/security-mailboxentitymapping.md + - name: Mitre tactic + href: ../../resources/security-mitretactic.md + - name: Mitre technique + href: ../../resources/security-mitretechnique.md + - name: OAuth application entity mapping + href: ../../resources/security-oauthapplicationentitymapping.md + - name: Process entity mapping + href: ../../resources/security-processentitymapping.md + - name: Query condition + href: ../../resources/security-querycondition.md + - name: Registry value entity mapping + href: ../../resources/security-registryvalueentitymapping.md + - name: Response action + href: ../../resources/security-responseaction.md + - name: Rule schedule + href: ../../resources/security-ruleschedule.md + - name: Security group entity mapping + href: ../../resources/security-securitygroupentitymapping.md + - name: Stop and quarantine file action + href: ../../resources/security-stopandquarantinefileaction.md + - name: URL entity mapping + href: ../../resources/security-urlentitymapping.md - name: Data security and compliance items: - name: Content activity @@ -432,20 +538,6 @@ items: href: ../../resources/textcontent.md - name: User scope href: ../../resources/userscope.md -- name: Detection rule - items: - - name: Detection rule - href: ../../resources/security-detectionrule.md - - name: List - href: ../../api/security-detectionrule-list.md - - name: Get - href: ../../api/security-detectionrule-get.md - - name: Create - href: ../../api/security-detectionrule-post-detectionrules.md - - name: Update - href: ../../api/security-detectionrule-update.md - - name: Delete - href: ../../api/security-detectionrule-delete.md - name: Discovered cloud apps (preview) items: - name: Overview diff --git a/api-reference/beta/toc/toc.mapping.json b/api-reference/beta/toc/toc.mapping.json index b82d108a053..adca6f99248 100644 --- a/api-reference/beta/toc/toc.mapping.json +++ b/api-reference/beta/toc/toc.mapping.json @@ -2897,8 +2897,7 @@ "securityAction", "secureScore", "secureScoreControlProfile", - "tiIndicator", - "microsoft.graph.security.detectionRule" + "tiIndicator" ], "childNodes": [ { @@ -2982,6 +2981,51 @@ "microsoft.graph.security.auditInfo" ] }, + { + "name": "Custom detection rules", + "resources": [ + "microsoft.graph.security.detectionRule" + ], + "complexTypes": [ + "microsoft.graph.security.detectionAction", + "microsoft.graph.security.alertTemplate", + "microsoft.graph.security.alertCustomDetails", + "microsoft.graph.security.ruleSchedule", + "microsoft.graph.security.queryCondition", + "microsoft.graph.security.mitreTactic", + "microsoft.graph.security.mitreTechnique", + "microsoft.graph.security.entityMappingConfiguration", + "microsoft.graph.security.entityMapping", + "microsoft.graph.security.accountEntityMapping", + "microsoft.graph.security.amazonResourceEntityMapping", + "microsoft.graph.security.azureResourceEntityMapping", + "microsoft.graph.security.cloudApplicationEntityMapping", + "microsoft.graph.security.dnsEntityMapping", + "microsoft.graph.security.fileEntityMapping", + "microsoft.graph.security.googleCloudResourceEntityMapping", + "microsoft.graph.security.hostEntityMapping", + "microsoft.graph.security.ipEntityMapping", + "microsoft.graph.security.mailboxEntityMapping", + "microsoft.graph.security.mailClusterEntityMapping", + "microsoft.graph.security.mailMessageEntityMapping", + "microsoft.graph.security.oauthApplicationEntityMapping", + "microsoft.graph.security.processEntityMapping", + "microsoft.graph.security.registryValueEntityMapping", + "microsoft.graph.security.securityGroupEntityMapping", + "microsoft.graph.security.urlEntityMapping", + "microsoft.graph.security.automatedActionSet", + "microsoft.graph.security.automatedAction", + "microsoft.graph.security.accountObjectIdAction", + "microsoft.graph.security.accountSidAction", + "microsoft.graph.security.deviceAction", + "microsoft.graph.security.isolateDeviceAction", + "microsoft.graph.security.emailAction", + "microsoft.graph.security.fileAction", + "microsoft.graph.security.stopAndQuarantineFileAction", + "microsoft.graph.security.responseAction", + "microsoft.graph.security.impactedAsset" + ] + }, { "name": "Data security and compliance", "resources": [ diff --git a/changelog/Microsoft.M365.Defender.json b/changelog/Microsoft.M365.Defender.json index 7ea69d0304b..257a6200490 100644 --- a/changelog/Microsoft.M365.Defender.json +++ b/changelog/Microsoft.M365.Defender.json @@ -1,6 +1,648 @@ { "changelog": [ { + "ChangeList": [ + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Enumeration", + "ChangedApiName": "detectionRuleStatus", + "ChangeType": "Addition", + "Description": "Added the **detectionRuleStatus** enumeration type.", + "Target": "detectionRuleStatus" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "accountObjectIdAction", + "ChangeType": "Addition", + "Description": "Added the [accountObjectIdAction](https://learn.microsoft.com/en-us/graph/api/resources/security-accountObjectIdAction?view=graph-rest-beta) resource.", + "Target": "accountObjectIdAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "accountSidAction", + "ChangeType": "Addition", + "Description": "Added the [accountSidAction](https://learn.microsoft.com/en-us/graph/api/resources/security-accountSidAction?view=graph-rest-beta) resource.", + "Target": "accountSidAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "alertCustomDetails", + "ChangeType": "Addition", + "Description": "Added the [alertCustomDetails](https://learn.microsoft.com/en-us/graph/api/resources/security-alertCustomDetails?view=graph-rest-beta) resource.", + "Target": "alertCustomDetails" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "alertTemplate", + "ChangeType": "Deletion", + "Description": "Removed the **alertTemplate** resource.", + "Target": "alertTemplate" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "allowFileResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [allowFileResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-allowFileResponseAction?view=graph-rest-beta) resource.", + "Target": "allowFileResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "automatedAction", + "ChangeType": "Addition", + "Description": "Added the [automatedAction](https://learn.microsoft.com/en-us/graph/api/resources/security-automatedAction?view=graph-rest-beta) resource.", + "Target": "automatedAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "automatedActionSet", + "ChangeType": "Addition", + "Description": "Added the [automatedActionSet](https://learn.microsoft.com/en-us/graph/api/resources/security-automatedActionSet?view=graph-rest-beta) resource.", + "Target": "automatedActionSet" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "blockFileResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [blockFileResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-blockFileResponseAction?view=graph-rest-beta) resource.", + "Target": "blockFileResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "collectInvestigationPackageResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [collectInvestigationPackageResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-collectInvestigationPackageResponseAction?view=graph-rest-beta) resource.", + "Target": "collectInvestigationPackageResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "detectionAction", + "ChangeType": "Deletion", + "Description": "Removed the **detectionAction** resource.", + "Target": "detectionAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "deviceAction", + "ChangeType": "Addition", + "Description": "Added the [deviceAction](https://learn.microsoft.com/en-us/graph/api/resources/security-deviceAction?view=graph-rest-beta) resource.", + "Target": "deviceAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "disableUserResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [disableUserResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-disableUserResponseAction?view=graph-rest-beta) resource.", + "Target": "disableUserResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "emailAction", + "ChangeType": "Addition", + "Description": "Added the [emailAction](https://learn.microsoft.com/en-us/graph/api/resources/security-emailAction?view=graph-rest-beta) resource.", + "Target": "emailAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "fileAction", + "ChangeType": "Addition", + "Description": "Added the [fileAction](https://learn.microsoft.com/en-us/graph/api/resources/security-fileAction?view=graph-rest-beta) resource.", + "Target": "fileAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "forceUserPasswordResetResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [forceUserPasswordResetResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-forceUserPasswordResetResponseAction?view=graph-rest-beta) resource.", + "Target": "forceUserPasswordResetResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "hardDeleteResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [hardDeleteResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-hardDeleteResponseAction?view=graph-rest-beta) resource.", + "Target": "hardDeleteResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "impactedAsset", + "ChangeType": "Deprecation", + "Description": "Deprecated the [impactedAsset](https://learn.microsoft.com/en-us/graph/api/resources/security-impactedAsset?view=graph-rest-beta) resource.", + "Target": "impactedAsset" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "impactedDeviceAsset", + "ChangeType": "Deprecation", + "Description": "Deprecated the [impactedDeviceAsset](https://learn.microsoft.com/en-us/graph/api/resources/security-impactedDeviceAsset?view=graph-rest-beta) resource.", + "Target": "impactedDeviceAsset" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "impactedMailboxAsset", + "ChangeType": "Deprecation", + "Description": "Deprecated the [impactedMailboxAsset](https://learn.microsoft.com/en-us/graph/api/resources/security-impactedMailboxAsset?view=graph-rest-beta) resource.", + "Target": "impactedMailboxAsset" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "impactedUserAsset", + "ChangeType": "Deprecation", + "Description": "Deprecated the [impactedUserAsset](https://learn.microsoft.com/en-us/graph/api/resources/security-impactedUserAsset?view=graph-rest-beta) resource.", + "Target": "impactedUserAsset" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "initiateInvestigationResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [initiateInvestigationResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-initiateInvestigationResponseAction?view=graph-rest-beta) resource.", + "Target": "initiateInvestigationResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "isolateDeviceAction", + "ChangeType": "Addition", + "Description": "Added the [isolateDeviceAction](https://learn.microsoft.com/en-us/graph/api/resources/security-isolateDeviceAction?view=graph-rest-beta) resource.", + "Target": "isolateDeviceAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "isolateDeviceResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [isolateDeviceResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-isolateDeviceResponseAction?view=graph-rest-beta) resource.", + "Target": "isolateDeviceResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "markUserAsCompromisedResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [markUserAsCompromisedResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-markUserAsCompromisedResponseAction?view=graph-rest-beta) resource.", + "Target": "markUserAsCompromisedResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "mitreTactic", + "ChangeType": "Addition", + "Description": "Added the [mitreTactic](https://learn.microsoft.com/en-us/graph/api/resources/security-mitreTactic?view=graph-rest-beta) resource.", + "Target": "mitreTactic" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "mitreTechnique", + "ChangeType": "Addition", + "Description": "Added the [mitreTechnique](https://learn.microsoft.com/en-us/graph/api/resources/security-mitreTechnique?view=graph-rest-beta) resource.", + "Target": "mitreTechnique" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "moveToDeletedItemsResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [moveToDeletedItemsResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-moveToDeletedItemsResponseAction?view=graph-rest-beta) resource.", + "Target": "moveToDeletedItemsResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "moveToInboxResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [moveToInboxResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-moveToInboxResponseAction?view=graph-rest-beta) resource.", + "Target": "moveToInboxResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "moveToJunkResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [moveToJunkResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-moveToJunkResponseAction?view=graph-rest-beta) resource.", + "Target": "moveToJunkResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Property", + "ChangedApiName": "deviceGroups", + "ChangeType": "Addition", + "Description": "Added the **deviceGroups** property to the [organizationalScope](https://learn.microsoft.com/en-us/graph/api/resources/security-organizationalScope?view=graph-rest-beta) resource.", + "Target": "organizationalScope" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "organizationalScope", + "ChangeType": "Deprecation", + "Description": "Deprecated the [organizationalScope](https://learn.microsoft.com/en-us/graph/api/resources/security-organizationalScope?view=graph-rest-beta) resource.", + "Target": "organizationalScope" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "organizationalScope", + "ChangeType": "Deprecation", + "Description": "Deprecated the [organizationalScope](https://learn.microsoft.com/en-us/graph/api/resources/security-organizationalScope?view=graph-rest-beta) resource.", + "Target": "organizationalScope" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "queryCondition", + "ChangeType": "Deprecation", + "Description": "Deprecated the [queryCondition](https://learn.microsoft.com/en-us/graph/api/resources/security-queryCondition?view=graph-rest-beta) resource.", + "Target": "queryCondition" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "responseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [responseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-responseAction?view=graph-rest-beta) resource.", + "Target": "responseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "restrictAppExecutionResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [restrictAppExecutionResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-restrictAppExecutionResponseAction?view=graph-rest-beta) resource.", + "Target": "restrictAppExecutionResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Property", + "ChangedApiName": "frequency", + "ChangeType": "Addition", + "Description": "Added the **frequency** property to the [ruleSchedule](https://learn.microsoft.com/en-us/graph/api/resources/security-ruleSchedule?view=graph-rest-beta) resource.", + "Target": "ruleSchedule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "ruleSchedule", + "ChangeType": "Deprecation", + "Description": "Deprecated the [ruleSchedule](https://learn.microsoft.com/en-us/graph/api/resources/security-ruleSchedule?view=graph-rest-beta) resource.", + "Target": "ruleSchedule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "ruleSchedule", + "ChangeType": "Deprecation", + "Description": "Deprecated the [ruleSchedule](https://learn.microsoft.com/en-us/graph/api/resources/security-ruleSchedule?view=graph-rest-beta) resource.", + "Target": "ruleSchedule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "runAntivirusScanResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [runAntivirusScanResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-runAntivirusScanResponseAction?view=graph-rest-beta) resource.", + "Target": "runAntivirusScanResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "runDetails", + "ChangeType": "Deprecation", + "Description": "Deprecated the [runDetails](https://learn.microsoft.com/en-us/graph/api/resources/security-runDetails?view=graph-rest-beta) resource.", + "Target": "runDetails" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "softDeleteResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [softDeleteResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-softDeleteResponseAction?view=graph-rest-beta) resource.", + "Target": "softDeleteResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "stopAndQuarantineFileAction", + "ChangeType": "Addition", + "Description": "Added the [stopAndQuarantineFileAction](https://learn.microsoft.com/en-us/graph/api/resources/security-stopAndQuarantineFileAction?view=graph-rest-beta) resource.", + "Target": "stopAndQuarantineFileAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "stopAndQuarantineFileResponseAction", + "ChangeType": "Deprecation", + "Description": "Deprecated the [stopAndQuarantineFileResponseAction](https://learn.microsoft.com/en-us/graph/api/resources/security-stopAndQuarantineFileResponseAction?view=graph-rest-beta) resource.", + "Target": "stopAndQuarantineFileResponseAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "accountEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [accountEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-accountEntityMapping?view=graph-rest-beta) resource.", + "Target": "accountEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "alertTemplate", + "ChangeType": "Addition", + "Description": "Added the [alertTemplate](https://learn.microsoft.com/en-us/graph/api/resources/security-alertTemplate?view=graph-rest-beta) resource.", + "Target": "alertTemplate" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "amazonResourceEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [amazonResourceEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-amazonResourceEntityMapping?view=graph-rest-beta) resource.", + "Target": "amazonResourceEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "azureResourceEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [azureResourceEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-azureResourceEntityMapping?view=graph-rest-beta) resource.", + "Target": "azureResourceEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "cloudApplicationEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [cloudApplicationEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-cloudApplicationEntityMapping?view=graph-rest-beta) resource.", + "Target": "cloudApplicationEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "detectionAction", + "ChangeType": "Addition", + "Description": "Added the [detectionAction](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionAction?view=graph-rest-beta) resource.", + "Target": "detectionAction" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Property", + "ChangedApiName": "createdBy", + "ChangeType": "Addition", + "Description": "Added the **createdBy** property to the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Property", + "ChangedApiName": "createdDateTime", + "ChangeType": "Addition", + "Description": "Added the **createdDateTime** property to the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Property", + "ChangedApiName": "description", + "ChangeType": "Addition", + "Description": "Added the **description** property to the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Property", + "ChangedApiName": "detectionAction", + "ChangeType": "Deletion", + "Description": "Removed the **detectionAction** property from the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "detectionRule", + "ChangeType": "Deprecation", + "Description": "Deprecated the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Property", + "ChangedApiName": "displayName", + "ChangeType": "Addition", + "Description": "Added the **displayName** property to the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Property", + "ChangedApiName": "id", + "ChangeType": "Addition", + "Description": "Added the **id** property to the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Property", + "ChangedApiName": "isEnabled", + "ChangeType": "Addition", + "Description": "Added the **isEnabled** property to the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Property", + "ChangedApiName": "lastModifiedBy", + "ChangeType": "Addition", + "Description": "Added the **lastModifiedBy** property to the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Property", + "ChangedApiName": "lastModifiedDateTime", + "ChangeType": "Addition", + "Description": "Added the **lastModifiedDateTime** property to the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "detectionRule", + "ChangeType": "Deprecation", + "Description": "Deprecated the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Property", + "ChangedApiName": "status", + "ChangeType": "Addition", + "Description": "Added the **status** property to the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Relationship", + "ChangedApiName": "detectionAction", + "ChangeType": "Addition", + "Description": "Added the **detectionAction** relationship to the [detectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-detectionRule?view=graph-rest-beta) resource.", + "Target": "detectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "dnsEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [dnsEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-dnsEntityMapping?view=graph-rest-beta) resource.", + "Target": "dnsEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "entityMapping", + "ChangeType": "Addition", + "Description": "Added the [entityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-entityMapping?view=graph-rest-beta) resource.", + "Target": "entityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "entityMappingConfiguration", + "ChangeType": "Addition", + "Description": "Added the [entityMappingConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/security-entityMappingConfiguration?view=graph-rest-beta) resource.", + "Target": "entityMappingConfiguration" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "fileEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [fileEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-fileEntityMapping?view=graph-rest-beta) resource.", + "Target": "fileEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "googleCloudResourceEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [googleCloudResourceEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-googleCloudResourceEntityMapping?view=graph-rest-beta) resource.", + "Target": "googleCloudResourceEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "hostEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [hostEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-hostEntityMapping?view=graph-rest-beta) resource.", + "Target": "hostEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "ipEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [ipEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-ipEntityMapping?view=graph-rest-beta) resource.", + "Target": "ipEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "mailboxEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [mailboxEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-mailboxEntityMapping?view=graph-rest-beta) resource.", + "Target": "mailboxEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "mailClusterEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [mailClusterEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-mailClusterEntityMapping?view=graph-rest-beta) resource.", + "Target": "mailClusterEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "mailMessageEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [mailMessageEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-mailMessageEntityMapping?view=graph-rest-beta) resource.", + "Target": "mailMessageEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "oAuthApplicationEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [oAuthApplicationEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-oAuthApplicationEntityMapping?view=graph-rest-beta) resource.", + "Target": "oAuthApplicationEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "processEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [processEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-processEntityMapping?view=graph-rest-beta) resource.", + "Target": "processEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "protectionRule", + "ChangeType": "Deletion", + "Description": "Removed the **protectionRule** resource.", + "Target": "protectionRule" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "registryValueEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [registryValueEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-registryValueEntityMapping?view=graph-rest-beta) resource.", + "Target": "registryValueEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "securityGroupEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [securityGroupEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-securityGroupEntityMapping?view=graph-rest-beta) resource.", + "Target": "securityGroupEntityMapping" + }, + { + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "ApiChange": "Resource", + "ChangedApiName": "urlEntityMapping", + "ChangeType": "Addition", + "Description": "Added the [urlEntityMapping](https://learn.microsoft.com/en-us/graph/api/resources/security-urlEntityMapping?view=graph-rest-beta) resource.", + "Target": "urlEntityMapping" + } + ], + "Id": "d00fba97-7866-4478-ad29-386b813a4125", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-17T09:12:53.9791702Z", + "WorkloadArea": "Security", + "SubArea": "" + }, + { "ChangeList": [ { "Id": "41ef4b19-6726-4902-bd04-b860fdfee83a", diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index 3aa3fb67cd7..f4603e16187 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -105,6 +105,7 @@ Personal distribution lists enable users to group email recipients together and - Introduced [sensor migration](/graph/api/resources/security-sensormigration?view=graph-rest-beta&preserve-view=true) capabilities to migrate eligible Microsoft Defender for Identity sensors. - Use the [Create manualAlert](/graph/api/security-alert-post-manualalert?view=graph-rest-beta&preserve-view=true) method to create a manual security alert with specified entities and metadata. The new [manualAlert](/graph/api/resources/security-manualalert?view=graph-rest-beta&preserve-view=true) resource type derives from [alert](/graph/api/resources/security-alert?view=graph-rest-beta&preserve-view=true) and uses the [entityDefinitionInput](/graph/api/resources/security-entitydefinitioninput?view=graph-rest-beta&preserve-view=true) complex type to specify associated entities. - Added the **tenantId** property to the [userAccount](/graph/api/resources/security-useraccount?view=graph-rest-beta&preserve-view=true) resource to provide the Entra home tenant ID for the compromised user account indicated in a [security alert](/graph/api/resources/security-alert?view=graph-rest-beta&preserve-view=true) where the alert evidence is related to a [processEvidence](/graph/api/resources/security-processevidence?view=graph-rest-beta&preserve-view=true), [userEvidence](/graph/api/resources/security-userevidence?view=graph-rest-beta&preserve-view=true), or [mailboxEvidence](/graph/api/resources/security-mailboxevidence?view=graph-rest-beta&preserve-view=true). +- Updated the [custom detection rules API](/graph/api/resources/security-detectionrule?view=graph-rest-beta&preserve-view=true) in Microsoft 365 Defender with new capabilities, including: Infrastructure-as-code (IaC) support through user-defined IDs, custom run frequency, flexible entity mapping, custom alert details, and configurable response actions. ### Sites and lists From 814fa7f6fa376ab81d3f456de4b3811d97be7659 Mon Sep 17 00:00:00 2001 From: Hiro7 <75809971+garchiro7@users.noreply.github.com> Date: Fri, 19 Jun 2026 12:59:02 -0600 Subject: [PATCH 13/52] enable isRegistrationEnabled into virtual events (#28091) * enable isRegistrationEnabled into virtual events * updtae whats'new entry * Update changelog/Microsoft.Skype.Calling.json Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update webinar creation snippet settings Removed isRegistrationEnabled setting from webinar creation snippet * Remove isRegistrationEnabled from settings * Fix the isRegistrationEnabled at virtual event level * Add whats new entry * Update api-reference/beta/api/virtualeventtownhall-update.md Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * Update api-reference/beta/api/virtualeventsroot-post-townhalls.md Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * Update api-reference/beta/api/virtualeventsroot-post-webinars.md Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * Update changelog/Microsoft.Skype.Calling.json Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * Update api-reference/beta/resources/virtualeventwebinar.md Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * Update concepts/whats-new-overview.md Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * Update virtualeventtownhall.md * Update virtualeventtownhall.md * Update virtualeventtownhall.md * Update virtualeventwebinar.md * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update virtualeventtownhall-update.md * Update virtualeventsroot-post-townhalls.md * Update virtualeventsroot-post-webinars.md * Apply suggestion from @MSFT-Andrea * Update Microsoft.Skype.Calling.json * Update docs with the new name isRegistrationRequired * missing character , * Update note * Update changelog/Microsoft.Skype.Calling.json --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea --- .../api/virtualeventsroot-list-townhalls.md | 1 + .../api/virtualeventsroot-list-webinars.md | 1 + .../api/virtualeventsroot-post-townhalls.md | 10 ++---- .../api/virtualeventsroot-post-webinars.md | 10 ++---- .../beta/api/virtualeventtownhall-get.md | 1 + ...virtualeventtownhall-getbyuseridandrole.md | 1 + .../api/virtualeventtownhall-getbyuserrole.md | 1 + .../beta/api/virtualeventtownhall-update.md | 4 ++- .../beta/api/virtualeventwebinar-get.md | 1 + .../virtualeventwebinar-getbyuseridandrole.md | 1 + .../api/virtualeventwebinar-getbyuserrole.md | 1 + .../beta/api/virtualeventwebinar-update.md | 2 ++ ...irtualeventtownhall-javascript-snippets.md | 2 +- ...virtualeventwebinar-javascript-snippets.md | 2 +- api-reference/beta/resources/virtualevent.md | 10 ++++++ .../beta/resources/virtualeventtownhall.md | 8 ++++- .../beta/resources/virtualeventwebinar.md | 2 ++ changelog/Microsoft.Skype.Calling.json | 33 +++++++++++++++++++ concepts/whats-new-overview.md | 6 ++++ 19 files changed, 79 insertions(+), 18 deletions(-) diff --git a/api-reference/beta/api/virtualeventsroot-list-townhalls.md b/api-reference/beta/api/virtualeventsroot-list-townhalls.md index fa1db63d721..c6933dce2d3 100644 --- a/api-reference/beta/api/virtualeventsroot-list-townhalls.md +++ b/api-reference/beta/api/virtualeventsroot-list-townhalls.md @@ -128,6 +128,7 @@ Content-Type: application/json "tenantId": "77229959-e479-4a73-b6e0-ddac27be315c" } ], + "isRegistrationRequired": false, "settings": { "isAttendeeEmailNotificationEnabled": false }, diff --git a/api-reference/beta/api/virtualeventsroot-list-webinars.md b/api-reference/beta/api/virtualeventsroot-list-webinars.md index 6e6e2a805a2..927ec702b78 100644 --- a/api-reference/beta/api/virtualeventsroot-list-webinars.md +++ b/api-reference/beta/api/virtualeventsroot-list-webinars.md @@ -155,6 +155,7 @@ Content-Type: application/json "tenantId": "77229959-e479-4a73-b6e0-ddac27be315c" } ], + "isRegistrationRequired": false, "settings": { "isAttendeeEmailNotificationEnabled": false }, diff --git a/api-reference/beta/api/virtualeventsroot-post-townhalls.md b/api-reference/beta/api/virtualeventsroot-post-townhalls.md index 92eaec2c80b..201882d4987 100644 --- a/api-reference/beta/api/virtualeventsroot-post-townhalls.md +++ b/api-reference/beta/api/virtualeventsroot-post-townhalls.md @@ -59,6 +59,7 @@ You can specify the following properties when you create a [virtualEventTownhall | endDateTime | [dateTimeTimeZone](../resources/datetimetimezone.md) | The date and time when the town hall ends. | | invitedAttendees | [identity](../resources/identity.md) collection | The identities of the attendees invited to the town hall. The supported identities are: [communicationsGuestIdentity](../resources/communicationsguestidentity.md) and [communicationsUserIdentity](../resources/communicationsuseridentity.md). | | isInviteOnly | Boolean | Indicates whether the town hall is only open to invited people and groups within your organization. The **isInviteOnly** property can only be `true` if the value of the **audience** property is set to `organization`. | +| isRegistrationRequired |Boolean| Indicates if the attendees must complete the registration flow before they can attend. Inherited from [virtualEvent](../resources/virtualevent.md). Optional.| | settings | [virtualEventSettings](../resources/virtualeventsettings.md) | The town hall settings. | | startDateTime | [dateTimeTimeZone](../resources/datetimetimezone.md) | The date and time when the town hall starts. | @@ -71,7 +72,6 @@ If successful, this method returns a `201 Created` response code and a [virtualE ### Request The following example shows a request. -# [HTTP](#tab/http) +[!INCLUDE [permissions-table](../includes/permissions/crosstenantmigrationjob-migrate-permissions.md)] + +[!INCLUDE [access-requirements](../includes/rbac-for-apis/rbac-crosstenantmigration-apis.md)] + +## HTTP request + + +``` http +POST /solutions/migrations/crossTenantMigrationJobs/{crossTenantMigrationJobId}/migrate +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this action returns a `200 OK` response code and a [crossTenantMigrationJob](../resources/crosstenantmigrationjob.md) in the response body. + +This method can also return the following error codes in the response body. + +| Status code | Description | +|:---|:---| +| `404 Not Found` | The specified **crossTenantMigrationJob** wasn't found. | +| `409 Conflict` | The job isn't in a valid status for migration. The job must be in `validatePassed`, `failed`, or `completedWithErrors` status. | +| `409 Conflict` | The validation results expired (more than seven days ago). Revalidate the job before you call the **migrate** API. | + +## Examples + +### Request + +The following example shows a request. + +``` http +POST https://graph.microsoft.com/beta/solutions/migrations/crossTenantMigrationJobs/add14989-2b21-4001-81bd-a18b0bac1dea/migrate +``` + +### Response + +The following example shows the response. +>**Note:** The response object shown here might be shortened for readability. + +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/beta/$metadata#microsoft.graph.crossTenantMigrationJob", + "id": "add14989-2b21-4001-81bd-a18b0bac1dea", + "displayName": "Contoso_migration_job", + "status": "processing", + "jobType": "migrate", + "message": "Migration job has been submitted successfully", + "completeAfterDateTime": "2026-05-22T17:14:52Z", + "sourceTenantId": "12345678-1234-1234-1234-123456789012", + "targetTenantId": "87654321-4321-4321-4321-210987654321", + "resourceType": "users", + "resources": [], + "workloads": [ + "Teams", + "Exchange", + "ODSP" + ], + "createdBy": "admin@fabrikam.onmicrosoft.com", + "createdDateTime": "2026-05-04T20:55:10.5427196Z", + "lastUpdatedDateTime": "2026-05-04T20:55:10Z", + "exchangeSettings": { + "targetDeliveryDomain": "fabrikam.com", + "sourceEndpoint": "EXOHandler" + } +} +``` diff --git a/api-reference/beta/api/crosstenantmigrationjob-validate.md b/api-reference/beta/api/crosstenantmigrationjob-validate.md index 92b9f6d8c0d..ebf5aa2d4d6 100644 --- a/api-reference/beta/api/crosstenantmigrationjob-validate.md +++ b/api-reference/beta/api/crosstenantmigrationjob-validate.md @@ -1,8 +1,8 @@ --- title: "crossTenantMigrationJob: validate" -description: "Validate the configuration of a crossTenantMigrationJob" +description: "Validate the configuration of a crossTenantMigrationJob asynchronously." author: "danguilliams" -ms.date: 10/30/2025 +ms.date: 05/05/2026 ms.localizationpriority: medium ms.subservice: "t2t-migration" doc_type: apiPageType @@ -14,9 +14,9 @@ Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Validate the configuration of a [crossTenantMigrationJob](../resources/crosstenantmigrationjob.md). This function doesn't migrate any content, but goes through validation for the specified workloads to find any errors or misconfigurations that would affect an actual migration job. +Validate the configuration of a [cross-tenant migration job](../resources/crosstenantmigrationjob.md) asynchronously. This action doesn't migrate any content, but goes through validation for the specified workloads to find any errors or misconfigurations that affect an actual migration job. The job must be in a `submitted` or `validateFailed` status before you can call this action. -[!INCLUDE [national-cloud-support](../../includes/global-only.md)] +This action is asynchronous. After you call the **validate** API, poll the [Get crossTenantMigrationJob](../api/crosstenantmigrationjob-get.md) endpoint to check for a terminal status of `validatePassed` or `validateFailed`. ## Permissions @@ -38,7 +38,7 @@ Choose the permission or permissions marked as least privileged for this API. Us } --> ``` http -POST /solutions/migrations/crossTenantMigrationJobs/validate +POST /solutions/migrations/crossTenantMigrationJobs/{crossTenantMigrationJobId}/validate ``` ## Request headers @@ -46,88 +46,36 @@ POST /solutions/migrations/crossTenantMigrationJobs/validate |Name|Description| |:---|:---| |Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| -|Content-Type|application/json. Required.| ## Request body -In the request body, supply a JSON representation of the parameters. - -The following table lists the parameters that are required when you call this action. - -|Parameter|Type|Description| -|:---|:---|:---| -|displayName|String|Name of the crossTenantMigrationJob to validate| -|completeAfterDateTime|String|When the CrossTenantMigrationJob| -|sourceTenantId|String|Source tenant for the CrossTenantMigrationJob| -|exchangeSettings|[exchangeOnlineCrossTenantMigrationSettings](../resources/exchangeonlinecrosstenantmigrationsettings.md)|Exchange migration settings for the CrossTenantMigrationJob| -|workloads|String collection|Workloads to validate for the CrossTenantMigrationJob | -|resourceType|String|Type of resource in the CrossTenantMigrationJob.| -|resources|String collection|Identifiers of the users in the CrossTenantMigrationJob to validate| +Don't supply a request body for this method. +## Response +If successful, this action returns a `200 OK` response code and a [crossTenantMigrationJob](../resources/crosstenantmigrationjob.md) in the response body. -## Response +This method can also return the following error codes in the response body. -If successful, this action returns a `201 Created` response code and a [crossTenantMigrationJob](../resources/crosstenantmigrationjob.md) in the response body. +| Status code | Description | +|:---|:---| +| `404 Not Found` | The specified **crossTenantMigrationJob** wasn't found. | +| `409 Conflict` | The job isn't in a valid status for validation. The job must be in `submitted` or `validateFailed` status. | ## Examples ### Request The following example shows a request. -# [HTTP](#tab/http) ``` http -POST https://graph.microsoft.com/beta/solutions/migrations/crossTenantMigrationJobs/validate -Content-Type: application/json - -{ - "displayName": "Contoso_migration_validation_job", - "completeAfterDateTime": "2025-05-22T17:14:52Z", - "sourceTenantId": "12345678-1234-1234-1234-123456789012", - "exchangeSettings": { - "targetDeliveryDomain": "fabrikam.com", - "sourceEndpoint": "EXOHandler" - }, - "resources": [ - "b5b8bc4f-0e36-4ad3-8ddf-248b68260b89", - "ac87d040-a081-426c-a73b-81133f458a29" - ], - "workloads": [ "Teams" ], - "resourceType": "Users" -} +POST https://graph.microsoft.com/beta/solutions/migrations/crossTenantMigrationJobs/add14989-2b21-4001-81bd-a18b0bac1dea/validate ``` -# [C#](#tab/csharp) -[!INCLUDE [sample-code](../includes/snippets/csharp/crosstenantmigrationjobthisvalidate-csharp-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Go](#tab/go) -[!INCLUDE [sample-code](../includes/snippets/go/crosstenantmigrationjobthisvalidate-go-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Java](#tab/java) -[!INCLUDE [sample-code](../includes/snippets/java/crosstenantmigrationjobthisvalidate-java-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [JavaScript](#tab/javascript) -[!INCLUDE [sample-code](../includes/snippets/javascript/crosstenantmigrationjobthisvalidate-javascript-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [PHP](#tab/php) -[!INCLUDE [sample-code](../includes/snippets/php/crosstenantmigrationjobthisvalidate-php-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - -# [Python](#tab/python) -[!INCLUDE [sample-code](../includes/snippets/python/crosstenantmigrationjobthisvalidate-python-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] - ---- - ### Response The following example shows the response. @@ -139,31 +87,32 @@ The following example shows the response. } --> ``` http -HTTP/1.1 201 Created +HTTP/1.1 200 OK Content-Type: application/json { "@odata.context": "https://graph.microsoft.com/beta/$metadata#microsoft.graph.crossTenantMigrationJob", - "id": "0d1d9dbb-7676-4731-a601-5e8406fd7bcf", - "displayName": "Contoso_migration_validation_job", + "id": "add14989-2b21-4001-81bd-a18b0bac1dea", + "displayName": "Contoso_migration_job", "status": "validateSubmitted", "jobType": "validate", "message": "Validation job has been submitted successfully", - "completeAfterDateTime": "2025-05-22T17:14:52Z", + "completeAfterDateTime": "2026-05-22T17:14:52Z", "sourceTenantId": "12345678-1234-1234-1234-123456789012", "targetTenantId": "87654321-4321-4321-4321-210987654321", "resourceType": "users", "resources": [], "workloads": [ - "teams" + "Teams", + "Exchange", + "ODSP" ], "createdBy": "admin@fabrikam.onmicrosoft.com", - "createdDateTime": "2025-11-07T00:19:21.4810014Z", - "lastUpdatedDateTime": "2025-11-07T00:19:21Z", + "createdDateTime": "2026-05-04T20:55:10.5427196Z", + "lastUpdatedDateTime": "2026-05-04T20:55:10Z", "exchangeSettings": { "targetDeliveryDomain": "fabrikam.com", "sourceEndpoint": "EXOHandler" } } ``` - diff --git a/api-reference/beta/api/migrationsroot-post-crosstenantmigrationjobs.md b/api-reference/beta/api/migrationsroot-post-crosstenantmigrationjobs.md index 5938c4a1fbd..544a6f83b8b 100644 --- a/api-reference/beta/api/migrationsroot-post-crosstenantmigrationjobs.md +++ b/api-reference/beta/api/migrationsroot-post-crosstenantmigrationjobs.md @@ -14,7 +14,8 @@ Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Create a new [crossTenantMigrationJob](../resources/crosstenantmigrationjob.md). +Create a new [crossTenantMigrationJob](../resources/crosstenantmigrationjob.md). A job defines the migration batch but doesn't start validation or migration. After you create the job, call [validate](../api/crosstenantmigrationjob-validate.md) to verify tenant and resource configuration, then call [migrate](../api/crosstenantmigrationjob-migrate.md) to begin the actual migration. + [!INCLUDE [national-cloud-support](../../includes/global-only.md)] @@ -62,7 +63,7 @@ You can specify the following properties when creating a **crossTenantMigrationJ |exchangeSettings|[exchangeOnlineCrossTenantMigrationSettings](../resources/exchangeonlinecrosstenantmigrationsettings.md)|Settings for Exchange Online migrations. Optional, but required if Exchange is a specified workload.| |workloads|String collection|Workloads to migrate on the resources. Optional. If excluded, all available workloads are included in the migration.| |resourceType|String|Type of resources to migrate. Only `Users` is supported at this time. Required.| -|resources|String collection|Object IDs (GUID) of the resources to migrate. Limit of 2,000 resources per [crossTenantMigrationJob](../resources/crosstenantmigrationjob.md) Required.| +|resources|String collection|Object IDs (GUID) of the resources to migrate. Limit of 2,000 resources per [crossTenantMigrationJob](../resources/crosstenantmigrationjob.md). Required.| @@ -155,18 +156,24 @@ Content-Type: application/json "@odata.context": "https://graph.microsoft.com/beta/$metadata#solutions/migrations/crossTenantMigrationJobs/$entity", "id": "add14989-2b21-4001-81bd-a18b0bac1dea", "displayName": "Contoso_migration_job", - "jobType" : "migrate", - "status": "Submitted", + "jobType": "validate", + "status": "submitted", "message": "", "completeAfterDateTime": "2023-12-17T20:38:04.101Z", + "targetTenantId": "87654321-4321-4321-4321-210987654321", "sourceTenantId": "12345678-1234-1234-1234-123456789012", "exchangeSettings": { - "targetDeliveryDomain": "fabirkam.onmicrosoft.com", + "targetDeliveryDomain": "fabrikam.onmicrosoft.com", "sourceEndpoint": "sampleEndpointText" }, - "resourceType":"Users", + "resources": [ + "4dd550d9-9ea2-4e71-a16b-60b1d1c4f506", + "63f15b55-f61a-49cb-a599-2e3d233afb2c", + "41d94bac-3a53-47d6-a89e-583830104e15" + ], + "resourceType": "Users", "workloads": ["Teams", "Exchange", "ODSP"], - "createdBy": "66055c84-3b6e-4d14-9b9e-4c7f4105962e", + "createdBy": "admin@fabrikam.onmicrosoft.com", "createdDateTime": "2025-11-14T20:55:10.5427196Z", "lastUpdatedDateTime": "2025-11-14T20:55:10.5427196Z" } diff --git a/api-reference/beta/includes/permissions/crosstenantmigrationjob-migrate-permissions.md b/api-reference/beta/includes/permissions/crosstenantmigrationjob-migrate-permissions.md new file mode 100644 index 00000000000..3d624b2ee2d --- /dev/null +++ b/api-reference/beta/includes/permissions/crosstenantmigrationjob-migrate-permissions.md @@ -0,0 +1,12 @@ +--- +description: Automatically generated file. DO NOT MODIFY +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permission|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|Not supported.|Not supported.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|Not supported.|Not supported.| + diff --git a/api-reference/beta/includes/rbac-for-apis/rbac-crosstenantmigration-apis.md b/api-reference/beta/includes/rbac-for-apis/rbac-crosstenantmigration-apis.md index ab25c6d7b8d..2b9db6138bc 100644 --- a/api-reference/beta/includes/rbac-for-apis/rbac-crosstenantmigration-apis.md +++ b/api-reference/beta/includes/rbac-for-apis/rbac-crosstenantmigration-apis.md @@ -4,5 +4,7 @@ ms.topic: include --- > [!IMPORTANT] -> -> For delegated access using work or school accounts, the admin must be assigned a supported [Microsoft Entra role](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json) or a custom role that grants the permissions required for this operation. *Global Administrator* is the only role supported for this operation. \ No newline at end of file +> +> For delegated access using work or school accounts, the signed-in user must be assigned a supported [Microsoft Entra role](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json) or a custom role that grants the permissions required for this operation. This operation supports the following built-in roles, which provide only the least privilege necessary: +> - Microsoft 365 Migration Administrator +> - Global Administrator \ No newline at end of file diff --git a/api-reference/beta/resources/crosstenantmigrationjob.md b/api-reference/beta/resources/crosstenantmigrationjob.md index fc8c4d783c0..66b8eb025f5 100644 --- a/api-reference/beta/resources/crosstenantmigrationjob.md +++ b/api-reference/beta/resources/crosstenantmigrationjob.md @@ -1,6 +1,6 @@ --- title: "crossTenantMigrationJob resource type" -description: "A Cross Tenant Migration Job" +description: "Represents a cross-tenant migration batch job that migrates user data from a source tenant to a target tenant." author: "danguilliams" ms.date: 10/30/2025 ms.localizationpriority: medium @@ -14,8 +14,7 @@ Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -A Cross Tenant Migration Job. Represents a long running job that migrates user data from a source tenant to a target tenant. - +Represents a [cross-tenant migration](../resources/crosstenantmigration.md) batch job that migrates user data from a source tenant to a target tenant. After you [create](../api/migrationsroot-post-crosstenantmigrationjobs.md) a job, call [validate](../api/crosstenantmigrationjob-validate.md) to verify tenant and resource configuration, then call [migrate](../api/crosstenantmigrationjob-migrate.md) to begin the actual migration. Inherits from [entity](../resources/entity.md). @@ -24,37 +23,38 @@ Inherits from [entity](../resources/entity.md). |Method|Return type|Description| |:---|:---|:---| |[List](../api/migrationsroot-list-crosstenantmigrationjobs.md)|[crossTenantMigrationJob](../resources/crosstenantmigrationjob.md) collection|Get a list of the crossTenantMigrationJob objects and their properties.| -|[Create](../api/migrationsroot-post-crosstenantmigrationjobs.md)|[crossTenantMigrationJob](../resources/crosstenantmigrationjob.md)|Create a new crossTenantMigrationJob object| -|[Get](../api/crosstenantmigrationjob-get.md)|[crossTenantMigrationJob](../resources/crosstenantmigrationjob.md)|Read the properties and relationships of [crossTenantMigrationJob](../resources/crosstenantmigrationjob.md) object.| -|[Update](../api/crosstenantmigrationjob-update.md)|[crossTenantMigrationJob](../resources/crosstenantmigrationjob.md)|Update the properties of a crossTenantMigrationJob object| +|[Create](../api/migrationsroot-post-crosstenantmigrationjobs.md)|[crossTenantMigrationJob](../resources/crosstenantmigrationjob.md)|Create a new [crossTenantMigrationJob](../resources/crosstenantmigrationjob.md) object.| +|[Get](../api/crosstenantmigrationjob-get.md)|[crossTenantMigrationJob](../resources/crosstenantmigrationjob.md)|Read the properties and relationships of a [crossTenantMigrationJob](../resources/crosstenantmigrationjob.md) object.| +|[Update](../api/crosstenantmigrationjob-update.md)|[crossTenantMigrationJob](../resources/crosstenantmigrationjob.md)|Update the properties of a [crossTenantMigrationJob](../resources/crosstenantmigrationjob.md) object.| |[Delete](../api/migrationsroot-delete-crosstenantmigrationjobs.md)|None|Delete a crossTenantMigrationJob object.| -|[cancel](../api/crosstenantmigrationjob-cancel.md)|[crossTenantMigrationCancelResponse](../resources/crosstenantmigrationcancelresponse.md)|Cancels a Cross tenant Migration Job.| -|[validate](../api/crosstenantmigrationjob-validate.md)|[crossTenantMigrationJob](../resources/crosstenantmigrationjob.md)|Validate a Cross Tenant Migration Job| -|[List users](../api/crosstenantmigrationjob-list-users.md)|[crossTenantMigrationTask](../resources/crosstenantmigrationtask.md) collection|List the users being migrated and the status of their migration| +|[cancel](../api/crosstenantmigrationjob-cancel.md)|[crossTenantMigrationCancelResponse](../resources/crosstenantmigrationcancelresponse.md)|Cancel a [cross-tenant migration job](../resources/crosstenantmigrationjob.md).| +|[migrate](../api/crosstenantmigrationjob-migrate.md)|[crossTenantMigrationJob](../resources/crosstenantmigrationjob.md)|Migrate a [cross-tenant migration job](../resources/crosstenantmigrationjob.md) asynchronously.| +|[validate](../api/crosstenantmigrationjob-validate.md)|[crossTenantMigrationJob](../resources/crosstenantmigrationjob.md)|Validate a [cross-tenant migration job](../resources/crosstenantmigrationjob.md) asynchronously.| +|[List users](../api/crosstenantmigrationjob-list-users.md)|[crossTenantMigrationTask](../resources/crosstenantmigrationtask.md) collection|List the users in the migration and the status of their migration.| ## Properties |Property|Type|Description| |:---|:---|:---| -|completeAfterDateTime|DateTimeOffset|DateTime after which the migration should be performed| -|createdBy|String|ID of the user that created the job| -|createdDateTime|DateTimeOffset|When the job what created| -|displayName|String|Display name of the job. Must be unique per tenant| -|exchangeSettings|[exchangeOnlineCrossTenantMigrationSettings](../resources/exchangeonlinecrosstenantmigrationsettings.md)|Settings to use for migration of Exchange workload| -|ID|String|ID (GUID) of the migration job| -|jobType|crossTenantMigrationJobType|Type of the migration job. The possible values are: `validate` (only validation is performed, no migration), `migrate` (Content is migrated)| -|lastUpdatedDateTime|DateTimeOffset|When this migration job was last updated| -|message|String|Status message of the migration job| -|resources|String collection|IDs (GUID) of the resources being migrated with the migration job| -|resourceType|String|Type of resource being migrated. Only `Users` is currently supported| -|sourceTenantId|String|ID (GUID) of the tenant that content is being migrated from| -|status|crossTenantMigrationJobStatus|Most recent status of the migration job. The possible values are: `submitted`, `approved`, `processing`, `cuttingOver`, `inProgress`, `completed`, `completedWithErrors`, `failed`, `cancelled`, `pendingCancel`, `adminActionRequired`, `validateSubmitted`, `validateProcessing`, `validateInProgress`, `validatePassed`, `validateFailed`, `pendingDelete`, and `deleted`| -|targetTenantId|String|ID of the tenant that content is being migrated to| -|workloads|String collection|Workloads to migrate. Supported workloads are `Teams`, `Exchange`, and `ODSP` (OneDrive/SharePoint)| +|completeAfterDateTime|DateTimeOffset|Date and time after which the migration should be performed. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2024, is `2024-01-01T00:00:00Z`.| +|createdBy|String|User principal name (UPN) of the user who created the job. Read-only.| +|createdDateTime|DateTimeOffset|When the job was created. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2024, is `2024-01-01T00:00:00Z`. Read-only.| +|displayName|String|Display name of the job. Must be unique per tenant.| +|exchangeSettings|[exchangeOnlineCrossTenantMigrationSettings](../resources/exchangeonlinecrosstenantmigrationsettings.md)|Settings to use for migration of Exchange workload. Nullable.| +|id|String|Unique identifier for the migration job. Read-only.| +|jobType|crossTenantMigrationJobType|Type of the migration job. The possible values are: `validate` (only validation is performed, no migration), `migrate` (content is migrated).| +|lastUpdatedDateTime|DateTimeOffset|When this migration job was last updated. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2024, is `2024-01-01T00:00:00Z`. Read-only.| +|message|String|Status message of the migration job. Nullable. Read-only.| +|resources|String collection|IDs (GUID) of the resources that are migrated with the migration job.| +|resourceType|String|Type of resource being migrated. Only `Users` is currently supported.| +|sourceTenantId|String|ID (GUID) of the tenant that content is migrated from.| +|status|crossTenantMigrationJobStatus|Most recent status of the migration job. Read-only. The possible values are: `submitted`, `approved`, `processing`, `cuttingOver`, `inProgress`, `completed`, `completedWithErrors`, `failed`, `cancelled`, `pendingCancel`, `adminActionRequired`, `validateSubmitted`, `validateProcessing`, `validateInProgress`, `validatePassed`, `validateFailed`, `pendingDelete`, and `deleted`.| +|targetTenantId|String|ID of the tenant that content is migrated to. Read-only.| +|workloads|String collection|Workloads to migrate. Supported workloads are `Teams`, `Exchange`, and `ODSP` (OneDrive/SharePoint).| ## Relationships |Relationship|Type|Description| |:---|:---|:---| -|users|[crossTenantMigrationTask](../resources/crosstenantmigrationtask.md) collection|Details and status of the users being migrated in this migration job| +|users|[crossTenantMigrationTask](../resources/crosstenantmigrationtask.md) collection|Details and status of the users migrated in this migration job.| ## JSON representation The following JSON representation shows the resource type. diff --git a/api-reference/beta/toc/tenants/toc.yml b/api-reference/beta/toc/tenants/toc.yml index aad4c8a22a4..9d028d58272 100644 --- a/api-reference/beta/toc/tenants/toc.yml +++ b/api-reference/beta/toc/tenants/toc.yml @@ -186,6 +186,8 @@ items: href: ../../api/migrationsroot-delete-crosstenantmigrationjobs.md - name: cancel href: ../../api/crosstenantmigrationjob-cancel.md + - name: migrate + href: ../../api/crosstenantmigrationjob-migrate.md - name: validate href: ../../api/crosstenantmigrationjob-validate.md - name: List users diff --git a/changelog/Microsoft.Cross.Tenant.Migration.json b/changelog/Microsoft.Cross.Tenant.Migration.json index c07cf0c6ceb..f9585576e69 100644 --- a/changelog/Microsoft.Cross.Tenant.Migration.json +++ b/changelog/Microsoft.Cross.Tenant.Migration.json @@ -1,5 +1,87 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "db208668-ad3c-46cb-b07c-aceb3e8f0fbf", + "ApiChange": "Method", + "ChangedApiName": "migrate", + "ChangeType": "Addition", + "Description": "Added the [migrate](https://learn.microsoft.com/en-us/graph/api/crossTenantMigrationJob-migrate?view=graph-rest-beta) method to the [crossTenantMigrationJob](https://learn.microsoft.com/en-us/graph/api/resources/crossTenantMigrationJob?view=graph-rest-beta) resource.", + "Target": "crossTenantMigrationJob" + }, + { + "Id": "db208668-ad3c-46cb-b07c-aceb3e8f0fbf", + "ApiChange": "Method", + "ChangedApiName": "validate", + "ChangeType": "Change", + "Description": "Changed the behavior of the [validate](https://learn.microsoft.com/en-us/graph/api/crossTenantMigrationJob-validate?view=graph-rest-beta) method on the [crossTenantMigrationJob](https://learn.microsoft.com/en-us/graph/api/resources/crossTenantMigrationJob?view=graph-rest-beta) resource to validate an existing job as an entity-bound action. Going forward, use the `POST /solutions/migrations/crossTenantMigrationJobs/{crossTenantMigrationJobId}/validate` endpoint to trigger the validation of an existing cross-tenant migration job.", + "Target": "crossTenantMigrationJob" + }, + { + "Id": "db208668-ad3c-46cb-b07c-aceb3e8f0fbf", + "ApiChange": "Parameter", + "ChangedApiName": "displayName", + "ChangeType": "Deletion", + "Description": "Removed the **displayName** parameter from the [validate](https://learn.microsoft.com/en-us/graph/api/crossTenantMigrationJob-validate?view=graph-rest-beta) method.", + "Target": "validate" + }, + { + "Id": "db208668-ad3c-46cb-b07c-aceb3e8f0fbf", + "ApiChange": "Parameter", + "ChangedApiName": "completeAfterDateTime", + "ChangeType": "Deletion", + "Description": "Removed the **completeAfterDateTime** parameter from the [validate](https://learn.microsoft.com/en-us/graph/api/crossTenantMigrationJob-validate?view=graph-rest-beta) method.", + "Target": "validate" + }, + { + "Id": "db208668-ad3c-46cb-b07c-aceb3e8f0fbf", + "ApiChange": "Parameter", + "ChangedApiName": "sourceTenantId", + "ChangeType": "Deletion", + "Description": "Removed the **sourceTenantId** parameter from the [validate](https://learn.microsoft.com/en-us/graph/api/crossTenantMigrationJob-validate?view=graph-rest-beta) method.", + "Target": "validate" + }, + { + "Id": "db208668-ad3c-46cb-b07c-aceb3e8f0fbf", + "ApiChange": "Parameter", + "ChangedApiName": "exchangeSettings", + "ChangeType": "Deletion", + "Description": "Removed the **exchangeSettings** parameter from the [validate](https://learn.microsoft.com/en-us/graph/api/crossTenantMigrationJob-validate?view=graph-rest-beta) method.", + "Target": "validate" + }, + { + "Id": "db208668-ad3c-46cb-b07c-aceb3e8f0fbf", + "ApiChange": "Parameter", + "ChangedApiName": "workloads", + "ChangeType": "Deletion", + "Description": "Removed the **workloads** parameter from the [validate](https://learn.microsoft.com/en-us/graph/api/crossTenantMigrationJob-validate?view=graph-rest-beta) method.", + "Target": "validate" + }, + { + "Id": "db208668-ad3c-46cb-b07c-aceb3e8f0fbf", + "ApiChange": "Parameter", + "ChangedApiName": "resourceType", + "ChangeType": "Deletion", + "Description": "Removed the **resourceType** parameter from the [validate](https://learn.microsoft.com/en-us/graph/api/crossTenantMigrationJob-validate?view=graph-rest-beta) method.", + "Target": "validate" + }, + { + "Id": "db208668-ad3c-46cb-b07c-aceb3e8f0fbf", + "ApiChange": "Parameter", + "ChangedApiName": "resources", + "ChangeType": "Deletion", + "Description": "Removed the **resources** parameter from the [validate](https://learn.microsoft.com/en-us/graph/api/crossTenantMigrationJob-validate?view=graph-rest-beta) method.", + "Target": "validate" + } + ], + "Id": "db208668-ad3c-46cb-b07c-aceb3e8f0fbf", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-19T23:11:16.5022242Z", + "WorkloadArea": "Tenants", + "SubArea": "Cross-tenant migration" + }, { "ChangeList": [ { diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index 874e59b806e..b11aeaedb47 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -127,6 +127,10 @@ Use the **meetingType** property on [onlineMeeting](/graph/api/resources/onlinem The **timeZone** property of the [schedule](/graph/api/resources/schedule?view=graph-rest-beta&preserve-view=true) resource must be set to an IANA time zone name, such as `America/Chicago` or `Europe/London`. For more information, see [Create or replace schedule](/graph/api/team-put-schedule?view=graph-rest-beta&preserve-view=true).‎ +### Tenants | Cross-tenant migration + +[Validate](/graph/api/crosstenantmigrationjob-validate?view=graph-rest-beta&preserve-view=true) and [migrate](/graph/api/crosstenantmigrationjob-migrate?view=graph-rest-beta&preserve-view=true) a [cross-tenant migration job](/graph/api/resources/crosstenantmigrationjob?view=graph-rest-beta&preserve-view=true) asynchronously. A previously created job must pass validation before migration can start. + ### Tenants | Tenant governance Added the **groupDisplayName** property to the [delegatedAdministrationRoleAssignment](/graph/api/resources/tenantgovernanceservices-delegatedadministrationroleassignment?view=graph-rest-beta&preserve-view=true) and [delegatedAdministrationRoleAssignmentSnapshot](/graph/api/resources/tenantgovernanceservices-delegatedadministrationroleassignmentsnapshot?view=graph-rest-beta&preserve-view=true) resources. This property surfaces the display name of the security group inline, so consumers don't need to make a separate Microsoft Graph `/groups/{id}` call to resolve it. From 9f75d4cbc5434b5e7f0332dfbd38801966f4af67 Mon Sep 17 00:00:00 2001 From: Hiro7 <75809971+garchiro7@users.noreply.github.com> Date: Fri, 19 Jun 2026 13:15:18 -0600 Subject: [PATCH 15/52] Introducce CVI and email invitation information (#28093) * Introducce CVI and email invitation information * fix score * Fix dates * Update toc.mapping.json * Update onlinemeetingbase.md * Update onlinemeeting.md * Update virtualeventsession.md * Update virtualeventsession.md * Update cviInfo.md * Update emailInvitationInfo.md * Update API changelog with new properties Added properties 'emailInvitationInfo' and 'cviInfo' to onlineMeeting and virtualEventSession resources. * Update whats-new-overview.md * Update whats-new-overview.md * Fix the cloudVideoInteropInfo * fix missing links * fix cviInfo -> cloudVideoInteropInfo * fix cloudVideoInteropInfo on event session * Update api-reference/beta/resources/virtualeventsession.md Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * Update api-reference/beta/resources/onlinemeetingbase.md Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * Update api-reference/beta/resources/cloudVideoInteropInfo.md Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * Update api-reference/beta/resources/onlinemeeting.md Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * Update api-reference/beta/resources/virtualeventsession.md Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * Update api-reference/beta/resources/onlinemeetingbase.md Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * Update api-reference/beta/resources/onlinemeeting.md Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * Update and rename cloudVideoInteropInfo.md to cloudvideointeropinfo.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update whats-new-overview.md * Update concepts/whats-new-overview.md Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * Update api-reference/beta/resources/onlinemeeting.md Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * fix typo on changelog * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Jarbas Horst Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --- api-reference/beta/api/onlinemeeting-get.md | 6 ++- .../beta/resources/cloudvideointeropinfo.md | 46 +++++++++++++++++++ api-reference/beta/resources/onlinemeeting.md | 4 +- .../beta/resources/onlinemeetingbase.md | 2 + .../beta/resources/virtualeventsession.md | 4 ++ api-reference/beta/toc/toc.mapping.json | 5 +- changelog/Microsoft.Skype.Calling.json | 43 ++++++++++++++++- concepts/whats-new-overview.md | 3 +- 8 files changed, 107 insertions(+), 6 deletions(-) create mode 100644 api-reference/beta/resources/cloudvideointeropinfo.md diff --git a/api-reference/beta/api/onlinemeeting-get.md b/api-reference/beta/api/onlinemeeting-get.md index bcaa2c1951d..f8d51b0412b 100644 --- a/api-reference/beta/api/onlinemeeting-get.md +++ b/api-reference/beta/api/onlinemeeting-get.md @@ -343,7 +343,11 @@ Content-Length: 1574 "allowMeetingChat": "enabled", "allowTeamworkReactions": true, "meetingOptionsWebUrl": "https://teams.microsoft.com/meetingOptions/?meetingId=abc123", - "meetingType": "scheduled" + "cloudVideoInteropInfo": { + "tenantKey": "94f39e13-d027-4cfa-bcd3-4b8b0c2017ef", + "videoTeleconferenceId": "123456789", + "moreInfoWebUrl": "https://cvi.vendor.com/join-instructions" + } } ``` >**Note:** If 'Accept-Language: ja' is specified to indicate Japanese, for example, the response will include the following. diff --git a/api-reference/beta/resources/cloudvideointeropinfo.md b/api-reference/beta/resources/cloudvideointeropinfo.md new file mode 100644 index 00000000000..4498383e298 --- /dev/null +++ b/api-reference/beta/resources/cloudvideointeropinfo.md @@ -0,0 +1,46 @@ +--- +title: "cloudVideoInteropInfo resource type" +description: "Represents the online meeting details for conferencing device integration and Cloud Video Interop (CVI)." +author: "garchiro7" +ms.localizationpriority: medium +ms.subservice: "cloud-communications" +doc_type: resourcePageType +ms.date: 04/19/2026 +--- + +# cloudVideoInteropInfo resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents the online meeting details for conferencing device integration and [Cloud Video Interop (CVI)](/microsoftteams/cloud-video-interop). + +## Properties + +| Property | Type | Description | +|:--------------------|:----------|:----------------------------------------------| +| moreInfoWebUrl | String | Provides other video teleconferencing (VTC) dial-in options. Read-only. | +| tenantKey | String | The tenant key that is used to dial into the interactive voice response (IVR) of the partner CVI service. | +| videoTeleconferenceId | String | The video teleconferencing ID. Read-only. | + +## Relationships +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.cloudVideoInteropInfo", + "moreInfoWebUrl": "String", + "tenantKey": "String", + "videoTeleconferenceId": "String" +} +``` diff --git a/api-reference/beta/resources/onlinemeeting.md b/api-reference/beta/resources/onlinemeeting.md index e181291bc95..58fd87e6d46 100644 --- a/api-reference/beta/resources/onlinemeeting.md +++ b/api-reference/beta/resources/onlinemeeting.md @@ -63,6 +63,7 @@ Inherits from [onlineMeetingBase](../resources/onlinemeetingbase.md). | audioConferencing | [audioConferencing](audioconferencing.md) | The phone access (dial-in) information for an online meeting. Read-only. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md).| | chatInfo | [chatInfo](chatinfo.md) | The chat information associated with this online meeting. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | chatRestrictions | [chatRestrictions](../resources/chatrestrictions.md) | Specifies the configuration settings for meeting chat restrictions. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | +| cloudVideoInteropInfo | [cloudVideoInteropInfo](cloudvideointeropinfo.md) | Conferencing device integration settings for [Cloud Video Interop (CVI)](/microsoftteams/cloud-video-interop). Read-only. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md).| | creationDateTime | DateTime | The meeting creation time in UTC. Read-only. | | endDateTime | DateTime | The meeting end time in UTC. Required when you create an online meeting. | | expiryDateTime | DateTimeOffset | Indicates the date and time when the meeting resource expires. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | @@ -80,7 +81,7 @@ Inherits from [onlineMeetingBase](../resources/onlinemeetingbase.md). | meetingType | [onlineMeetingType](../resources/onlinemeetingbase.md#onlinemeetingtype-values) | The type of the online meeting. The possible values are: `adhoc`, `scheduled`, `recurring`, `broadcast`, `meetnow`, `unknownFutureValue`. Read-only. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | participants | [meetingParticipants](meetingparticipants.md) | The participants associated with the online meeting, including the organizer and the attendees. | | recordAutomatically | Boolean | Indicates whether to record the meeting automatically. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | -|sensitivityLabelAssignment|[onlineMeetingSensitivityLabelAssignment](../resources/onlinemeetingsensitivitylabelassignment.md)|Specifies the sensitivity label applied to the Teams meeting.| +| sensitivityLabelAssignment | [onlineMeetingSensitivityLabelAssignment](../resources/onlinemeetingsensitivitylabelassignment.md) | Specifies the sensitivity label applied to the Teams meeting. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | startDateTime | DateTime | The meeting start time in UTC. Required when you create an online meeting. | | shareMeetingChatHistoryDefault | [meetingChatHistoryDefaultMode](#meetingchathistorydefaultmode-values) | Specifies whether meeting chat history is shared with participants. The possible values are: `all`, `none`, `unknownFutureValue`. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | subject | String | The subject of the online meeting. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | @@ -186,6 +187,7 @@ The following JSON representation shows the resource type. "audioConferencing": {"@odata.type": "microsoft.graph.audioConferencing"}, "chatInfo": {"@odata.type": "microsoft.graph.chatInfo"}, "chatRestrictions":{"@odata.type": "microsoft.graph.chatRestrictions"}, + "cloudVideoInteropInfo": {"@odata.type": "microsoft.graph.cloudVideoInteropInfo"}, "creationDateTime": "String (timestamp)", "endDateTime": "String (timestamp)", "expiryDateTime": "String (timestamp)", diff --git a/api-reference/beta/resources/onlinemeetingbase.md b/api-reference/beta/resources/onlinemeetingbase.md index 9dd486ebdcb..37363b4ecbc 100644 --- a/api-reference/beta/resources/onlinemeetingbase.md +++ b/api-reference/beta/resources/onlinemeetingbase.md @@ -43,6 +43,7 @@ Inherits from [entity](../resources/entity.md). | audioConferencing | [audioConferencing](audioconferencing.md) | The phone access (dial-in) information for an online meeting. Read-only. | | chatInfo | [chatInfo](chatinfo.md) | The chat information associated with this online meeting. | | chatRestrictions | [chatRestrictions](../resources/chatrestrictions.md) | Specifies the configuration settings for meeting chat restrictions. | +| cloudVideoInteropInfo | [cloudVideoInteropInfo](cloudvideointeropinfo.md) | Conferencing device integration settings for [Cloud Video Interop (CVI)](/microsoftteams/cloud-video-interop). Read-only. | | expiryDateTime | DateTimeOffset | Indicates the date and time when the meeting resource expires. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. | | id | String | The default ID associated with the online meeting. Read-only. | | isEndToEndEncryptionEnabled | Boolean | Indicates whether end-to-end encryption (E2EE) is enabled for the online meeting. | @@ -153,6 +154,7 @@ The following JSON representation shows the resource type. "audioConferencing": {"@odata.type": "microsoft.graph.audioConferencing"}, "chatInfo": {"@odata.type": "microsoft.graph.chatInfo"}, "chatRestrictions":{"@odata.type": "microsoft.graph.chatRestrictions"}, + "cloudVideoInteropInfo": {"@odata.type": "microsoft.graph.cloudVideoInteropInfo"}, "expiryDateTime": "String (timestamp)", "id": "String (identifier)", "isEndToEndEncryptionEnabled": "Boolean", diff --git a/api-reference/beta/resources/virtualeventsession.md b/api-reference/beta/resources/virtualeventsession.md index 28342ecbf1d..8af44efcb77 100644 --- a/api-reference/beta/resources/virtualeventsession.md +++ b/api-reference/beta/resources/virtualeventsession.md @@ -48,6 +48,7 @@ Inherits from [onlineMeetingBase](../resources/onlinemeetingbase.md). | capacity | Integer | Represents the expected number of attendees for town hall session. | | chatInfo | [chatInfo](chatinfo.md) | The chat information associated with the virtual event session. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | chatRestrictions | [chatRestrictions](../resources/chatrestrictions.md) | Specifies the configuration settings for meeting chat restrictions. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | +| cloudVideoInteropInfo | [cloudVideoInteropInfo](cloudvideointeropinfo.md) | Conferencing device integration settings for [Cloud Video Interop (CVI)](/microsoftteams/cloud-video-interop). Read-only. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | endDateTime | [dateTimeTimeZone](../resources/datetimetimezone.md) | The virtual event session end time. | | expiryDateTime | DateTimeOffset | Indicates the date and time when the meeting resource expires. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | id | String | The unique identifier of the virtual event session. Read-only. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | @@ -61,6 +62,7 @@ Inherits from [onlineMeetingBase](../resources/onlinemeetingbase.md). | meetingSpokenLanguageTag | String | Specifies the spoken language used during the meeting for recording and transcription purposes. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | meetingType | [onlineMeetingType](../resources/onlinemeetingbase.md#onlinemeetingtype-values) | The type of the online meeting. The possible values are: `adhoc`, `scheduled`, `recurring`, `broadcast`, `meetnow`, `unknownFutureValue`. Read-only. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | recordAutomatically | Boolean | Indicates whether to record the virtual event session automatically. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | +| sensitivityLabelAssignment | [onlineMeetingSensitivityLabelAssignment](../resources/onlinemeetingsensitivitylabelassignment.md) | Specifies the sensitivity label applied to the Teams meeting. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | shareMeetingChatHistoryDefault | [meetingChatHistoryDefaultMode](#meetingchathistorydefaultmode-values) | Specifies whether meeting chat history is shared with participants. The possible values are: `all`, `none`, `unknownFutureValue`. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | | startDateTime | [DateTimeTimeZone](../resources/datetimetimezone.md) | The virtual event session start time. | | subject | String | The subject of the virtual event session. Inherited from [onlineMeetingBase](../resources/onlinemeetingbase.md). | @@ -142,6 +144,7 @@ The following JSON representation shows the resource type. "capacity": "Integer", "chatInfo": {"@odata.type": "microsoft.graph.chatInfo"}, "chatRestrictions":{"@odata.type": "microsoft.graph.chatRestrictions"}, + "cloudVideoInteropInfo": {"@odata.type": "microsoft.graph.cloudVideoInteropInfo"}, "endDateTime": {"@odata.type": "microsoft.graph.dateTimeTimeZone"}, "expiryDateTime": "String (timestamp)", "id": "String (identifier)", @@ -155,6 +158,7 @@ The following JSON representation shows the resource type. "meetingSpokenLanguageTag": "String", "meetingType": "String", "recordAutomatically": "Boolean", + "sensitivityLabelAssignment": {"@odata.type": "microsoft.graph.onlineMeetingSensitivityLabelAssignment"}, "shareMeetingChatHistoryDefault": "String", "startDateTime": {"@odata.type": "microsoft.graph.dateTimeTimeZone"}, "subject": "String", diff --git a/api-reference/beta/toc/toc.mapping.json b/api-reference/beta/toc/toc.mapping.json index adca6f99248..6aa64610749 100644 --- a/api-reference/beta/toc/toc.mapping.json +++ b/api-reference/beta/toc/toc.mapping.json @@ -3613,10 +3613,11 @@ "complexTypes": [ "actionItem", "aiOnlineMeeting", + "cloudVideoInteropInfo", + "identitySet", "meetingNote", "meetingNoteSubpoint", - "mentionEvent", - "identitySet" + "mentionEvent" ] }, { diff --git a/changelog/Microsoft.Skype.Calling.json b/changelog/Microsoft.Skype.Calling.json index eb49c050ee7..27cfaf6a7a5 100644 --- a/changelog/Microsoft.Skype.Calling.json +++ b/changelog/Microsoft.Skype.Calling.json @@ -1,5 +1,46 @@ { - "changelog": [ + "changelog": [ + { + "ChangeList": [ + { "Id": "d6dafc7e-e1bf-44d0-80be-759a2366c56d", + "ApiChange": "Resource", + "ChangedApiName": "cloudVideoInteropInfo", + "ChangeType": "Addition", + "Description": "Added the [cloudVideoInteropInfo](https://learn.microsoft.com/en-us/graph/api/resources/cloudVideoInteropInfo?view=graph-rest-beta) resource.", + "Target": "cloudVideoInteropInfo" + }, + { + "Id": "d6dafc7e-e1bf-44d0-80be-759a2366c56d", + "ApiChange": "Property", + "ChangedApiName": "cloudVideoInteropInfo", + "ChangeType": "Addition", + "Description": "Added the **cloudVideoInteropInfo** property to the [onlineMeetingBase](https://learn.microsoft.com/en-us/graph/api/resources/onlineMeetingBase?view=graph-rest-beta) resource.", + "Target": "onlineMeetingBase" + }, + { + "Id": "d6dafc7e-e1bf-44d0-80be-759a2366c56d", + "ApiChange": "Property", + "ChangedApiName": "cloudVideoInteropInfo", + "ChangeType": "Addition", + "Description": "Added the **cloudVideoInteropInfo** property to the [onlineMeeting](https://learn.microsoft.com/en-us/graph/api/resources/onlineMeeting?view=graph-rest-beta) resource.", + "Target": "onlineMeeting" + }, + { + "Id": "d6dafc7e-e1bf-44d0-80be-759a2366c56d", + "ApiChange": "Property", + "ChangedApiName": "cloudVideoInteropInfo", + "ChangeType": "Addition", + "Description": "Added the **cloudVideoInteropInfo** property to the [virtualEventSession](https://learn.microsoft.com/en-us/graph/api/resources/virtualEventSession?view=graph-rest-beta) resource.", + "Target": "virtualEventSession" + } + ], + "Id": "d6dafc7e-e1bf-44d0-80be-759a2366c56d", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-19T00:26:49.9451195Z", + "WorkloadArea": "Teamwork and communications", + "SubArea": "Calls and online meetings" + }, { "ChangeList": [ { diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index b11aeaedb47..635ca82bc9c 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -121,7 +121,8 @@ Added support for tracking task history in Planner. Use the [plannerHistoryItem] ### Teamwork and communications | Calls and online meetings -Use the **meetingType** property on [onlineMeeting](/graph/api/resources/onlinemeeting?view=graph-rest-beta&preserve-view=true) and [virtualEventSession](/graph/api/resources/virtualeventsession?view=graph-rest-beta&preserve-view=true) to determine whether a meeting is ad hoc, scheduled, recurring, a broadcast, or a *Meet now* session. The property is defined on the [onlineMeetingBase](/graph/api/resources/onlinemeetingbase?view=graph-rest-beta&preserve-view=true) resource and uses the [onlineMeetingType](/graph/api/resources/onlinemeetingbase?view=graph-rest-beta&preserve-view=true#onlinemeetingtype-values) enumeration. +- Use the **meetingType** property on [onlineMeeting](/graph/api/resources/onlinemeeting?view=graph-rest-beta&preserve-view=true) and [virtualEventSession](/graph/api/resources/virtualeventsession?view=graph-rest-beta&preserve-view=true) to determine whether a meeting is ad hoc, scheduled, recurring, a broadcast, or a *Meet now* session. The property is defined on the [onlineMeetingBase](/graph/api/resources/onlinemeetingbase?view=graph-rest-beta&preserve-view=true) resource and uses the [onlineMeetingType](/graph/api/resources/onlinemeetingbase?view=graph-rest-beta&preserve-view=true#onlinemeetingtype-values) enumeration. +- Use the **cloudVideoInteropInfo** property on [onlineMeeting](/graph/api/resources/onlinemeeting?view=graph-rest-beta&preserve-view=true) and [virtualEventSession](/graph/api/resources/virtualeventsession?view=graph-rest-beta&preserve-view=true) to get the conferencing device integration settings for [Cloud Video Interop](/microsoftteams/cloud-video-interop). ### Teamwork and communications | Shift management From 615355a6f4c4886be44a5ed10480740fe3ff4455 Mon Sep 17 00:00:00 2001 From: "learn-build-service-prod[bot]" <113403604+learn-build-service-prod[bot]@users.noreply.github.com> Date: Fri, 19 Jun 2026 14:03:36 -0600 Subject: [PATCH 16/52] Confirm merge from repo_sync_working_branch to main to sync with https://github.com/microsoftgraph/microsoft-graph-docs-contrib (branch main) (#29111) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit * Use contractions in authenticationstrengthpolicy-get * Use contractions in authenticationstrengthpolicy-list-combinationconfigurations * Use contractions in authenticationstrengthpolicy-usage * Use contractions in authenticationstrengthroot-list-authenticationmethodmodes * Use contractions in backuprestoreroot-list-onedriveforbusinessbrowsesessions * Use contractions in backuprestoreroot-list-sharepointbrowsesessions * Use contractions in basesitepage-list * Use contractions in bitlocker-list-recoverykeys * Use contractions in bookingappointment-update * Use contractions in bookingbusiness-list * Use contractions in bookingcustomer-get * Use contractions in bundle-removeitem * Use contractions in bundle-update * Use contractions in calendar-list-calendarview * Use contractions in call-keepalive * Use contractions in call-list-participants * Use contractions in call-reject * Use contractions in channel-get-members * Use contractions in chat-delete * Use contractions in chat-get * Use contractions in chat-get-members * Use contractions in chat-list-members * Use contractions in contenttype-delete * Use contractions in conversationmember-list * Use contractions in directory-list-customsecurityattributedefinitions * Use contractions in directoryobject-delta * Use contractions in domain-delete * Use contractions in domain-get-rootdomain * Use contractions in domain-list-federationconfiguration * Use contractions in drive-get-specialfolder * Use contractions in driveitem-copy * Use contractions in driveitem-createlink * Use contractions in driveitem-search * Use contractions in driveitemversion-get * Use contractions in educationclass-delta * Use contractions in educationclass-post * Use contractions in entitlementmanagementsettings-get * Use contractions in externalauthenticationmethodconfiguration-get * Use contractions in externalconnectors-externalgroup-update * Use contractions in externalconnectors-externalitem-get * Use contractions in externalconnectors-schema-get * Use contractions in fido2authenticationmethod-list * Use contractions in group-delta * Use contractions in group-list-acceptedsenders * Use contractions in group-list-calendarview * Use contractions in group-post-members * Use contractions in group-update * Use contractions in identitygovernance-insights-workflowsprocessedsummary * Use contractions in identitygovernance-task-get * Use contractions in identitygovernance-workflowtemplate-get * Use contractions in identityuserflowattributeassignment-update * Use contractions in inferenceclassification-list-overrides * Use contractions in internaldomainfederation-get * Use contractions in learningcourseactivity-update * Use contractions in list-get * Use contractions in listitem-delete * Use contractions in listitem-update * Use contractions in mailfolder-list-childfolders * Use contractions in message-createreply * Use contractions in message-createreplyall * Use contractions in message-delta * Use contractions in message-reply * Use contractions in message-replyall * Use contractions in offershiftrequest-get * Use contractions in onlinemeeting-createorget * Use contractions in orgcontact-delta * Use contractions in outlookuser-supportedtimezones * Use contractions in permissiongrantpolicy-update * Use contractions in permission-update * Use contractions in phoneauthenticationmethod-update * Use contractions in plannerassignedtotaskboardtaskformat-update * Use contractions in post-post-attachments * Use contractions in printdocument-createuploadsession * Use contractions in printer-update * Use contractions in printjob-cancel * Use contractions in projectrome-put-activity * Use contractions in qrcode-get * Use contractions in reportroot-getemailactivitycounts * Use contractions in reportroot-getemailactivityusercounts * Use contractions in reportroot-getemailactivityuserdetail * Use contractions in reportroot-getemailappusageappsusercounts * Use contractions in reportroot-getemailappusageusercounts * Use contractions in reportroot-getemailappusageuserdetail * Use contractions in reportroot-getm365appplatformusercounts * Use contractions in reportroot-getm365appusercounts * Use contractions in reportroot-getm365appuserdetail * Use contractions in reportroot-getmailboxusagedetail * Use contractions in reportroot-getmailboxusagemailboxcounts * Use contractions in reportroot-getmailboxusagequotastatusmailboxcounts * Use contractions in reportroot-getmailboxusagestorage * Use contractions in reportroot-getoffice365activationcounts * Use contractions in reportroot-getoffice365activationsuserdetail * Use contractions in reportroot-getoffice365activeusercounts * Use contractions in reportroot-getoffice365activeuserdetail * Use contractions in reportroot-getoffice365groupsactivitycounts * Use contractions in reportroot-getoffice365groupsactivitydetail * Use contractions in reportroot-getoffice365groupsactivityfilecounts * Use contractions in reportroot-getoffice365groupsactivitystorage * Use contractions in reportroot-getoffice365servicesusercounts * Use contractions in reportroot-getonedriveactivityfilecounts * Use contractions in reportroot-getonedriveactivityusercounts * Use contractions in reportroot-getonedriveactivityuserdetail * Use contractions in reportroot-getonedriveusageaccountcounts * Use contractions in reportroot-getonedriveusageaccountdetail * Use contractions in reportroot-getonedriveusagefilecounts * Use contractions in reportroot-getsharepointactivityfilecounts * Use contractions in reportroot-getsharepointactivitypages * Use contractions in reportroot-getsharepointactivityuserdetail * Use contractions in reportroot-getsharepointsiteusagedetail * Use contractions in reportroot-getsharepointsiteusagefilecounts * Use contractions in reportroot-getsharepointsiteusagepages * Use contractions in reportroot-getsharepointsiteusagesitecounts * Use contractions in reportroot-getsharepointsiteusagestorage * Use contractions in reportroot-getskypeforbusinessactivitycounts * Use contractions in reportroot-getskypeforbusinessactivityusercounts * Use contractions in reportroot-getskypeforbusinessactivityuserdetail * Use contractions in reportroot-getskypeforbusinessdeviceusagedistributionusercounts * Use contractions in reportroot-getskypeforbusinessdeviceusageuserdetail * Use contractions in reportroot-getskypeforbusinessorganizeractivityminutecounts * Use contractions in reportroot-getskypeforbusinessparticipantactivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivitycounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityusercounts * Use contractions in reportroot-getteamsdeviceusageusercounts * Use contractions in reportroot-getteamsuseractivityusercounts * Use contractions in reportroot-getteamsuseractivityuserdetail * Use contractions in reportroot-getyammeractivitycounts * Use contractions in reportroot-getyammeractivityusercounts * Use contractions in reportroot-getyammeractivityuserdetail * Use contractions in reportroot-getyammerdeviceusagedistributionusercounts * Use contractions in reportroot-getyammerdeviceusageusercounts * Use contractions in reportroot-getyammerdeviceusageuserdetail * Use contractions in reportroot-getyammergroupsactivitycounts * Use contractions in reportroot-getyammergroupsactivitydetail * Use contractions in riskdetection-get * Use contractions in riskyuser-get * Use contractions in schedulinggroup-delete * Use contractions in schemaextension-delete * Use contractions in security-ediscoverysearch-list-lastestimatestatisticsoperation * Use contractions in security-host-list-childhostpairs * Use contractions in security-host-list-parenthostpairs * Use contractions in security-hostpair-get * Use contractions in security-threatintelligence-list-sslcertificates * Use contractions in servicehealthissue-get * Use contractions in servicehealthissue-incidentreport * Use contractions in serviceprincipal-get * Use contractions in serviceupdatemessage-get * Use contractions in sharedwithchannelteaminfo-get * Use contractions in sharedwithchannelteaminfo-list-allowedmembers * Use contractions in simulationautomation-get * Use contractions in simulation-get * Use contractions in singlevaluelegacyextendedproperty-get * Use contractions in sitepage-publish * Use contractions in sitepage-update * Use contractions in site-search * Use contractions in subjectrightsrequest-list-notes * Use contractions in subscribedsku-list * Use contractions in synchronization-synchronizationschema-delete * Use contractions in synchronization-synchronizationschema-update * Use contractions in teamsapp-delete * Use contractions in teamsapp-publish * Use contractions in teamsapp-update * Use contractions in teamworktag-get * Use contractions in tenantappmanagementpolicy-update * Use contractions in tenantdatasecurityandgovernance-processcontentasync * Use contractions in timeoffrequest-get * Use contractions in todotask-delta * Use contractions in todotask-list-checklistitems * Use contractions in todotask-post-attachments * Use contractions in userdatasecurityandgovernance-processcontent * Use contractions in user-delta * Use contractions in user-findmeetingtimes * Use contractions in user-list-calendarview * Use contractions in user-list-mailfolders * Use contractions in user-list-messages * Use contractions in userregistrationdetails-get * Use contractions in user-sendmail * Use contractions in verticalsection-update * Use contractions in virtualeventregistrationconfiguration-list-questions * Use contractions in virtualeventregistration-list * Use contractions in virtualeventregistration-list-sessions * Use contractions in virtualeventwebinar-post-registrations * Use contractions in webpart-delete * Use contractions in workbook-tablerowoperationresult * Use contractions in x509certificateauthenticationmethodconfiguration-get * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * Update simulation-update.md for requirement around simuation state (#9936) * Update simulation-update.md for requirement around simuation state Clarified simulation state as draft as required and updated description. * Minor fixes --------- Co-authored-by: Faith Moraa Ombongi * Publish main to live - reconcile divergence 2026-06-17 Sets live content identical to main to clear the squash-induced divergence. No manual live hotfixes existed. * Reconcile live to main (unblock auto-publish #29094) (#29095) * Publish main to live - reconcile divergence (refresh 2026-06-17 18:25) Sets live content identical to current main. main is authoritative; no live-only hotfixes. * Update tenantappmanagementpolicy-get.md --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Remove license-type availability banner from Graph beta eDiscovery overview Replaces preview/SKU-specific note in ediscovery-ediscoveryapioverview.md with neutral guidance pointing to Microsoft Purview eDiscovery documentation. Addresses customer confusion (IcM 51000001064141) about creating searches in standard eDiscovery cases via Graph. * Merge to publish. (#29097) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update reference TOC (#29058) Co-authored-by: Microsoft Graph DevX Tooling * Update profilePropertySetting docs (#29038) * Updated according to KnutB's spec * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update peopleadminsettings-list-profilepropertysettings.md * Update profilepropertysetting.md * Move extended Delete description from resource table to API topic * Apply suggestion from @MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222741 (#29057) Co-authored-by: Microsoft Graph DevX Tooling * Update generated permissions tables with build 222558 (#29051) Co-authored-by: Microsoft Graph DevX Tooling * Revise traceRouteHop availability in callRecord docs (#29055) * Revise traceRouteHop availability in callRecord docs * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update whats-new-overview.md (#29010) * Update whats-new-overview.md * Update whats-new-overview.md --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update pull request template to remove documentation plan requirement (#29069) Removed the requirement to attach the documentation plan for AI-assisted docs authoring. * 2026-06-15: Automated permissions reference update (#29068) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Update generated permissions tables with build 222982 (#29067) Co-authored-by: Microsoft Graph DevX Tooling * Update whats-new-overview.md (#29064) * Update whats-new-overview.md * Update whats-new-overview.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add tenantId property to userAccount resource (#28845) * Add tenantId field to security user account resource Added tenantId field to user account resource details. * Update userAccount resource date and add tenantId * Update date for security userAccount resource * Update changelog with new API changes Added new changelog entries for tenantId and categories properties in userAccount resource. * Apply review suggestions: update changelog dates and add What's New entry for tenantId on userAccount * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi --------- Co-authored-by: Faith Moraa Ombongi Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Add mergeIncidents and moveAlerts v1.0 API docs (#28851) * Add mergeIncidents and moveAlerts v1.0 API docs Add v1.0 documentation for security action endpoints: - API pages: security-incident-mergeincidents.md, security-alert-movealerts.md - Resource pages: security-mergeresponse.md, security-correlationreason.md - Permission and RBAC include files - Update security-incident.md and security-alert.md Methods tables - Update v1.0 toc.mapping.json with new complex types - Add v1.0 changelog entries for all new artifacts Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Fix comments * Apply suggestion from @FaithOmbongi * Update what's new --------- Co-authored-by: Harel Damti Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * Update reference TOC (#29071) Co-authored-by: Microsoft Graph DevX Tooling * Update people doc (#29023) * Updated people & workplace intelligence document according to Knut Brandrud's proposal reviewed within our team. * Minor typo Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Address review comments in social intelligence overview * Apply remaining review thread doc fixes * minor date fix Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * date --------- Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add isVisible property to lpc v1.0 (#28915) * Add isVisible property to lpc v1.0 * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update Microsoft.People.json * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @Danipocket --------- Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply simulation-update v1.0 PR #9936 changes to beta file (#29077) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Remove unsupported expand query from getRetentionLabel docs (#29080) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated files with build 223158 (#29075) Co-authored-by: Microsoft Graph DevX Tooling * Resolve syncing conflicts from repo_sync_working_branch to main (#29076) * Enhance clarity in API documentation by updating request and response example phrasing across multiple files * Apply suggestions from code review Co-authored-by: Jarbas Horst * Fix trailing pipe tables 1.0 (#9930) * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudclipboardroot-list-items * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in itemactivitystat-getactivitybyinterval * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in tablecolumncollection-add * Fix trailing pipe formatting in user-findmeetingtimes * Apply suggestions from code review Co-authored-by: Jarbas Horst --------- Co-authored-by: Jarbas Horst * Fix missing closing codeblock beta (#9919) * Fix formatting of HTTP request example in accesspackageresource-list-uploadsessions.md * Fix missing closing code block in security-labelsroot-delete-citations.md * Fix missing closing code block in singlevaluelegacyextendedproperty-get.md * Fix missing closing code block in usersettings-list-windows.md * Fix missing closing code block in webapplicationfirewallprovider-verify.md * Fix missing closing code block in windowssetting-get.md * Fix missing closing code block in windowssetting-list-instances.md * fix(beta api): close malformed http code fence in windowssettinginstance-get * Apply suggestions from code review Co-authored-by: Jarbas Horst --------- Co-authored-by: Jarbas Horst * Update synchronization-synchronization-list-templates.md (#9922) Update headings from H3 to H2. * Update https://github.com/microsoftgraph/microsoft-graph-docs-contrib/edit/main/api-reference/v1.0/api/synchronization-synchronizationtemplate-get.md (#9923) Update headings from H3 to H2. * Update synchronization-synchronizationtemplate-update.md (#9924) Update headings from H3 to H2. * Update eventmessage-post-attachments.md (#9926) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update event-post-attachments.md (#9925) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update educationassignment-list-resources.md (#9927) Update formatting * Update provisioningobjectsummary-list.md (#9928) Fix typo in error response example section * Fix trailing pipe tables beta (#9929) * Fix trailing pipe formatting in b2cidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bookingbusiness-update * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudpc-retrievecloudpccountbystatus * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in contenttype-associatewithhubsites * Fix trailing pipe formatting in customdataprovidedresourceuploadsession-uploadfile * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in ediscovery-noncustodialdatasource-post * Fix trailing pipe formatting in get-device-command-status * Fix trailing pipe formatting in governancerolesetting-update * Fix trailing pipe formatting in industrydata-inboundapiflow-post * Fix trailing pipe formatting in itemactivity-getbyinterval * Fix trailing pipe formatting in listitem-createlink * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in message-createreply * Fix trailing pipe formatting in networkaccess-reports-getdestinationsummaries * Fix trailing pipe formatting in networkaccess-reports-getdeviceusagesummary * Fix trailing pipe formatting in pagetemplate-delete * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in rbacapplication-post-roleassignmentschedulerequests * Fix trailing pipe formatting in security-collaborationroot-list-analyzedemails * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in send-device-command * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in team-sendactivitynotification * Fix trailing pipe formatting in termstore-relation-post * Fix trailing pipe formatting in user-list-devices * Fix trailing pipe formatting in user-sendmail * Fix trailing pipe formatting in webpart-delete --------- Co-authored-by: Jarbas Horst * Fix missing closing codeblock 1.0 (#9920) * Fix missing closing http fence in security-auditlogquery-list-records * Fix missing closing http fence in userprotectionscopecontainer-compute * Fix missing closing http fence in usersettings-list-windows --------- Co-authored-by: Jarbas Horst * Update date range (#9931) When requesting a date over 28 days the API returns: "Invalid date value specified: 2026-04-06. Only support data for the past 28 days." * Correct date range for email activity report (#9932) https://github.com/microsoftgraph/microsoft-graph-docs-contrib/pull/9931/changes * Change user ID to placeholder in processContent API (#9921) * Change user ID to placeholder in processContent API Updated user ID placeholder in processContent API calls. * Update userdatasecurityandgovernance-processcontent.md Updated example user ID in processContent API calls. * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * Update simulation-update.md for requirement around simuation state (#9936) * Update simulation-update.md for requirement around simuation state Clarified simulation state as draft as required and updated description. * Minor fixes --------- Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Jarbas Horst Co-authored-by: Jarbas Horst Co-authored-by: learn-build-service-prod[bot] <113403604+learn-build-service-prod[bot]@users.noreply.github.com> Co-authored-by: Learn Build Service GitHub App Co-authored-by: Jarbas Horst <26866873+JarbasHorst@users.noreply.github.com> Co-authored-by: Ryutaro Koma Co-authored-by: Micah Warren <26724012+MicahWW@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Vipul <84970543+VipulMSFT@users.noreply.github.com> * Document provisioning workflow support in Lifecycle Workflows (beta) (#28966) * Document provisioning workflow support in Lifecycle Workflows (beta) Add public preview documentation for provisioning workflow features in Microsoft Graph Lifecycle Workflows beta API. New resources: - workflowSubject (abstract base type) - provisioningObjectWorkflowSubject (concrete implementation) - attributeSetEntry (key-value pairs for attribute sets) - awaitedWorkflowProcessingResult (return type) - customTaskExtensionResponseData (extension response) - provisioningAttributeMapping (execution conditions) - subjectProcessingResult (entity for processing results) New API operations: - workflow: activateAndWait - run: list subjectProcessingResults - subjectProcessingResult: get - taskReport: list subjectProcessingResults Updated enumerations: - Added customTaskExtensionReplyMode enum - Added extensibility to lifecycleTaskCategory - Added extensibility to lifecycleWorkflowCategory - Added extensibilityOnDemand to workflowExecutionType Updates to existing resources: - customTaskExtension: added replyMode property - customTaskExtensionCallbackData: added targetSubject property - taskProcessingResult: added workflowSubject property - run: added subjectProcessingResults relationship and list method - taskReport: added subjectProcessingResults relationship and list method - workflow: added activateAndWait method Also includes changelog, What's New, TOC, and permissions updates. Workload: Microsoft.AAD.LCM Changelog GUID: 6a9c6f5d-eeb3-438e-b9f2-4705836e94fe * Clean up temp-docstubs folder Remove temporary authoring input files. Only temp-docstubs-instructions.md should remain. * Fix documentation validation errors - Fix openType metadata in subjectProcessingResult (was 'id', now false) - Remove tab syntax from HTTP-only examples (tabs require multiple SDK examples) * Fix changelog target and add missing complex types to TOC - Fixed changelog: Changed Target from customTaskExtensionCalloutData to customTaskExtensionCallbackData for targetSubject property - Removed workflowSubjectType enum entry (private preview feature) - Added missing complex types to TOC: attributeSetEntry, awaitedWorkflowProcessingResult, customTaskExtensionResponseData, provisioningAttributeMapping, provisioningObjectWorkflowSubject, workflowSubject * Remove taskProcessingResults expansion example - Removed Example 2 that demonstrated expanding taskProcessingResults relationship - Keep only the basic GET example without expansion * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * fix: update resource link prefixes in customTaskExtensionResponseData doc * Fix reference * Updates * Update reference TOC * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update api-reference/beta/api/identitygovernance-taskreport-list-subjectprocessingresults.md Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update api-reference/beta/api/identitygovernance-run-list-subjectprocessingresults.md Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update api-reference/beta/api/identitygovernance-taskreport-list-subjectprocessingresults.md Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update api-reference/beta/api/identitygovernance-run-list-subjectprocessingresults.md Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update perms * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix subject * Updates * Revert "Update perms" This reverts commit 636a2a571984b1f18c187522635abf853b55be2d. * Perms updates * Remove from docstubs * Fix broken link * fixes from code review * Update api-reference/beta/resources/identitygovernance-subjectprocessingresult.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/identitygovernance-awaitedworkflowprocessingresult.md Co-authored-by: Faith Moraa Ombongi * Update callout data * Updated changelog * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Mason Wolff Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * docs: Clarify MTO tenant API permission-to-property mapping and role access (#28886) * docs: clarify MTO tenant API permission-to-property mapping and role access - Add detailed permission-to-property mapping showing which properties are returned for each permission level - Document that Directory.Read.All also grants full read access to multitenant organization tenant resources (delegated or application) - Clarify that ReadBasic.All only returns displayName and tenantId, and only active tenants - Expand RBAC role documentation to specify that Security Reader and Global Reader can only read basic tenant info - Add guidance on which role is needed for full property access - Updated for both v1.0 and beta API references Addresses IcM 31000000597799 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * docs: add Directory.Read.All clarification to GET member endpoint Apply the same permission-to-property mapping to the multitenantorganizationmember-get API (v1.0 and beta). Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * fix: make RBAC include generic (shared across 6 MTO endpoints) The rbac-multitenantorganization-apis-read.md include is consumed by 6 different endpoints returning different resource types. Remove member-specific property names (displayName, tenantId, role, state, etc.) that are incorrect for the non-member endpoints (MTO object, join request, sync policy template, partner config template). Property-specific details remain in the individual API docs where they are correct and scoped to the right resource type. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * fix: add MultiTenantOrganization.Read.All to beta get-member docs * fix: add MultiTenantOrganization.Read.All to v1.0 get-member docs * fix: remove redundant RBAC statement per reviewer feedback * fix: remove redundant RBAC statement from v1.0 per reviewer feedback * Simplify permission callouts in beta list-tenants per reviewer suggestion * Simplify permission callouts in beta get-member per reviewer suggestion * Simplify permission callouts in v1.0 list-tenants per reviewer suggestion * Simplify permission callouts in v1.0 get-member per reviewer suggestion * fix: restore line endings mangled by Apply-Suggestion edits The 4 'Simplify permission callouts' commits collapsed the 4 MTO API doc files into single lines, breaking YAML frontmatter and Markdown structure. This caused the API Doctor validation to fail (h1-missing, title-missing, bookmark-not-found tabs, ms-date-missing, description-missing). This commit restores proper line endings while preserving the reviewer-approved simplified permission-to-property mapping that documents Directory.Read.All as an accepted permission for the MTO endpoints (per IcM 31000000597799 / MSRC 115408). --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update generated permissions tables with build 223315 (#29089) Co-authored-by: Microsoft Graph DevX Tooling * Move lifecycle workflows preview note from May to June 2026 What's New (#29090) * Move lifecycle workflows preview entry to June 2026 section * Apply suggestion from @FaithOmbongi --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * Adding Redirect URI Restrictions in App Management Policies (#28070) * Initial documentation on Redirect URI restrictions in App Management Policies * Update changelog/Microsoft.DirectoryServices.json Co-authored-by: Faith Moraa Ombongi * Update concepts/whats-new-overview.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiblockeddomainconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiwildcardexcludeformats.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiplatformalloweddomainconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiplatformblockeddomainconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiplatformblockedschemeconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiplatformallowedschemeconfiguration.md Co-authored-by: Faith Moraa Ombongi * Doc: update redirect URI restrictions and examples * Doc: add examples for updating redirect URI restrictions * Doc: update examples for tenantAppManagementPolicy to include redirect URI restrictions * Apply suggestion from @FaithOmbongi --------- Co-authored-by: Faith Moraa Ombongi Co-authored-by: Copilot * Add personal distribution lists beta API documentation (#29046) * Add personal distribution lists beta API documentation Add documentation for personal distribution lists in the user's mailbox, including resource types, API methods, permission includes, changelog, What's New, and TOC mapping updates. New resources: - distributionList (entity type, inherits outlookItem) - distributionListMember (entity type) - member (complex type) - recipientType (enum type) New API methods (9): - List/Create/Get/Update/Delete distributionList - addMembers/deleteMembers actions - List/Get distributionListMembers Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.Exchange.json Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Align distributionLists docs with approved CSDL Apply review feedback from API team. CSDL is source of truth; docs now match the schema exactly. Resources: - member: replace emailAddress with key; add routingType and contactId - distributionListMember: replace emailAddress with contactId; add contact navigation property - distributionList: add notes, personIdentifier properties; add singleValueExtendedProperties navigation property; note that members, notes, personIdentifier are not returned by default API methods: - addMembers, deleteMembers: change return from 204 No Content to 200 OK with updated distributionList object; update request and response examples to use key/routingType/recipientType - Create, Update, Get, List distributionLists: remove members from example responses (not returned by default) - Get distributionList: note that members, notes, personIdentifier require explicit `` - List/Get distributionListMembers: replace emailAddress with contactId in example responses Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Revert "Align distributionLists docs with approved CSDL" This reverts commit 6636446866092d92ffbd80419cc67a3cb3bf885e. * Fix documentation clarity and consistency issues - Add clarity note to distributionlist members property - Mark displayName as optional in member complex type - Add read-only indicators to distributionListMember properties - Clarify parameter requirements in addMembers and deleteMembers * Fix PR review comments: align docs with API.md/CSDL source of truth - Fix string casing in JSON representations (String -> string) - Update addMembers/deleteMembers to return distributionList (not 204) - Remove members from default GET/List responses (requires $select) - Rename emailAddress to key in member complex type, add routingType and contactId - Update distributionListMember to use contactId instead of emailAddress - Fix all API examples to use correct property names Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update reference TOC * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * What's new update. * Fix changelog ChangedApiName format for bound actions Remove 'distributionList: ' prefix from addMembers and deleteMembers entries to match the standard changelog format used by other workloads. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> --------- Co-authored-by: Samuel Mwangi (from Dev Box) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Kimani Mwangi Co-authored-by: Microsoft Graph DevX Tooling --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@us… * Fix Read-only capitalization in appscope.md * Fix Read-only capitalization in azureactivedirectorytenant.md * Fix Read-only capitalization in channel.md * Fix Read-only capitalization in chatmessage.md * Fix Read-only capitalization in cloudpc.md * Fix Read-only capitalization in conditionalaccesspolicy.md * Fix Read-only capitalization in connectedorganizationmembers.md * Fix Read-only capitalization in crosscloudazureactivedirectorytenant.md * Fix Read-only capitalization in customaccesspackageworkflowextension.md * Fix Read-only capitalization in delegatedadminrelationship.md * Fix Read-only capitalization in directoryrole.md * Fix Read-only capitalization in externaldomainfederation.md * Fix Read-only capitalization in groupmembers.md * Fix Read-only capitalization in insights-shared.md * Fix Read-only capitalization in insights-trending.md * Fix Read-only capitalization in insights-used.md * Fix Read-only capitalization in passwordsinglesignonfield.md * Fix Read-only capitalization in plannerroster.md * Fix Read-only capitalization in reminder.md * Fix Read-only capitalization in serviceannouncement.md * Fix Read-only capitalization in singleuser.md * Fix Read-only capitalization in teamstab.md * Fix Read-only capitalization in translationpreferences.md * Fix Read-only capitalization in unifiedroleeligibilityscheduleinstance.md * Fix Read-only capitalization in accesspackageresourcerequest.md * Fix Read-only capitalization in accesspackageassignmentpolicy.md * Fix Read-only capitalization in azureactivedirectorytenant.md * Fix Read-only capitalization in channel.md * Fix Read-only capitalization in chatmessage.md * Fix Read-only capitalization in conditionalaccesspolicy.md * Fix Read-only capitalization in crosscloudazureactivedirectorytenant.md * Fix Read-only capitalization in delegatedadminrelationship.md * Fix Read-only capitalization in directoryrole.md * Fix Read-only capitalization in domainidentitysource.md * Fix Read-only capitalization in externaldomainfederation.md * Fix Read-only capitalization in insights-shared.md * Fix Read-only capitalization in insights-trending.md * Fix Read-only capitalization in reminder.md * Fix Read-only capitalization in serviceannouncement.md * Fix Read-only capitalization in rbacapplication-post-roleassignmentschedulerequests.md * Fix Read-only capitalization in rbacapplication-post-roleeligibilityschedulerequests.md * Fix Read-only capitalization in rbacapplication-rolescheduleinstances.md * Fix Read-only capitalization in rbacapplication-roleschedules.md * Fix Read-only capitalization in rbacapplication-post-roleassignmentschedulerequests.md * Fix Read-only capitalization in rbacapplication-post-roleeligibilityschedulerequests.md * Fix Read-only capitalization in rbacapplication-rolescheduleinstances.md * Fix Read-only capitalization in rbacapplication-roleschedules.md --------- Co-authored-by: Jarbas Horst <26866873+JarbasHorst@users.noreply.github.com> Co-authored-by: learn-build-service-prod[bot] <113403604+learn-build-service-prod[bot]@users.noreply.github.com> Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Learn Build Service GitHub App Co-authored-by: Vipul <84970543+VipulMSFT@users.noreply.github.com> Co-authored-by: Shlomo Sagir <51323195+shsagir@users.noreply.github.com> Co-authored-by: Nick Robinson Co-authored-by: Matthew M. Co-authored-by: Yuvalabiri <154335961+Yuvalabiri@users.noreply.github.com> Co-authored-by: Ruth Waithera Co-authored-by: Jarbas Horst Co-authored-by: Jarbas Horst Co-authored-by: Ryutaro Koma Co-authored-by: Micah Warren <26724012+MicahWW@users.noreply.github.com> Co-authored-by: masonw1211 <31712004+masonw1211@users.noreply.github.com> Co-authored-by: Mason Wolff Co-authored-by: srinivaspadala-msft Co-authored-by: Anton Vanco <254866915+antonvano@users.noreply.github.com> Co-authored-by: Copilot Co-authored-by: Samuel Mwangi Co-authored-by: Samuel Mwangi (from Dev Box) Co-authored-by: Kimani Mwangi --- .../rbacapplication-post-roleassignmentschedulerequests.md | 2 +- .../rbacapplication-post-roleeligibilityschedulerequests.md | 2 +- .../beta/api/rbacapplication-rolescheduleinstances.md | 2 +- api-reference/beta/api/rbacapplication-roleschedules.md | 2 +- .../beta/resources/accesspackageresourcerequest.md | 2 +- api-reference/beta/resources/appscope.md | 2 +- api-reference/beta/resources/azureactivedirectorytenant.md | 4 ++-- api-reference/beta/resources/channel.md | 2 +- api-reference/beta/resources/chatmessage.md | 6 +++--- api-reference/beta/resources/cloudpc.md | 2 +- api-reference/beta/resources/conditionalaccesspolicy.md | 4 ++-- .../beta/resources/connectedorganizationmembers.md | 2 +- .../beta/resources/crosscloudazureactivedirectorytenant.md | 6 +++--- .../beta/resources/customaccesspackageworkflowextension.md | 4 ++-- api-reference/beta/resources/delegatedadminrelationship.md | 2 +- api-reference/beta/resources/directoryrole.md | 2 +- .../beta/resources/ediscovery-ediscoveryapioverview.md | 4 +--- api-reference/beta/resources/externaldomainfederation.md | 6 +++--- api-reference/beta/resources/groupmembers.md | 2 +- api-reference/beta/resources/insights-shared.md | 4 ++-- api-reference/beta/resources/insights-trending.md | 2 +- api-reference/beta/resources/insights-used.md | 4 ++-- api-reference/beta/resources/passwordsinglesignonfield.md | 2 +- api-reference/beta/resources/plannerroster.md | 2 +- api-reference/beta/resources/reminder.md | 2 +- api-reference/beta/resources/serviceannouncement.md | 6 +++--- api-reference/beta/resources/singleuser.md | 2 +- api-reference/beta/resources/teamstab.md | 4 ++-- api-reference/beta/resources/translationpreferences.md | 2 +- .../resources/unifiedroleeligibilityscheduleinstance.md | 2 +- .../v1.0/resources/accesspackageassignmentpolicy.md | 2 +- api-reference/v1.0/resources/azureactivedirectorytenant.md | 4 ++-- api-reference/v1.0/resources/channel.md | 2 +- api-reference/v1.0/resources/chatmessage.md | 6 +++--- api-reference/v1.0/resources/conditionalaccesspolicy.md | 4 ++-- .../v1.0/resources/crosscloudazureactivedirectorytenant.md | 6 +++--- api-reference/v1.0/resources/delegatedadminrelationship.md | 2 +- api-reference/v1.0/resources/directoryrole.md | 2 +- api-reference/v1.0/resources/domainidentitysource.md | 4 ++-- api-reference/v1.0/resources/externaldomainfederation.md | 6 +++--- api-reference/v1.0/resources/insights-shared.md | 4 ++-- api-reference/v1.0/resources/insights-trending.md | 2 +- api-reference/v1.0/resources/reminder.md | 2 +- api-reference/v1.0/resources/serviceannouncement.md | 6 +++--- 44 files changed, 70 insertions(+), 72 deletions(-) diff --git a/api-reference/beta/api/rbacapplication-post-roleassignmentschedulerequests.md b/api-reference/beta/api/rbacapplication-post-roleassignmentschedulerequests.md index 960f58eb90c..cd9cb7bdd4a 100644 --- a/api-reference/beta/api/rbacapplication-post-roleassignmentschedulerequests.md +++ b/api-reference/beta/api/rbacapplication-post-roleassignmentschedulerequests.md @@ -51,7 +51,7 @@ The following table lists the properties that are required when you create the [ |id|String|The unique identifier for the unifiedRoleAssignmentScheduleRequest. Key, not nullable, Read-only.| |action|String|Represents the type of the operation on the role assignment. The possible values are:
  • `AdminAssign`: For administrators to assign roles to users or groups.
  • `AdminRemove`: For administrators to remove users or groups from roles.
  • `AdminUpdate`: For administrators to change existing role assignments.
  • `AdminExtend`: For administrators to extend expiring assignments.
  • `AdminRenew`: For administrators to renew expired assignments.
  • `SelfActivate`: For users to activate their assignments.
  • `SelfDeactivate`: For users to deactivate their active assignments.
  • `SelfExtend`: For users to request to extend their expiring assignments.
  • `SelfRenew`: For users to request to renew their expired assignments.
| |principalId|String|Identifier of the principal to which the assignment is being granted to.| -|roleDefinitionId|String|Identifier of the unifiedRoleDefinition the assignment is for. Read only.| +|roleDefinitionId|String|Identifier of the unifiedRoleDefinition the assignment is for. Read-only.| |directoryScopeId|String|Identifier of the directory object representing the scope of the assignment. The scope of an assignment determines the set of resources for which the principal has been granted access. Directory scopes are shared scopes stored in the directory that are understood by multiple applications. Use `/` for tenant-wide scope. Use **appScopeId** to limit the scope to an application only. | |appScopeId|String|Identifier of the app-specific scope when the assignment scope is app-specific. The scope of an assignment determines the set of resources for which the principal has been granted access. App scopes are scopes that are defined and understood by this application only. Use `/` for tenant-wide app scopes. Use **directoryScopeId** to limit the scope to particular directory objects, for example, administrative units.| |isValidationOnly|Boolean|Specifies whether the call is a validation or an actual call. Only set this property if you want to check whether an activation is subject to additional rules like MFA before actually submitting the request.| diff --git a/api-reference/beta/api/rbacapplication-post-roleeligibilityschedulerequests.md b/api-reference/beta/api/rbacapplication-post-roleeligibilityschedulerequests.md index 21bb5f2dec5..21911f4327b 100644 --- a/api-reference/beta/api/rbacapplication-post-roleeligibilityschedulerequests.md +++ b/api-reference/beta/api/rbacapplication-post-roleeligibilityschedulerequests.md @@ -54,7 +54,7 @@ The following table shows the optional and required properties when you create t |isValidationOnly|Boolean|A Boolean that determines whether the call is a validation or an actual call. Only set this property if you want to check whether an activation is subject to additional rules like MFA before actually submitting the request.| |justification|String|A message provided by users and administrators when create the request about why it is needed. Optional when **action** is `AdminRemove`.| |principalId|String|Identifier of the principal to which the assignment is being granted to. For example, a user or a group. For groups, they must be assignable to roles, that is, the **isAssignableToRole** of the group property set to `true`.| -|roleDefinitionId|String|Identifier of the unifiedRoleDefinition the assignment is for. Required. Read only.| +|roleDefinitionId|String|Identifier of the unifiedRoleDefinition the assignment is for. Required. Read-only.| |scheduleInfo|[requestSchedule](../resources/requestschedule.md)|The schedule object of the role assignment request. This property is not required when the **action** is `AdminRemove`.| |ticketInfo|[ticketInfo](../resources/ticketinfo.md)|The ticketInfo object attached to the role assignment request which includes details of the ticket number and ticket system. Optional.| diff --git a/api-reference/beta/api/rbacapplication-rolescheduleinstances.md b/api-reference/beta/api/rbacapplication-rolescheduleinstances.md index 23ed3434dd5..a606351b4fc 100644 --- a/api-reference/beta/api/rbacapplication-rolescheduleinstances.md +++ b/api-reference/beta/api/rbacapplication-rolescheduleinstances.md @@ -42,7 +42,7 @@ The following table shows the query parameters that can be used with this method |directoryScopeId|String|Identifier of the directory object representing the scope of the assignment. The scope of an assignment determines the set of resources for which the principal has been granted access. Directory scopes are shared scopes stored in the directory that are understood by multiple applications. Use `/` for tenant-wide scope. Use **appScopeId** to limit the scope to an application only. | |appScopeId|String|Identifier of the app-specific scope when the assignment scope is app-specific. The scope of an assignment determines the set of resources for which the principal has been granted access. App scopes are scopes that are defined and understood by this application only. Use `/` for tenant-wide app scopes. Use **directoryScopeId** to limit the scope to particular directory objects, for example, administrative units. | |principalId|String|Identifier of the principal to which the schedules belong. | -|roleDefinitionId|String|Identifier of the unifiedRoleDefinition for the assignment. Read only.| +|roleDefinitionId|String|Identifier of the unifiedRoleDefinition for the assignment. Read-only.| ## Request headers |Name|Description| diff --git a/api-reference/beta/api/rbacapplication-roleschedules.md b/api-reference/beta/api/rbacapplication-roleschedules.md index a8875a2b132..50b605db673 100644 --- a/api-reference/beta/api/rbacapplication-roleschedules.md +++ b/api-reference/beta/api/rbacapplication-roleschedules.md @@ -41,7 +41,7 @@ The following table shows the query parameters that can be used with this method |directoryScopeId|String|Identifier of the directory object representing the scope of the assignment. The scope of an assignment determines the set of resources for which the principal has been granted access. Directory scopes are shared scopes stored in the directory that are understood by multiple applications. Use `/` for tenant-wide scope. Use **appScopeId** to limit the scope to an application only. | |appScopeId|String|Identifier of the app-specific scope when the assignment scope is app-specific. The scope of an assignment determines the set of resources for which the principal has been granted access. App scopes are scopes that are defined and understood by this application only. Use `/` for tenant-wide app scopes. Use **directoryScopeId** to limit the scope to particular directory objects, for example, administrative units. | |principalId|String| Identifier of the principal to which the assignment is being granted to. Can be a group or a user. | -|roleDefinitionId|String|Identifier of the unifiedRoleDefinition for the assignment. Read only.| +|roleDefinitionId|String|Identifier of the unifiedRoleDefinition for the assignment. Read-only.| ## Request headers diff --git a/api-reference/beta/resources/accesspackageresourcerequest.md b/api-reference/beta/resources/accesspackageresourcerequest.md index 7616aeb5a29..55c6ead2caf 100644 --- a/api-reference/beta/resources/accesspackageresourcerequest.md +++ b/api-reference/beta/resources/accesspackageresourcerequest.md @@ -32,7 +32,7 @@ In [Microsoft Entra entitlement management](entitlementmanagement-overview.md), |id|String| Read-only.| |isValidationOnly|Boolean|If set, doesn't add the resource.| |justification|String|The requestor's justification for adding or removing the resource.| -|requestState|String| The outcome of whether the service was able to add the resource to the catalog. The value is `Delivered` if the resource was added or removed. Read-Only.| +|requestState|String| The outcome of whether the service was able to add the resource to the catalog. The value is `Delivered` if the resource was added or removed. Read-only.| |requestStatus|String|Read-only.| |requestType|String|Use `AdminAdd` to add a resource, if the caller is an administrator or resource owner, `AdminUpdate` to update a resource, or `AdminRemove` to remove a resource. | diff --git a/api-reference/beta/resources/appscope.md b/api-reference/beta/resources/appscope.md index 0d957ab47aa..8d79ce581ca 100644 --- a/api-reference/beta/resources/appscope.md +++ b/api-reference/beta/resources/appscope.md @@ -28,7 +28,7 @@ None. | Property | Type | Description | |:-------- |:---- |:----------- | -| displayName | string | Provides the display name of the app-specific resource represented by the app scope. Read only. | +| displayName | string | Provides the display name of the app-specific resource represented by the app scope. Read-only. | | id | string | ID of an app-specific container or resource representing the scope of the assignment. Usually the immutable ID of the resource. The scope of an assignment determines the set of resources for which the principal is granted access. Required. Read-only.| | type | String | Describes the type of app-specific resource represented by the app scope. Read-only. | diff --git a/api-reference/beta/resources/azureactivedirectorytenant.md b/api-reference/beta/resources/azureactivedirectorytenant.md index d82efa3bd9c..36b16bfdd67 100644 --- a/api-reference/beta/resources/azureactivedirectorytenant.md +++ b/api-reference/beta/resources/azureactivedirectorytenant.md @@ -20,8 +20,8 @@ Used in the identity sources of an [connectedOrganization](connectedOrganization | Property | Type | Description | | :--------------------------- | :------------------------ | :---------- | -| displayName |String | The name of the Microsoft Entra tenant. Read only. | -| tenantId |String | The ID of the Microsoft Entra tenant. Read only. | +| displayName |String | The name of the Microsoft Entra tenant. Read-only. | +| tenantId |String | The ID of the Microsoft Entra tenant. Read-only. | ## Relationships diff --git a/api-reference/beta/resources/channel.md b/api-reference/beta/resources/channel.md index 2ad5662cf7f..3cb1c4a651b 100644 --- a/api-reference/beta/resources/channel.md +++ b/api-reference/beta/resources/channel.md @@ -79,7 +79,7 @@ where files are shared, and where tabs are added. |webUrl|String|A hyperlink to the channel in Microsoft Teams. This URL is supplied when you right-click a channel in Microsoft Teams and select Get link to channel. This URL should be treated as an opaque blob, and not parsed. Read-only.| |membershipType|[channelMembershipType](../resources/channel.md#channelmembershiptype-values)|The type of the channel. Can be set during creation and can't be changed. The possible values are: `standard`, `private`, `unknownFutureValue`, `shared`. The default value is `standard`. Use the `Prefer: include-unknown-enum-members` request header to get the following members in this [evolvable enum](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations): `shared`.| |layoutType|[channelLayoutType](../resources/channel.md#channellayouttype-values)|The layout type of the channel. It can be set during creation and updated later. The possible values are: `post`, `chat`, `unknownFutureValue`. The default value is `post`. Channels with the `post` layout use a traditional post‑reply conversation format, and channels with the chat layout provide a chat‑like threading experience similar to group chats.| -|createdDateTime|dateTimeOffset|Read only. Timestamp at which the channel was created.| +|createdDateTime|dateTimeOffset|Read-only. Timestamp at which the channel was created.| |moderationSettings|[channelModerationSettings](../resources/channelmoderationsettings.md)|Settings to configure channel moderation to control who can start new posts and reply to posts in that channel.| |originalCreatedDateTime|dateTimeOffset|Timestamp of the original creation time for the channel. The value is `null` if the channel never entered migration mode.| |summary|[channelSummary](../resources/channelsummary.md)|Contains summary information about the channel, including number of guests, members, owners, and an indicator for members from other tenants. The **summary** property is only returned if it appears in the `$select` clause of the [Get channel](../api/channel-get.md) method.| diff --git a/api-reference/beta/resources/chatmessage.md b/api-reference/beta/resources/chatmessage.md index 8557013ccfd..3f56434a6d7 100644 --- a/api-reference/beta/resources/chatmessage.md +++ b/api-reference/beta/resources/chatmessage.md @@ -69,14 +69,14 @@ Represents an individual chat message within a [channel](channel.md) or [chat](c |channelIdentity|[channelIdentity](channelidentity.md)|If the message was sent in a channel, represents identity of the channel.| |chatId|string|If the message was sent in a **chat**, represents the identity of the **chat**.| |createdDateTime|dateTimeOffset|Timestamp of when the chat message was created.| -|deletedDateTime|dateTimeOffset|Read only. Timestamp at which the chat message was deleted, or null if not deleted. | +|deletedDateTime|dateTimeOffset|Read-only. Timestamp at which the chat message was deleted, or null if not deleted. | |etag| string | Read-only. Version number of the chat message. | |eventDetail|[eventMessageDetail](../resources/eventmessagedetail.md)|Read-only. If present, represents details of an event that happened in a **chat**, a **channel**, or a **team**, for example, adding new members. For event messages, the **messageType** property will be set to `systemEventMessage`.| |from|[chatMessageFromIdentitySet](chatmessagefromidentityset.md)| Details of the sender of the chat message. Can only be set during [migration](/microsoftteams/platform/graph-api/import-messages/import-external-messages-to-teams).| |id|String| Read-only. Unique ID of the message. IDs are unique within a chat/channel/reply-to-message, but might be duplicated in other chats/channels/reply-to-messages.| |importance|string | The importance of the chat message. The possible values are: `normal`, `high`, `urgent`.| -|lastEditedDateTime|dateTimeOffset|Read only. Timestamp when edits to the chat message were made. Triggers an "Edited" flag in the Teams UI. If no edits are made the value is `null`.| -|lastModifiedDateTime|dateTimeOffset|Read only. Timestamp when the chat message is created (initial setting) or modified, including when a reaction is added or removed. | +|lastEditedDateTime|dateTimeOffset|Read-only. Timestamp when edits to the chat message were made. Triggers an "Edited" flag in the Teams UI. If no edits are made the value is `null`.| +|lastModifiedDateTime|dateTimeOffset|Read-only. Timestamp when the chat message is created (initial setting) or modified, including when a reaction is added or removed. | |locale|string|Locale of the chat message set by the client. Always set to `en-us`.| |mentions|[chatMessageMention](chatmessagemention.md) collection| List of entities mentioned in the chat message. Supported entities are: user, bot, team, channel, chat, and tag.| |messageHistory|[chatMessageHistoryItem](../resources/chatmessagehistoryitem.md) collection|List of activity history of a message item, including modification time and actions, such as reactionAdded, reactionRemoved, or reaction changes, on the message. diff --git a/api-reference/beta/resources/cloudpc.md b/api-reference/beta/resources/cloudpc.md index 0d8556d92e4..224a2536a78 100644 --- a/api-reference/beta/resources/cloudpc.md +++ b/api-reference/beta/resources/cloudpc.md @@ -87,7 +87,7 @@ Represents a cloud-managed virtual desktop. This Cloud PC is also enrolled in In |sharedDeviceDetail|[cloudPcFrontlineSharedDeviceDetail](../resources/cloudpcfrontlineshareddevicedetail.md)|Indicates the Cloud PC device details associated with the frontline shared service plan, including the user's UPN and the session start date and time.| |status|[cloudPcStatus](#cloudpcstatus-values)|The status of the Cloud PC. The possible values are: `notProvisioned`, `provisioning`, `provisioned`, `inGracePeriod`, `deprovisioning`, `failed`, `provisionedWithWarnings`, `resizing`, `restoring`, `pendingProvision`, `unknownFutureValue`, `movingRegion`, `resizePendingLicense`, `modifyingSingleSignOn`, `refreshPolicyConfiguration`, and `preparing`. Use the `Prefer: include-unknown-enum-members` request header to get the following values from this [evolvable enum](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations): `movingRegion`, `resizePendingLicense`, `modifyingSingleSignOn`, `refreshPolicyConfiguration`, and `preparing`.| |statusDetail|[cloudPcStatusDetail](../resources/cloudpcstatusdetail.md)|Indicates the detailed status associated with Cloud PC, including error/warning code, error/warning message, additionalInformation. For example, `{ "code": "internalServerError", "message": "There was an error during the Cloud PC upgrade. Please contact support.", "additionalInformation": null }`. | -|connectionSetting|[cloudPcConnectionSetting](../resources/cloudpcconnectionsetting.md)|The connection setting of the Cloud PC. Possible values: `enableSingleSignOn`. Read Only.| +|connectionSetting|[cloudPcConnectionSetting](../resources/cloudpcconnectionsetting.md)|The connection setting of the Cloud PC. Possible values: `enableSingleSignOn`. Read-only.| |userAccountType|[cloudPcUserAccountType](../resources/cloudpcorganizationsettings.md#cloudpcuseraccounttype-values)|The account type of the user on provisioned Cloud PCs. The possible values are: `standardUser`, `administrator`, `unknownFutureValue`.| |userExperienceType|[cloudPcUserExperienceType](../resources/cloudpcprovisioningpolicy.md#cloudpcuserexperiencetype-values)|Specifies the type of cloud object the end user can access. The possible values are: `cloudPc`, `cloudApp`, `unknownFutureValue`. When set to `cloudPc`, it indicates that the end user can access the entire desktop. When set to `cloudApp`, it indicates that the end user can only access cloud apps published under the associated provisioning policy. Since the cloud app experience also creates Cloud PC devices that appear in the Cloud PC device list, this property helps differentiate them. The default value is `cloudPc`. This property is defined in the provisioning policy.| |userDetail|[cloudPcEntraUserDetail](../resources/cloudpcentrauserdetail.md)|The user details (for example, ID and display name) for the user associated with a Reserve Cloud PC assignment. Read-only.| diff --git a/api-reference/beta/resources/conditionalaccesspolicy.md b/api-reference/beta/resources/conditionalaccesspolicy.md index 1d3e31a7ecf..203c6a21900 100644 --- a/api-reference/beta/resources/conditionalaccesspolicy.md +++ b/api-reference/beta/resources/conditionalaccesspolicy.md @@ -37,12 +37,12 @@ Inherits from [policyDeletableItem](../resources/policydeletableitem.md). |Property|Type|Description| |:---|:---|:---| |conditions|[conditionalAccessConditionSet](conditionalaccessconditionset.md)| Specifies the rules that must be met for the policy to apply. Required. | -|createdDateTime|DateTimeOffset| The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Readonly. | +|createdDateTime|DateTimeOffset| The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Read-only. | |description|String| Not used. | |displayName|String| Specifies a display name for the conditionalAccessPolicy object. | |grantControls|[conditionalAccessGrantControls](conditionalaccessgrantcontrols.md)| Specifies the grant controls that must be fulfilled to pass the policy. | |id|String| Specifies the identifier of a conditionalAccessPolicy object. Read-only.| -|modifiedDateTime| DateTimeOffset|The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Readonly. | +|modifiedDateTime| DateTimeOffset|The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Read-only. | |sessionControls|[conditionalAccessSessionControls](conditionalaccesssessioncontrols.md)| Specifies the session controls that are enforced after sign-in. | |state|conditionalAccessPolicyState| Specifies the state of the conditionalAccessPolicy object. The possible values are: `enabled`, `disabled`, `enabledForReportingButNotEnforced`. Required. | |deletedDateTime|DateTimeOffset|Shows the last date and time the policy was deleted.Inherited from [policyDeletableItem](../resources/policydeletableitem.md).| diff --git a/api-reference/beta/resources/connectedorganizationmembers.md b/api-reference/beta/resources/connectedorganizationmembers.md index 15f947a3fb8..dcca5f4975d 100644 --- a/api-reference/beta/resources/connectedorganizationmembers.md +++ b/api-reference/beta/resources/connectedorganizationmembers.md @@ -23,7 +23,7 @@ This type has the following properties: | Property | Type | Description | | :--------------------------- | :------------------------ | :---------- | | id |String | The ID of the connected organization in entitlement management. | -| description |String | The name of the connected organization. Read only. | +| description |String | The name of the connected organization. Read-only. | | isBackup | Boolean | Not used now. | ## Relationships diff --git a/api-reference/beta/resources/crosscloudazureactivedirectorytenant.md b/api-reference/beta/resources/crosscloudazureactivedirectorytenant.md index 3e1bcbee21a..f9c8cf8a555 100644 --- a/api-reference/beta/resources/crosscloudazureactivedirectorytenant.md +++ b/api-reference/beta/resources/crosscloudazureactivedirectorytenant.md @@ -21,9 +21,9 @@ Used in the identity sources of a [connectedOrganization](connectedOrganization. | Property | Type | Description | | :--------------------------- | :------------------------ | :---------- | -| cloudInstance | String | The ID of the cloud where the tenant is located, one of `microsoftonline.com`, `microsoftonline.us` or `partner.microsoftonline.cn`. Read only. | -| displayName |String | The name of the Microsoft Entra tenant. Read only. | -| tenantId |String | The ID of the Microsoft Entra tenant. Read only. | +| cloudInstance | String | The ID of the cloud where the tenant is located, one of `microsoftonline.com`, `microsoftonline.us` or `partner.microsoftonline.cn`. Read-only. | +| displayName |String | The name of the Microsoft Entra tenant. Read-only. | +| tenantId |String | The ID of the Microsoft Entra tenant. Read-only. | ## Relationships diff --git a/api-reference/beta/resources/customaccesspackageworkflowextension.md b/api-reference/beta/resources/customaccesspackageworkflowextension.md index 80cfbef16cc..c9e4faabd3b 100644 --- a/api-reference/beta/resources/customaccesspackageworkflowextension.md +++ b/api-reference/beta/resources/customaccesspackageworkflowextension.md @@ -41,8 +41,8 @@ Inherits and derived from [customCalloutExtension](../resources/customcalloutext |authenticationConfiguration|[customExtensionAuthenticationConfiguration](../resources/customextensionauthenticationconfiguration.md)|Configuration for securing the API call to the logic app. For example, using OAuth client credentials flow. Inherited from [customCalloutExtension](../resources/customcalloutextension.md).| |clientConfiguration|[customExtensionClientConfiguration](../resources/customextensionclientconfiguration.md)| HTTP connection settings that define how long Microsoft Entra ID can wait for a connection to a logic app, how many times you can retry a timed-out connection and the exception scenarios when retries are allowed. Inherited from [customCalloutExtension](../resources/customcalloutextension.md).| |createdDateTime|DateTimeOffset|Represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Read-only.| -|description|String|Description for the customAccessPackageWorkflowExtension object. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Read only.| -|displayName|String|Display name for the customAccessPackageWorkflowExtension object. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Read only. Supports `$filter` (`contains`).| +|description|String|Description for the customAccessPackageWorkflowExtension object. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Read-only.| +|displayName|String|Display name for the customAccessPackageWorkflowExtension object. Inherited from [customCalloutExtension](../resources/customcalloutextension.md). Read-only. Supports `$filter` (`contains`).| |endpointConfiguration|[customExtensionEndpointConfiguration](../resources/customextensionendpointconfiguration.md)|The type and details for configuring the endpoint to call the logic app's workflow. Inherited from [customCalloutExtension](../resources/customcalloutextension.md).| |id|String|Identifier for the customAccessPackageWorkflowExtension object. Inherited from [entity](../resources/entity.md).| |lastModifiedDateTime|DateTimeOffset|Represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Read-only.| diff --git a/api-reference/beta/resources/delegatedadminrelationship.md b/api-reference/beta/resources/delegatedadminrelationship.md index 663018673aa..0abb200de00 100644 --- a/api-reference/beta/resources/delegatedadminrelationship.md +++ b/api-reference/beta/resources/delegatedadminrelationship.md @@ -39,7 +39,7 @@ Represents a delegated admin relationship between a partner and customer. |endDateTime|DateTimeOffset|The date and time in ISO 8601 format and in UTC time when the **status** of relationship changes to either `terminated` or `expired`. Calculated as `endDateTime = activatedDateTime + duration`. Read-only.| |id|String|The unique identifier of the relationship. Read-only. Inherited from [entity](../resources/entity.md).| |lastModifiedDateTime|DateTimeOffset|The date and time in ISO 8601 format and in UTC time when the relationship was last modified. Read-only.| -|status|delegatedAdminRelationshipStatus|The status of the relationship. Read Only. The possible values are: `activating`, `active`, `approvalPending`, `approved`, `created`, `expired`, `expiring`, `terminated`, `terminating`, `terminationRequested`, `unknownFutureValue`. Supports `$orderby`.| +|status|delegatedAdminRelationshipStatus|The status of the relationship. Read-only. The possible values are: `activating`, `active`, `approvalPending`, `approved`, `created`, `expired`, `expiring`, `terminated`, `terminating`, `terminationRequested`, `unknownFutureValue`. Supports `$orderby`.| ### delegatedAdminRelationshipStatus values | Member | Description | diff --git a/api-reference/beta/resources/directoryrole.md b/api-reference/beta/resources/directoryrole.md index 133a76fb0f0..6a9ecc2ea7e 100644 --- a/api-reference/beta/resources/directoryrole.md +++ b/api-reference/beta/resources/directoryrole.md @@ -45,7 +45,7 @@ This resource supports: |description|String|The description for the directory role. Read-only. Supports `$filter` (`eq`), `$search`, `$select`.| |displayName|String|The display name for the directory role. Read-only. Supports `$filter` (`eq`), `$search`, `$select`. | |id|String|The unique identifier for the directory role. Inherited from [directoryObject](directoryobject.md). Key, Not nullable, Read-only. Supports `$filter` (`eq`), `$select`.| -|roleTemplateId|String| The **id** of the [directoryRoleTemplate](directoryroletemplate.md) that this role is based on. The property must be specified when activating a directory role in a tenant with a POST operation. After the directory role has been activated, the property is read only. Supports `$filter` (`eq`), `$select`. | +|roleTemplateId|String| The **id** of the [directoryRoleTemplate](directoryroletemplate.md) that this role is based on. The property must be specified when activating a directory role in a tenant with a POST operation. After the directory role has been activated, the property is read-only. Supports `$filter` (`eq`), `$select`. | ## Relationships | Relationship | Type |Description| diff --git a/api-reference/beta/resources/ediscovery-ediscoveryapioverview.md b/api-reference/beta/resources/ediscovery-ediscoveryapioverview.md index d88251c4ebd..5a049b36e25 100644 --- a/api-reference/beta/resources/ediscovery-ediscoveryapioverview.md +++ b/api-reference/beta/resources/ediscovery-ediscoveryapioverview.md @@ -18,9 +18,7 @@ The Microsoft Graph APIs for eDiscovery enable organizations to automate repetit > The Microsoft Graph APIs for eDiscovery are intended for the use of eDiscovery operations for litigation, investigation, and regulatory requests. These APIs shouldn't be used as a substitute for journaling data out of the Microsoft 365 system or any other mass download. > [!NOTE] -> During the preview, usage of these APIs may require subscriptions to specific Microsoft offerings and is subject to the [Microsoft APIs Terms of Use](/legal/microsoft-apis/terms-of-use?context=graph%252fcontext). Upon general availability, Microsoft may require you or your customer to pay additional fees. -> -> Currently, the eDiscovery APIs in Microsoft Graph only work with Advanced eDiscovery cases. +> Entitlement and feature availability for the eDiscovery APIs in Microsoft Graph are determined by Microsoft Purview eDiscovery configuration and service-side enablement. For current licensing and capability guidance, see the [Microsoft Purview eDiscovery documentation](/purview/edisc). The eDiscovery API is defined in the OData subnamespace, microsoft.graph.ediscovery. The API includes the following key entities. diff --git a/api-reference/beta/resources/externaldomainfederation.md b/api-reference/beta/resources/externaldomainfederation.md index d9f95cfc7b5..1a38d378c3c 100644 --- a/api-reference/beta/resources/externaldomainfederation.md +++ b/api-reference/beta/resources/externaldomainfederation.md @@ -20,9 +20,9 @@ Used in the identity sources of an [connectedOrganization](connectedOrganization | Property | Type | Description | | :--------------------------- | :------------------------ | :---------- | -| displayName |String | The name of the identity source, typically also the domain name. Read only. | -| domainName |String | The domain name. Read only. | -| issuerUri |String | The issuerURI of the incoming federation. Read only. | +| displayName |String | The name of the identity source, typically also the domain name. Read-only. | +| domainName |String | The domain name. Read-only. | +| issuerUri |String | The issuerURI of the incoming federation. Read-only. | ## Relationships diff --git a/api-reference/beta/resources/groupmembers.md b/api-reference/beta/resources/groupmembers.md index d58ad0a6de1..c783786a0da 100644 --- a/api-reference/beta/resources/groupmembers.md +++ b/api-reference/beta/resources/groupmembers.md @@ -22,7 +22,7 @@ The `@odata.type` value `#microsoft.graph.groupMembers` indicates that this type | Property | Type | Description | | :--------------------------- | :------------------------ | :---------- | | id |String | The ID of the group in Microsoft Entra ID. | -| description |String | The name of the group in Microsoft Entra ID. Read only. | +| description |String | The name of the group in Microsoft Entra ID. Read-only. | | isBackup | Boolean | For **groupMembers** in an approval stage, this property indicates that the group members are a backup fallback approver. | ## Relationships diff --git a/api-reference/beta/resources/insights-shared.md b/api-reference/beta/resources/insights-shared.md index 886f77cf87f..124e2bba882 100644 --- a/api-reference/beta/resources/insights-shared.md +++ b/api-reference/beta/resources/insights-shared.md @@ -31,8 +31,8 @@ An insight representing files shared with or by a specific user. The following s | Property | Type | Description | | --------------------- | ---------------------------------------------------------- | ------------------------------------------------------------------------------------------------ | -| id | String | Unique identifier of the relationship. Read only. | -| lastShared | [sharingDetail](insights-sharingdetail.md) | Details about the shared item. Read only. | +| id | String | Unique identifier of the relationship. Read-only. | +| lastShared | [sharingDetail](insights-sharingdetail.md) | Details about the shared item. Read-only. | | resourceVisualization | [resourceVisualization](insights-resourcevisualization.md) | Properties that you can use to visualize the document in your experience. Read-only | | resourceReference | [resourceReference](insights-resourcereference.md) | Reference properties of the shared document, such as the url and type of the document. Read-only | diff --git a/api-reference/beta/resources/insights-trending.md b/api-reference/beta/resources/insights-trending.md index 9763ec0a39c..8ec1497e9f9 100644 --- a/api-reference/beta/resources/insights-trending.md +++ b/api-reference/beta/resources/insights-trending.md @@ -26,7 +26,7 @@ Rich relationship connecting a user to documents that are trending around the us | Property | Type | Description | | --------------------- | ---------------------------------------------------------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ | -| id | String | Unique identifier of the relationship. Read only. | +| id | String | Unique identifier of the relationship. Read-only. | | weight | Double | Value indicating how much the document is currently trending. The larger the number, the more the document is currently trending around the user (the more relevant it is). Returned documents are sorted by this value. | | resourceVisualization | [resourceVisualization](insights-resourcevisualization.md) | Properties that you can use to visualize the document in your experience. | | resourceReference | [resourceReference](insights-resourcereference.md) | Reference properties of the trending document, such as the url and type of the document. | diff --git a/api-reference/beta/resources/insights-used.md b/api-reference/beta/resources/insights-used.md index 17d8fce7b46..fa408127a07 100644 --- a/api-reference/beta/resources/insights-used.md +++ b/api-reference/beta/resources/insights-used.md @@ -29,8 +29,8 @@ An insight representing documents used by a specific user. The insights return t | Property | Type | Description | | ------------- |--------------- | -------------| -| id | String | Unique identifier of the relationship. Read only. | -| lastUsed | [usageDetails](insights-usagedetails.md) | Information about when the item was last viewed or modified by the user. Read only. | +| id | String | Unique identifier of the relationship. Read-only. | +| lastUsed | [usageDetails](insights-usagedetails.md) | Information about when the item was last viewed or modified by the user. Read-only. | | resourceVisualization | [resourceVisualization](insights-resourcevisualization.md) | Properties that you can use to visualize the document in your experience. Read-only | | resourceReference | [resourceReference](insights-resourcereference.md) | Reference properties of the used document, such as the url and type of the document. Read-only | diff --git a/api-reference/beta/resources/passwordsinglesignonfield.md b/api-reference/beta/resources/passwordsinglesignonfield.md index 13a8ccbd654..1f02f1acb12 100644 --- a/api-reference/beta/resources/passwordsinglesignonfield.md +++ b/api-reference/beta/resources/passwordsinglesignonfield.md @@ -19,7 +19,7 @@ Contains the fields to capture to fill the use credentials for Password-based si | Property | Type | Description | |:-------------|:------------|:------------| |customizedLabel|String|Title/label override for customization.| -|defaultLabel|String|Label that would be used if no customizedLabel is provided. Read only.| +|defaultLabel|String|Label that would be used if no customizedLabel is provided. Read-only.| |fieldId|String|Id used to identity the field type. This is an internal ID and possible values are `param_1`, `param_2`, `param_userName`, `param_password`.| |type|String| Type of the credential. The values can be `text`, `password`.| diff --git a/api-reference/beta/resources/plannerroster.md b/api-reference/beta/resources/plannerroster.md index 0d8e5492c3b..fb5288d9400 100644 --- a/api-reference/beta/resources/plannerroster.md +++ b/api-reference/beta/resources/plannerroster.md @@ -39,7 +39,7 @@ Deleting a **plannerRoster** also deletes the plan and all tasks in the plan. A |Property|Type|Description| |:---|:---|:---| | assignedSensitivityLabel | [sensitivityLabelAssignmentMethod](../resources/sensitivitylabelassignment.md#sensitivitylabelassignmentmethod-values)| The sensitivity label applied to the roster. If mandatory labeling is enabled for the user and no label is specified, the user can't create the roster. Also, if labels are mandatory for the user, the user can't change the label of the roster to `null`. The possible values are: `standard`, `privileged`, `auto`, `unknownFutureValue`.| -|id|String|Identifier of the **plannerRoster**. Read only. Inherited from [entity](../resources/entity.md)| +|id|String|Identifier of the **plannerRoster**. Read-only. Inherited from [entity](../resources/entity.md)| ## Relationships |Relationship|Type|Description| diff --git a/api-reference/beta/resources/reminder.md b/api-reference/beta/resources/reminder.md index cb4a860aca2..fbe9438712a 100644 --- a/api-reference/beta/resources/reminder.md +++ b/api-reference/beta/resources/reminder.md @@ -21,7 +21,7 @@ A reminder for an [event](event.md) in a user [calendar](calendar.md). |:---------------|:--------|:----------| |changeKey|String|Identifies the version of the reminder. Every time the reminder is changed, **changeKey** changes as well. This allows Exchange to apply changes to the correct version of the object.| |eventEndTime|[DateTimeTimeZone](datetimetimezone.md)|The date, time and time zone that the event ends.| -|eventId|String|The unique ID of the event. Read only.| +|eventId|String|The unique ID of the event. Read-only.| |eventLocation|[Location](location.md)|The location of the event.| |eventStartTime|[DateTimeTimeZone](datetimetimezone.md)|The date, time, and time zone that the event starts.| |eventSubject|String|The text of the event's subject line.| diff --git a/api-reference/beta/resources/serviceannouncement.md b/api-reference/beta/resources/serviceannouncement.md index c11d540ec11..8da27f31e61 100644 --- a/api-reference/beta/resources/serviceannouncement.md +++ b/api-reference/beta/resources/serviceannouncement.md @@ -29,9 +29,9 @@ None. ## Relationships |Relationship|Type|Description| |-|-|-| -|messages|Collection([serviceUpdateMessage](serviceupdatemessage.md))|A collection of service messages for tenant. This property is a contained navigation property, it is nullable and readonly.| -|healthOverviews|Collection([serviceHealth](servicehealth.md))|A collection of service health information for tenant. This property is a contained navigation property, it is nullable and readonly.| -|issues|Collection([serviceHealthIssue](servicehealthissue.md))|A collection of service issues for tenant. This property is a contained navigation property, it is nullable and readonly.| +|messages|Collection([serviceUpdateMessage](serviceupdatemessage.md))|A collection of service messages for tenant. This property is a contained navigation property, it is nullable and read-only.| +|healthOverviews|Collection([serviceHealth](servicehealth.md))|A collection of service health information for tenant. This property is a contained navigation property, it is nullable and read-only.| +|issues|Collection([serviceHealthIssue](servicehealthissue.md))|A collection of service issues for tenant. This property is a contained navigation property, it is nullable and read-only.| ## JSON representation The following JSON representation shows the resource type. diff --git a/api-reference/beta/resources/singleuser.md b/api-reference/beta/resources/singleuser.md index b1fff93d3c9..45a68deba53 100644 --- a/api-reference/beta/resources/singleuser.md +++ b/api-reference/beta/resources/singleuser.md @@ -23,7 +23,7 @@ This type has the following properties: | Property | Type | Description | | :--------------------------- | :------------------------ | :---------- | | id |String | The ID of the user in Microsoft Entra ID. | -| description |String | The name of the user in Microsoft Entra ID. Read only. | +| description |String | The name of the user in Microsoft Entra ID. Read-only. | | isBackup | Boolean | For a **singleUser** in an approval stage, indicates whether the user is a backup fallback approver. | ## Relationships diff --git a/api-reference/beta/resources/teamstab.md b/api-reference/beta/resources/teamstab.md index 3a9e9491841..7040321f0e4 100644 --- a/api-reference/beta/resources/teamstab.md +++ b/api-reference/beta/resources/teamstab.md @@ -39,12 +39,12 @@ For more information about tabs, see [Build tabs for Teams](/microsoftteams/plat |Property|Type|Description| |:---------------|:--------|:----------| -| id | string | Identifier that uniquely identifies a specific instance of a channel tab. Read only. | +| id | string | Identifier that uniquely identifies a specific instance of a channel tab. Read-only. | | displayName | string | Name of the tab. | | name (deprecated) | string | Name of the tab. | | teamsAppId (deprecated)| string | App definition identifier of the tab. This value can't be changed after tab creation. Because this property is deprecated, we recommend expanding **teamsApp** to retrieve the application that is linked to the tab. | | sortOrderIndex | string | Index of the order used for sorting tabs. | -| webUrl | string | Deep link URL of the tab instance. Read only. | +| webUrl | string | Deep link URL of the tab instance. Read-only. | | configuration | [teamsTabConfiguration](teamstabconfiguration.md) | Container for custom settings applied to a tab. The tab is considered configured only once this property is set. | ## Relationships diff --git a/api-reference/beta/resources/translationpreferences.md b/api-reference/beta/resources/translationpreferences.md index 65d206e7bb7..064ec003839 100644 --- a/api-reference/beta/resources/translationpreferences.md +++ b/api-reference/beta/resources/translationpreferences.md @@ -21,7 +21,7 @@ Represents an entry in a user's translation language override list. |---------------------|-------------------------------------------------------------|-----------------------------------------------------------------------| |translationBehavior |[translationBehavior](#translationbehavior-values) |The user's preferred translation behavior.

Returned by default. Not nullable. | |languageOverrides |[translationLanguageOverride](translationLanguageOverride.md) collection | Translation override behavior for languages, if any.

Returned by default.| -|untranslatedLanguages|String collection| The list of languages the user does not need translated. This is computed from the **authoringLanguages** collection in [regionalAndLanguageSettings](regionalandlanguagesettings.md), and the **languageOverrides** collection in **translationPreferences**. The list specifies neutral culture values that include the language code without any country or region association. For example, it would specify "fr" for the neutral French culture, but not "fr-FR" for the French culture in France.

Returned by default. Read only.| +|untranslatedLanguages|String collection| The list of languages the user does not need translated. This is computed from the **authoringLanguages** collection in [regionalAndLanguageSettings](regionalandlanguagesettings.md), and the **languageOverrides** collection in **translationPreferences**. The list specifies neutral culture values that include the language code without any country or region association. For example, it would specify "fr" for the neutral French culture, but not "fr-FR" for the French culture in France.

Returned by default. Read-only.| ### translationBehavior values diff --git a/api-reference/beta/resources/unifiedroleeligibilityscheduleinstance.md b/api-reference/beta/resources/unifiedroleeligibilityscheduleinstance.md index 3d325f3b984..1f074b45106 100644 --- a/api-reference/beta/resources/unifiedroleeligibilityscheduleinstance.md +++ b/api-reference/beta/resources/unifiedroleeligibilityscheduleinstance.md @@ -35,7 +35,7 @@ Inherits from [unifiedRoleScheduleInstanceBase](../resources/unifiedroleschedule |id|String|The unique identifier for the roleEligibilityScheduleInstance. Key, not nullable, Read-only.Inherited from [unifiedRoleScheduleInstanceBase](../resources/unifiedrolescheduleinstancebase.md).| |memberType|String|Membership type of the assignment. It can either be `Inherited`, `Direct`, or `Group`.| |principalId|String|Identifier of the principal to which the assignment is being granted to. Can be a group or a user. Inherited from [unifiedRoleScheduleInstanceBase](../resources/unifiedrolescheduleinstancebase.md).| -|roleDefinitionId|String|Identifier of the unifiedRoleDefinition the assignment is for. Read only. Inherited from [unifiedRoleScheduleInstanceBase](../resources/unifiedrolescheduleinstancebase.md).
Supports `$filter` (`eq`).| +|roleDefinitionId|String|Identifier of the unifiedRoleDefinition the assignment is for. Read-only. Inherited from [unifiedRoleScheduleInstanceBase](../resources/unifiedrolescheduleinstancebase.md).
Supports `$filter` (`eq`).| |roleEligibilityScheduleId|String|Identifier of the parent roleEligibilitySchedule for this instance.| |startDateTime|DateTimeOffset|Time that the roleEligibilityScheduleInstance will start.| diff --git a/api-reference/v1.0/resources/accesspackageassignmentpolicy.md b/api-reference/v1.0/resources/accesspackageassignmentpolicy.md index 47fc3a84e91..a5f84e49b08 100644 --- a/api-reference/v1.0/resources/accesspackageassignmentpolicy.md +++ b/api-reference/v1.0/resources/accesspackageassignmentpolicy.md @@ -34,7 +34,7 @@ To assign a user to an access package, [create an accessPackageAssignmentRequest |description|String|The description of the policy.| |displayName|String|The display name of the policy.| |expiration|[expirationPattern](../resources/expirationpattern.md)|The expiration date for assignments created in this policy.| -|id|String|Read only.| +|id|String|Read-only.| |modifiedDateTime|DateTimeOffset|The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`.| |requestApprovalSettings|[accessPackageAssignmentApprovalSettings](../resources/accesspackageassignmentapprovalsettings.md)|Specifies the settings for approval of requests for an access package assignment through this policy. For example, if approval is required for new requests.| |requestorSettings|[accessPackageAssignmentRequestorSettings](../resources/accesspackageassignmentrequestorsettings.md)|Provides additional settings to select who can create a request for an access package assignment through this policy, and what they can include in their request.| diff --git a/api-reference/v1.0/resources/azureactivedirectorytenant.md b/api-reference/v1.0/resources/azureactivedirectorytenant.md index 6472d653a4c..0651aedd05a 100644 --- a/api-reference/v1.0/resources/azureactivedirectorytenant.md +++ b/api-reference/v1.0/resources/azureactivedirectorytenant.md @@ -17,8 +17,8 @@ Used in the identity sources of an [connectedOrganization](connectedOrganization ## Properties |Property|Type|Description| |:---|:---|:---| -|displayName|String|The name of the Microsoft Entra tenant. Read only. | -|tenantId|String|The ID of the Microsoft Entra tenant. Read only. | +|displayName|String|The name of the Microsoft Entra tenant. Read-only. | +|tenantId|String|The ID of the Microsoft Entra tenant. Read-only. | ## Relationships None. diff --git a/api-reference/v1.0/resources/channel.md b/api-reference/v1.0/resources/channel.md index cc773730aad..4a50bb1a1f3 100644 --- a/api-reference/v1.0/resources/channel.md +++ b/api-reference/v1.0/resources/channel.md @@ -66,7 +66,7 @@ where files are shared, and where tabs are added. | Property | Type |Description| |:---------------|:--------|:----------| -|createdDateTime|dateTimeOffset|Read only. Timestamp at which the channel was created.| +|createdDateTime|dateTimeOffset|Read-only. Timestamp at which the channel was created.| |description|String|Optional textual description for the channel.| |displayName|String|Channel name as it will appear to the user in Microsoft Teams. The maximum length is 50 characters.| |email|String| The email address for sending messages to the channel. Read-only.| diff --git a/api-reference/v1.0/resources/chatmessage.md b/api-reference/v1.0/resources/chatmessage.md index ef9c5e6474d..dac358f3f92 100644 --- a/api-reference/v1.0/resources/chatmessage.md +++ b/api-reference/v1.0/resources/chatmessage.md @@ -67,14 +67,14 @@ Represents an individual chat message within a [channel](channel.md) or [chat](c |chatId|string|If the message was sent in a chat, represents the identity of the chat.| |channelIdentity|[channelIdentity](channelidentity.md)|If the message was sent in a channel, represents identity of the channel.| |createdDateTime|dateTimeOffset|Timestamp of when the chat message was created.| -|deletedDateTime|dateTimeOffset|Read only. Timestamp at which the chat message was deleted, or null if not deleted. | +|deletedDateTime|dateTimeOffset|Read-only. Timestamp at which the chat message was deleted, or null if not deleted. | |etag| string | Read-only. Version number of the chat message. | |eventDetail|[eventMessageDetail](../resources/eventmessagedetail.md)|Read-only. If present, represents details of an event that happened in a **chat**, a **channel**, or a **team**, for example, adding new members. For event messages, the **messageType** property will be set to `systemEventMessage`.| |from|[chatMessageFromIdentitySet](chatmessagefromidentityset.md)| Details of the sender of the chat message. Can only be set during [migration](/microsoftteams/platform/graph-api/import-messages/import-external-messages-to-teams).| |id|String| Read-only. Unique ID of the message. IDs are unique within a chat/channel/reply-to-message, but might be duplicated in other chats/channels/reply-to-messages. | |importance|string | The importance of the chat message. The possible values are: `normal`, `high`, `urgent`.| -|lastModifiedDateTime|dateTimeOffset|Read only. Timestamp when the chat message is created (initial setting) or modified, including when a reaction is added or removed. | -|lastEditedDateTime|dateTimeOffset|Read only. Timestamp when edits to the chat message were made. Triggers an "Edited" flag in the Teams UI. If no edits are made the value is `null`.| +|lastModifiedDateTime|dateTimeOffset|Read-only. Timestamp when the chat message is created (initial setting) or modified, including when a reaction is added or removed. | +|lastEditedDateTime|dateTimeOffset|Read-only. Timestamp when edits to the chat message were made. Triggers an "Edited" flag in the Teams UI. If no edits are made the value is `null`.| |locale|string|Locale of the chat message set by the client. Always set to `en-us`.| |mentions|[chatMessageMention](chatmessagemention.md) collection| List of entities mentioned in the chat message. Supported entities are: user, bot, team, channel, chat, and tag.| |messageHistory|[chatMessageHistoryItem](../resources/chatmessagehistoryitem.md) collection|List of activity history of a message item, including modification time and actions, such as reactionAdded, reactionRemoved, or reaction changes, on the message. diff --git a/api-reference/v1.0/resources/conditionalaccesspolicy.md b/api-reference/v1.0/resources/conditionalaccesspolicy.md index 147250b6d62..e74d2c7cf60 100644 --- a/api-reference/v1.0/resources/conditionalaccesspolicy.md +++ b/api-reference/v1.0/resources/conditionalaccesspolicy.md @@ -30,11 +30,11 @@ Represents a Microsoft Entra Conditional Access policy. Conditional access polic | Property | Type | Description | |:-------------|:------------|:------------| |conditions|[conditionalAccessConditionSet](conditionalaccessconditionset.md)| Specifies the rules that must be met for the policy to apply. Required. | -|createdDateTime|DateTimeOffset| The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Readonly. | +|createdDateTime|DateTimeOffset| The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Read-only. | |displayName|String| Specifies a display name for the conditionalAccessPolicy object. | |grantControls|[conditionalAccessGrantControls](conditionalaccessgrantcontrols.md)| Specifies the grant controls that must be fulfilled to pass the policy. | |id|String| Specifies the identifier of a conditionalAccessPolicy object. Read-only.| -|modifiedDateTime| DateTimeOffset|The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Readonly. | +|modifiedDateTime| DateTimeOffset|The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Read-only. | |sessionControls|[conditionalAccessSessionControls](conditionalaccesssessioncontrols.md)| Specifies the session controls that are enforced after sign-in. | |state|conditionalAccessPolicyState| Specifies the state of the conditionalAccessPolicy object. The possible values are: `enabled`, `disabled`, `enabledForReportingButNotEnforced`. Required. | |templateId|String|Specifies the unique identifier of a [Conditional Access template](../resources/conditionalaccesstemplate.md). Inherited from [entity](../resources/entity.md).| diff --git a/api-reference/v1.0/resources/crosscloudazureactivedirectorytenant.md b/api-reference/v1.0/resources/crosscloudazureactivedirectorytenant.md index b5bc8bfe363..6659e169bb6 100644 --- a/api-reference/v1.0/resources/crosscloudazureactivedirectorytenant.md +++ b/api-reference/v1.0/resources/crosscloudazureactivedirectorytenant.md @@ -19,9 +19,9 @@ Used in the identity sources of a [connectedOrganization](connectedOrganization. | Property | Type | Description | | :--------------------------- | :------------------------ | :---------- | -| cloudInstance | String | The ID of the cloud where the tenant is located, one of `microsoftonline.com`, `microsoftonline.us` or `partner.microsoftonline.cn`. Read only. | -| displayName |String | The name of the Microsoft Entra tenant. Read only. | -| tenantId |String | The ID of the Microsoft Entra tenant. Read only. | +| cloudInstance | String | The ID of the cloud where the tenant is located, one of `microsoftonline.com`, `microsoftonline.us` or `partner.microsoftonline.cn`. Read-only. | +| displayName |String | The name of the Microsoft Entra tenant. Read-only. | +| tenantId |String | The ID of the Microsoft Entra tenant. Read-only. | ## Relationships diff --git a/api-reference/v1.0/resources/delegatedadminrelationship.md b/api-reference/v1.0/resources/delegatedadminrelationship.md index f86a1007af2..59b82860b5e 100644 --- a/api-reference/v1.0/resources/delegatedadminrelationship.md +++ b/api-reference/v1.0/resources/delegatedadminrelationship.md @@ -37,7 +37,7 @@ Represents a delegated admin relationship between a partner and customer. |endDateTime|DateTimeOffset|The date and time in ISO 8601 format and in UTC time when the **status** of relationship changes to either `terminated` or `expired`. Calculated as `endDateTime = activatedDateTime + duration`. Read-only.| |id|String|The unique identifier of the relationship. Read-only. Inherited from [entity](../resources/entity.md).| |lastModifiedDateTime|DateTimeOffset|The date and time in ISO 8601 format and in UTC time when the relationship was last modified. Read-only.| -|status|delegatedAdminRelationshipStatus|The status of the relationship. Read Only. The possible values are: `activating`, `active`, `approvalPending`, `approved`, `created`, `expired`, `expiring`, `terminated`, `terminating`, `terminationRequested`, `unknownFutureValue`. Supports `$orderby`.| +|status|delegatedAdminRelationshipStatus|The status of the relationship. Read-only. The possible values are: `activating`, `active`, `approvalPending`, `approved`, `created`, `expired`, `expiring`, `terminated`, `terminating`, `terminationRequested`, `unknownFutureValue`. Supports `$orderby`.| ### delegatedAdminRelationshipStatus values | Member | Description | diff --git a/api-reference/v1.0/resources/directoryrole.md b/api-reference/v1.0/resources/directoryrole.md index c1dd2a150b1..bbc94c5b08a 100644 --- a/api-reference/v1.0/resources/directoryrole.md +++ b/api-reference/v1.0/resources/directoryrole.md @@ -41,7 +41,7 @@ This resource supports: |description|String|The description for the directory role. Read-only. Supports `$filter` (`eq`), `$search`, `$select`. | |displayName|String|The display name for the directory role. Read-only. Supports `$filter` (`eq`), `$search`, `$select`. | |id|String|The unique identifier for the directory role. Inherited from [directoryObject](directoryobject.md). Key, Not nullable, Read-only. Supports `$filter` (`eq`), `$select`.| -|roleTemplateId|String| The **id** of the [directoryRoleTemplate](directoryroletemplate.md) that this role is based on. The property must be specified when activating a directory role in a tenant with a POST operation. After the directory role has been activated, the property is read only. Supports `$filter` (`eq`), `$select`. | +|roleTemplateId|String| The **id** of the [directoryRoleTemplate](directoryroletemplate.md) that this role is based on. The property must be specified when activating a directory role in a tenant with a POST operation. After the directory role has been activated, the property is read-only. Supports `$filter` (`eq`), `$select`. | ## Relationships | Relationship | Type |Description| diff --git a/api-reference/v1.0/resources/domainidentitysource.md b/api-reference/v1.0/resources/domainidentitysource.md index 455e5ad43b9..e3075e732d3 100644 --- a/api-reference/v1.0/resources/domainidentitysource.md +++ b/api-reference/v1.0/resources/domainidentitysource.md @@ -16,8 +16,8 @@ Used in the identity sources of an [connectedOrganization](connectedOrganization ## Properties |Property|Type|Description| |:---|:---|:---| -|displayName|String|The name of the identity source, typically also the domain name. Read only. | -|domainName|String|The domain name. Read only. | +|displayName|String|The name of the identity source, typically also the domain name. Read-only. | +|domainName|String|The domain name. Read-only. | ## Relationships None. diff --git a/api-reference/v1.0/resources/externaldomainfederation.md b/api-reference/v1.0/resources/externaldomainfederation.md index 573fab86843..29d73bb4e30 100644 --- a/api-reference/v1.0/resources/externaldomainfederation.md +++ b/api-reference/v1.0/resources/externaldomainfederation.md @@ -17,9 +17,9 @@ Used in the identity sources of an [connectedOrganization](connectedOrganization ## Properties |Property|Type|Description| |:---|:---|:---| -|displayName|String|The name of the identity source, typically also the domain name. Read only. | -|domainName|String|The domain name. Read only. | -|issuerUri|String|The issuerURI of the incoming federation. Read only. | +|displayName|String|The name of the identity source, typically also the domain name. Read-only. | +|domainName|String|The domain name. Read-only. | +|issuerUri|String|The issuerURI of the incoming federation. Read-only. | ## Relationships None. diff --git a/api-reference/v1.0/resources/insights-shared.md b/api-reference/v1.0/resources/insights-shared.md index 9ae03dc19c6..a66650fd527 100644 --- a/api-reference/v1.0/resources/insights-shared.md +++ b/api-reference/v1.0/resources/insights-shared.md @@ -29,8 +29,8 @@ An insight representing files shared with or by a specific user. The following s | Property | Type | Description | | ------------- |--------------- | -------------| -| id | String | Unique identifier of the relationship. Read only. | -| lastShared | [sharingDetail](insights-sharingdetail.md) | Details about the shared item. Read only. | +| id | String | Unique identifier of the relationship. Read-only. | +| lastShared | [sharingDetail](insights-sharingdetail.md) | Details about the shared item. Read-only. | | resourceReference | [resourceReference](insights-resourcereference.md) | Reference properties of the shared document, such as the url and type of the document. Read-only | | resourceVisualization | [resourceVisualization](insights-resourcevisualization.md) | Properties that you can use to visualize the document in your experience. Read-only | diff --git a/api-reference/v1.0/resources/insights-trending.md b/api-reference/v1.0/resources/insights-trending.md index bde1ee423aa..4df3215486f 100644 --- a/api-reference/v1.0/resources/insights-trending.md +++ b/api-reference/v1.0/resources/insights-trending.md @@ -24,7 +24,7 @@ Rich relationship connecting a user to documents that are trending around the us | Property | Type | Description | | ------------- |--------------- | -------------| -| id | String | Unique identifier of the relationship. Read only. | +| id | String | Unique identifier of the relationship. Read-only. | | lastModifiedDateTime | DateTimeOffset | The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`| | resourceReference | [resourceReference](insights-resourcereference.md) | Reference properties of the trending document, such as the url and type of the document. | | resourceVisualization | [resourceVisualization](insights-resourcevisualization.md) | Properties that you can use to visualize the document in your experience. | diff --git a/api-reference/v1.0/resources/reminder.md b/api-reference/v1.0/resources/reminder.md index b77bd2cfde6..31d7d8e12d8 100644 --- a/api-reference/v1.0/resources/reminder.md +++ b/api-reference/v1.0/resources/reminder.md @@ -19,7 +19,7 @@ A reminder for an [event](event.md) in a user [calendar](calendar.md). |:---------------|:--------|:----------| |changeKey|String|Identifies the version of the reminder. Every time the reminder is changed, **changeKey** changes as well. This allows Exchange to apply changes to the correct version of the object.| |eventEndTime|[DateTimeTimeZone](datetimetimezone.md)|The date, time and time zone that the event ends.| -|eventId|String|The unique ID of the event. Read only.| +|eventId|String|The unique ID of the event. Read-only.| |eventLocation|[Location](location.md)|The location of the event.| |eventStartTime|[DateTimeTimeZone](datetimetimezone.md)|The date, time, and time zone that the event starts.| |eventSubject|String|The text of the event's subject line.| diff --git a/api-reference/v1.0/resources/serviceannouncement.md b/api-reference/v1.0/resources/serviceannouncement.md index 8f31821036b..05af5b42ab8 100644 --- a/api-reference/v1.0/resources/serviceannouncement.md +++ b/api-reference/v1.0/resources/serviceannouncement.md @@ -28,9 +28,9 @@ None. ## Relationships |Relationship|Type|Description| |-|-|-| -|healthOverviews|Collection([serviceHealth](servicehealth.md))|A collection of service health information for tenant. This property is a contained navigation property, it is nullable and readonly.| -|issues|Collection([serviceHealthIssue](servicehealthissue.md))|A collection of service issues for tenant. This property is a contained navigation property, it is nullable and readonly.| -|messages|Collection([serviceUpdateMessage](serviceupdatemessage.md))|A collection of service messages for tenant. This property is a contained navigation property, it is nullable and readonly.| +|healthOverviews|Collection([serviceHealth](servicehealth.md))|A collection of service health information for tenant. This property is a contained navigation property, it is nullable and read-only.| +|issues|Collection([serviceHealthIssue](servicehealthissue.md))|A collection of service issues for tenant. This property is a contained navigation property, it is nullable and read-only.| +|messages|Collection([serviceUpdateMessage](serviceupdatemessage.md))|A collection of service messages for tenant. This property is a contained navigation property, it is nullable and read-only.| ## JSON representation The following JSON representation shows the resource type. From da2e6861cf8ac8078053c6385209ec2cddd96599 Mon Sep 17 00:00:00 2001 From: "snippet-gen-pull-automation[bot]" <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Date: Mon, 22 Jun 2026 13:30:31 +0300 Subject: [PATCH 17/52] 2026-06-22: Automated permissions reference update (#29125) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling --- concepts/permissions-reference.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/concepts/permissions-reference.md b/concepts/permissions-reference.md index f4bf89af16a..f84ef798743 100644 --- a/concepts/permissions-reference.md +++ b/concepts/permissions-reference.md @@ -7,7 +7,7 @@ ms.localizationpriority: high ms.topic: reference ms.subservice: entra-applications ms.custom: graphiamtop20, scenarios:getting-started -ms.date: 06/15/2026 +ms.date: 06/22/2026 #Customer intent: As a developer, I want to learn more about the permissions available in Microsoft Graph, so that I understand the impact of granting specific permissions to my app. --- From 22a46018b9058c9f4b855cc6a85c906e2847f51d Mon Sep 17 00:00:00 2001 From: "snippet-gen-pull-automation[bot]" <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Date: Mon, 22 Jun 2026 13:30:50 +0300 Subject: [PATCH 18/52] Update generated permissions tables with build 224016 (#29124) Co-authored-by: Microsoft Graph DevX Tooling --- .../beta/api/plannerplan-list-historyitems.md | 6 +----- api-reference/beta/api/security-detectionrule-get.md | 8 ++------ .../beta/api/security-detectionrule-update.md | 8 ++------ .../api/security-rulesroot-delete-detectionrules.md | 8 ++------ .../api/security-rulesroot-list-detectionrules.md | 8 ++------ .../api/security-rulesroot-post-detectionrules.md | 8 ++------ .../plannerplan-list-historyitems-permissions.md | 6 +++--- .../security-detectionrule-delete-permissions.md | 12 ------------ .../security-detectionrule-list-permissions.md | 12 ------------ ...-detectionrule-post-detectionrules-permissions.md | 12 ------------ ...ty-rulesroot-delete-detectionrules-permissions.md | 1 + ...rity-rulesroot-list-detectionrules-permissions.md | 1 + ...rity-rulesroot-post-detectionrules-permissions.md | 1 + 13 files changed, 17 insertions(+), 74 deletions(-) delete mode 100644 api-reference/beta/includes/permissions/security-detectionrule-delete-permissions.md delete mode 100644 api-reference/beta/includes/permissions/security-detectionrule-list-permissions.md delete mode 100644 api-reference/beta/includes/permissions/security-detectionrule-post-detectionrules-permissions.md diff --git a/api-reference/beta/api/plannerplan-list-historyitems.md b/api-reference/beta/api/plannerplan-list-historyitems.md index 3bb11ce6b7d..c62086f9377 100644 --- a/api-reference/beta/api/plannerplan-list-historyitems.md +++ b/api-reference/beta/api/plannerplan-list-historyitems.md @@ -20,11 +20,7 @@ Get the [history](../resources/plannerhistoryitem.md) of changes made to tasks w Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/plannerplan-list-historyitems-permissions.md)] ## HTTP request diff --git a/api-reference/beta/api/security-detectionrule-get.md b/api-reference/beta/api/security-detectionrule-get.md index 920f150274d..c9bfa7a6625 100644 --- a/api-reference/beta/api/security-detectionrule-get.md +++ b/api-reference/beta/api/security-detectionrule-get.md @@ -22,11 +22,7 @@ With custom detections, you can proactively monitor for and respond to various e Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-detectionrule-get-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-read](../includes/rbac-for-apis/rbac-security-detection-rules-apis-read.md)] @@ -146,4 +142,4 @@ Content-Type: application/json } } } -``` \ No newline at end of file +``` diff --git a/api-reference/beta/api/security-detectionrule-update.md b/api-reference/beta/api/security-detectionrule-update.md index 2ffda6e4dfa..0a561f8237c 100644 --- a/api-reference/beta/api/security-detectionrule-update.md +++ b/api-reference/beta/api/security-detectionrule-update.md @@ -20,11 +20,7 @@ Update the properties of a [detectionRule](../resources/security-detectionrule.m Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-detectionrule-update-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-write](../includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md)] @@ -159,4 +155,4 @@ Content-Type: application/json } } } -``` \ No newline at end of file +``` diff --git a/api-reference/beta/api/security-rulesroot-delete-detectionrules.md b/api-reference/beta/api/security-rulesroot-delete-detectionrules.md index 7101572d78c..1510348ad21 100644 --- a/api-reference/beta/api/security-rulesroot-delete-detectionrules.md +++ b/api-reference/beta/api/security-rulesroot-delete-detectionrules.md @@ -20,11 +20,7 @@ Delete a [detectionRule](../resources/security-detectionrule.md) object. Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-rulesroot-delete-detectionrules-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-write](../includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md)] @@ -78,4 +74,4 @@ The following example shows the response. --> ``` http HTTP/1.1 204 No Content -``` \ No newline at end of file +``` diff --git a/api-reference/beta/api/security-rulesroot-list-detectionrules.md b/api-reference/beta/api/security-rulesroot-list-detectionrules.md index 546928abb48..dbf8aa058ee 100644 --- a/api-reference/beta/api/security-rulesroot-list-detectionrules.md +++ b/api-reference/beta/api/security-rulesroot-list-detectionrules.md @@ -20,11 +20,7 @@ Get a list of [detectionRule](../resources/security-detectionrule.md) objects an Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-rulesroot-list-detectionrules-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-read](../includes/rbac-for-apis/rbac-security-detection-rules-apis-read.md)] @@ -148,4 +144,4 @@ Content-Type: application/json } ] } -``` \ No newline at end of file +``` diff --git a/api-reference/beta/api/security-rulesroot-post-detectionrules.md b/api-reference/beta/api/security-rulesroot-post-detectionrules.md index ee48784dcaa..a8afa419fd3 100644 --- a/api-reference/beta/api/security-rulesroot-post-detectionrules.md +++ b/api-reference/beta/api/security-rulesroot-post-detectionrules.md @@ -20,11 +20,7 @@ Create a new [detectionRule](../resources/security-detectionrule.md) object. Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-rulesroot-post-detectionrules-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-write](../includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md)] @@ -210,4 +206,4 @@ Location: https://graph.microsoft.com/beta/security/rules/detectionRules/office- } } } -``` \ No newline at end of file +``` diff --git a/api-reference/beta/includes/permissions/plannerplan-list-historyitems-permissions.md b/api-reference/beta/includes/permissions/plannerplan-list-historyitems-permissions.md index 8327fd827b1..e6f029cd184 100644 --- a/api-reference/beta/includes/permissions/plannerplan-list-historyitems-permissions.md +++ b/api-reference/beta/includes/permissions/plannerplan-list-historyitems-permissions.md @@ -1,12 +1,12 @@ --- -description: Automatically generated file. DO NOT MODIFY +description: "Automatically generated file. DO NOT MODIFY" ms.topic: include ms.localizationpriority: medium --- -|Permission type|Least privileged permission|Higher privileged permissions| +|Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|Tasks.Read|Group.Read.All, Group.ReadWrite.All, Tasks.ReadWrite| +|Delegated (work or school account)|Tasks.Read|Tasks.ReadWrite| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|Tasks.Read.All|Tasks.ReadWrite.All| diff --git a/api-reference/beta/includes/permissions/security-detectionrule-delete-permissions.md b/api-reference/beta/includes/permissions/security-detectionrule-delete-permissions.md deleted file mode 100644 index 9a1a69542be..00000000000 --- a/api-reference/beta/includes/permissions/security-detectionrule-delete-permissions.md +++ /dev/null @@ -1,12 +0,0 @@ ---- -description: "Automatically generated file. DO NOT MODIFY" -ms.topic: include -ms.localizationpriority: medium ---- - -|Permission type|Least privileged permissions|Higher privileged permissions| -|:---|:---|:---| -|Delegated (work or school account)|CustomDetection.ReadWrite.All|Not available.| -|Delegated (personal Microsoft account)|Not supported.|Not supported.| -|Application|CustomDetection.ReadWrite.All|Not available.| - diff --git a/api-reference/beta/includes/permissions/security-detectionrule-list-permissions.md b/api-reference/beta/includes/permissions/security-detectionrule-list-permissions.md deleted file mode 100644 index 7e882632185..00000000000 --- a/api-reference/beta/includes/permissions/security-detectionrule-list-permissions.md +++ /dev/null @@ -1,12 +0,0 @@ ---- -description: "Automatically generated file. DO NOT MODIFY" -ms.topic: include -ms.localizationpriority: medium ---- - -|Permission type|Least privileged permissions|Higher privileged permissions| -|:---|:---|:---| -|Delegated (work or school account)|CustomDetection.Read.All|CustomDetection.ReadWrite.All| -|Delegated (personal Microsoft account)|Not supported.|Not supported.| -|Application|CustomDetection.Read.All|CustomDetection.ReadWrite.All| - diff --git a/api-reference/beta/includes/permissions/security-detectionrule-post-detectionrules-permissions.md b/api-reference/beta/includes/permissions/security-detectionrule-post-detectionrules-permissions.md deleted file mode 100644 index 9a1a69542be..00000000000 --- a/api-reference/beta/includes/permissions/security-detectionrule-post-detectionrules-permissions.md +++ /dev/null @@ -1,12 +0,0 @@ ---- -description: "Automatically generated file. DO NOT MODIFY" -ms.topic: include -ms.localizationpriority: medium ---- - -|Permission type|Least privileged permissions|Higher privileged permissions| -|:---|:---|:---| -|Delegated (work or school account)|CustomDetection.ReadWrite.All|Not available.| -|Delegated (personal Microsoft account)|Not supported.|Not supported.| -|Application|CustomDetection.ReadWrite.All|Not available.| - diff --git a/api-reference/beta/includes/permissions/security-rulesroot-delete-detectionrules-permissions.md b/api-reference/beta/includes/permissions/security-rulesroot-delete-detectionrules-permissions.md index 09905b20ce8..9a1a69542be 100644 --- a/api-reference/beta/includes/permissions/security-rulesroot-delete-detectionrules-permissions.md +++ b/api-reference/beta/includes/permissions/security-rulesroot-delete-detectionrules-permissions.md @@ -9,3 +9,4 @@ ms.localizationpriority: medium |Delegated (work or school account)|CustomDetection.ReadWrite.All|Not available.| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|CustomDetection.ReadWrite.All|Not available.| + diff --git a/api-reference/beta/includes/permissions/security-rulesroot-list-detectionrules-permissions.md b/api-reference/beta/includes/permissions/security-rulesroot-list-detectionrules-permissions.md index ce584032b88..7e882632185 100644 --- a/api-reference/beta/includes/permissions/security-rulesroot-list-detectionrules-permissions.md +++ b/api-reference/beta/includes/permissions/security-rulesroot-list-detectionrules-permissions.md @@ -9,3 +9,4 @@ ms.localizationpriority: medium |Delegated (work or school account)|CustomDetection.Read.All|CustomDetection.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|CustomDetection.Read.All|CustomDetection.ReadWrite.All| + diff --git a/api-reference/beta/includes/permissions/security-rulesroot-post-detectionrules-permissions.md b/api-reference/beta/includes/permissions/security-rulesroot-post-detectionrules-permissions.md index 09905b20ce8..9a1a69542be 100644 --- a/api-reference/beta/includes/permissions/security-rulesroot-post-detectionrules-permissions.md +++ b/api-reference/beta/includes/permissions/security-rulesroot-post-detectionrules-permissions.md @@ -9,3 +9,4 @@ ms.localizationpriority: medium |Delegated (work or school account)|CustomDetection.ReadWrite.All|Not available.| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|CustomDetection.ReadWrite.All|Not available.| + From b0002fae08315d14d2ee804164151882cc2f7231 Mon Sep 17 00:00:00 2001 From: Copilot <198982749+Copilot@users.noreply.github.com> Date: Mon, 22 Jun 2026 13:31:56 +0300 Subject: [PATCH 19/52] Fix whats-new ordering (#29128) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> --- concepts/whats-new-overview.md | 28 +++++++++++----------------- 1 file changed, 11 insertions(+), 17 deletions(-) diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index 635ca82bc9c..1a96328a138 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -30,18 +30,15 @@ Evaluate applications in the Microsoft Entra application gallery by using the [a ### Identity and access | Governance -Added the **type** property to the [accessPackageResourceRole](/graph/api/resources/accesspackageresourcerole) resource to indicate whether an Azure resource role is active or eligible, enabling PIM-based role assignments for Azure resources in access packages. +- Added the **type** property to the [accessPackageResourceRole](/graph/api/resources/accesspackageresourcerole) resource to indicate whether an Azure resource role is active or eligible, enabling PIM-based role assignments for Azure resources in access packages. +- Added the [accessPackageSuggestion](/graph/api/resources/accesspackagesuggestion) resource type and related methods for discovering suggested access packages based on related people insights and assignment history. Use the [filterByCurrentUser](/graph/api/accesspackagesuggestions-filterbycurrentuser) function to retrieve personalized suggestions. +- Added the **approverInformationVisibility** property to the [accessPackageApprovalStage](/graph/api/resources/accesspackageapprovalstage) resource to control whether approver information is visible to requestors. +- Added the [endUserSettings](/graph/api/resources/endusersettings) resource type and related methods for configuring access package suggestion behavior, including related people insight levels and approver detail visibility. ### Identity and access | Identity and sign-in Added support for programmatic FIDO2 passkey registration. Use the [creationOptions](/graph/api/fido2authenticationmethod-creationoptions) function to get WebAuthn credential creation options, then complete registration by posting the new **publicKeyCredential** property to the [fido2AuthenticationMethod](/graph/api/resources/fido2authenticationmethod) resource. -### Identity and access | Governance - -- Added the [accessPackageSuggestion](/graph/api/resources/accesspackagesuggestion) resource type and related methods for discovering suggested access packages based on related people insights and assignment history. Use the [filterByCurrentUser](/graph/api/accesspackagesuggestions-filterbycurrentuser) function to retrieve personalized suggestions. -- Added the **approverInformationVisibility** property to the [accessPackageApprovalStage](/graph/api/resources/accesspackageapprovalstage) resource to control whether approver information is visible to requestors. -- Added the [endUserSettings](/graph/api/resources/endusersettings) resource type and related methods for configuring access package suggestion behavior, including related people insight levels and approver detail visibility. - ### People and workplace intelligence - Updated [Manage profile source precedence in Microsoft 365](/graph/profilepriority-configure-profilepropertysetting) to clarify supported data sources for HR and work position data, explain how source precedence affects single-value versus multi-value properties, and add guidance on correctly configuring and removing tenant-level settings using the Microsoft Graph API or PowerShell. @@ -63,18 +60,10 @@ Application permissions for the [user: translateExchangeIds](/graph/api/user-tra ## June 2026: New in preview only -### Security | Data security and compliance - -Added the [policyTipAction](/graph/api/resources/policytipaction?view=graph-rest-beta&preserve-view=true) resource type and the `policyTip` member to the **dlpAction** enumeration. This enables applications to receive policy tip guidance as a standalone action when DLP policies are triggered through the processContent and protectionScopes APIs. - ### Backup storage Use the new full workload backup APIs to protect entire Microsoft 365 workloads (SharePoint Online, OneDrive for work or school, and Exchange Online) with minimal administrative overhead. Instead of manually selecting each item to protect, you can create a protection policy that backs up all data in a workload and then specify only the items to exclude from backup. For more information, see [exclusionUnitBase](/graph/api/resources/exclusionunitbase?view=graph-rest-beta&preserve-view=true) and [exclusionUnitBulkAdditionJob](/graph/api/resources/exclusionunitbulkadditionjob?view=graph-rest-beta&preserve-view=true). -### Teamwork and communications | Calls and online meetings - -Use the **isRegistrationRequired** property on the [virtualEventTownhall](/graph/api/resources/virtualeventtownhall?view=graph-rest-beta&preserve-view=true) and [virtualEventWebinar](/graph/api/resources/virtualeventwebinar?view=graph-rest-beta&preserve-view=true) resources to specify if attendees must complete the registration flow before they can attend. - ### Device and app management | Cloud PC Use the [cloudPcProvisioningPolicy: apply](/graph/api/cloudpcprovisioningpolicy-apply?view=graph-rest-beta&preserve-view=true) method to apply policy settings such as `region` and `singleSignOn`. This method also supports reprovisioning for frontline shared mode Cloud PCs by using the **reservePercentage** parameter to control the percentage of Cloud PCs that remain available during the process. @@ -111,6 +100,10 @@ Personal distribution lists enable users to group email recipients together and - Added the **tenantId** property to the [userAccount](/graph/api/resources/security-useraccount?view=graph-rest-beta&preserve-view=true) resource to provide the Entra home tenant ID for the compromised user account indicated in a [security alert](/graph/api/resources/security-alert?view=graph-rest-beta&preserve-view=true) where the alert evidence is related to a [processEvidence](/graph/api/resources/security-processevidence?view=graph-rest-beta&preserve-view=true), [userEvidence](/graph/api/resources/security-userevidence?view=graph-rest-beta&preserve-view=true), or [mailboxEvidence](/graph/api/resources/security-mailboxevidence?view=graph-rest-beta&preserve-view=true). - Updated the [custom detection rules API](/graph/api/resources/security-detectionrule?view=graph-rest-beta&preserve-view=true) in Microsoft 365 Defender with new capabilities, including: Infrastructure-as-code (IaC) support through user-defined IDs, custom run frequency, flexible entity mapping, custom alert details, and configurable response actions. +### Security | Data security and compliance + +Added the [policyTipAction](/graph/api/resources/policytipaction?view=graph-rest-beta&preserve-view=true) resource type and the `policyTip` member to the **dlpAction** enumeration. This enables applications to receive policy tip guidance as a standalone action when DLP policies are triggered through the processContent and protectionScopes APIs. + ### Sites and lists Added the [sharePointReportSettings](/graph/api/resources/sharepointreportsettings?view=graph-rest-beta&preserve-view=true) resource type and related methods for managing SharePoint API usage report metrics. Use the [enableApiUsageReport](/graph/api/sharepointreportsettings-enableapiusagereport?view=graph-rest-beta&preserve-view=true) and [disableApiUsageReport](/graph/api/sharepointreportsettings-disableapiusagereport?view=graph-rest-beta&preserve-view=true) methods to control which metrics are collected and reported for your tenant. @@ -121,12 +114,13 @@ Added support for tracking task history in Planner. Use the [plannerHistoryItem] ### Teamwork and communications | Calls and online meetings +- Use the **isRegistrationRequired** property on the [virtualEventTownhall](/graph/api/resources/virtualeventtownhall?view=graph-rest-beta&preserve-view=true) and [virtualEventWebinar](/graph/api/resources/virtualeventwebinar?view=graph-rest-beta&preserve-view=true) resources to specify if attendees must complete the registration flow before they can attend. - Use the **meetingType** property on [onlineMeeting](/graph/api/resources/onlinemeeting?view=graph-rest-beta&preserve-view=true) and [virtualEventSession](/graph/api/resources/virtualeventsession?view=graph-rest-beta&preserve-view=true) to determine whether a meeting is ad hoc, scheduled, recurring, a broadcast, or a *Meet now* session. The property is defined on the [onlineMeetingBase](/graph/api/resources/onlinemeetingbase?view=graph-rest-beta&preserve-view=true) resource and uses the [onlineMeetingType](/graph/api/resources/onlinemeetingbase?view=graph-rest-beta&preserve-view=true#onlinemeetingtype-values) enumeration. - Use the **cloudVideoInteropInfo** property on [onlineMeeting](/graph/api/resources/onlinemeeting?view=graph-rest-beta&preserve-view=true) and [virtualEventSession](/graph/api/resources/virtualeventsession?view=graph-rest-beta&preserve-view=true) to get the conferencing device integration settings for [Cloud Video Interop](/microsoftteams/cloud-video-interop). ### Teamwork and communications | Shift management -The **timeZone** property of the [schedule](/graph/api/resources/schedule?view=graph-rest-beta&preserve-view=true) resource must be set to an IANA time zone name, such as `America/Chicago` or `Europe/London`. For more information, see [Create or replace schedule](/graph/api/team-put-schedule?view=graph-rest-beta&preserve-view=true).‎ +The **timeZone** property of the [schedule](/graph/api/resources/schedule?view=graph-rest-beta&preserve-view=true) resource must be set to an IANA time zone name, such as `America/Chicago` or `Europe/London`. For more information, see [Create or replace schedule](/graph/api/team-put-schedule?view=graph-rest-beta&preserve-view=true). ### Tenants | Cross-tenant migration @@ -281,7 +275,7 @@ Use the **scopeInfo** property on [teamsAppInstallation](/graph/api/resources/te Added support for `$expand` on the **items** relationship of the [teamworkSection](/graph/api/resources/teamworksection?view=graph-rest-beta&preserve-view=true) resource to retrieve a section together with its items in a single request. -### Tenants | Cross-tenant access +### Tenants | Cross-tenant access Use the **sensorTypes** property on [sensorCandidate](/graph/api/resources/security-sensorcandidate?view=graph-rest-beta&preserve-view=true) to get the list of device types for the sensor. Added the following properties and their associated complex types to the [crossTenantAccessPolicyConfigurationDefault](/graph/api/resources/crosstenantaccesspolicyconfigurationdefault?view=graph-rest-beta&preserve-view=true) and [crossTenantAccessPolicyConfigurationPartner](/graph/api/resources/crosstenantaccesspolicyconfigurationpartner?view=graph-rest-beta&preserve-view=true) resources of cross-tenant access policy APIs to support Microsoft 365 collaboration and app service connect settings: From 00b7c6704d5e2524d92bd213d11424c52ecaa610 Mon Sep 17 00:00:00 2001 From: "snippet-gen-pull-automation[bot]" <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Date: Mon, 22 Jun 2026 16:20:15 +0300 Subject: [PATCH 20/52] Update cloud support status (#29130) Co-authored-by: Microsoft Graph DevX Tooling --- api-reference/beta/api/crosstenantmigrationjob-migrate.md | 2 ++ api-reference/beta/api/crosstenantmigrationjob-validate.md | 2 ++ api-reference/beta/api/security-detectionrule-get.md | 2 ++ api-reference/beta/api/security-detectionrule-update.md | 2 ++ .../beta/api/security-rulesroot-delete-detectionrules.md | 2 ++ .../beta/api/security-rulesroot-list-detectionrules.md | 2 ++ .../beta/api/security-rulesroot-post-detectionrules.md | 2 ++ 7 files changed, 14 insertions(+) diff --git a/api-reference/beta/api/crosstenantmigrationjob-migrate.md b/api-reference/beta/api/crosstenantmigrationjob-migrate.md index b89ee2980e9..48817b4fcdb 100644 --- a/api-reference/beta/api/crosstenantmigrationjob-migrate.md +++ b/api-reference/beta/api/crosstenantmigrationjob-migrate.md @@ -18,6 +18,8 @@ Migrate a [cross-tenant migration job](../resources/crosstenantmigrationjob.md) This action is asynchronous. After you call the **migrate** API, poll the [Get crossTenantMigrationJob](../api/crosstenantmigrationjob-get.md) endpoint to check for a terminal status of `completed`, `completedWithErrors`, or `failed`. +[!INCLUDE [national-cloud-support](../../includes/global-only.md)] + ## Permissions Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). diff --git a/api-reference/beta/api/crosstenantmigrationjob-validate.md b/api-reference/beta/api/crosstenantmigrationjob-validate.md index ebf5aa2d4d6..d66e89c1e29 100644 --- a/api-reference/beta/api/crosstenantmigrationjob-validate.md +++ b/api-reference/beta/api/crosstenantmigrationjob-validate.md @@ -18,6 +18,8 @@ Validate the configuration of a [cross-tenant migration job](../resources/crosst This action is asynchronous. After you call the **validate** API, poll the [Get crossTenantMigrationJob](../api/crosstenantmigrationjob-get.md) endpoint to check for a terminal status of `validatePassed` or `validateFailed`. +[!INCLUDE [national-cloud-support](../../includes/global-only.md)] + ## Permissions Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). diff --git a/api-reference/beta/api/security-detectionrule-get.md b/api-reference/beta/api/security-detectionrule-get.md index c9bfa7a6625..571f12ab519 100644 --- a/api-reference/beta/api/security-detectionrule-get.md +++ b/api-reference/beta/api/security-detectionrule-get.md @@ -18,6 +18,8 @@ Read the properties and relationships of a [detectionRule](../resources/security With custom detections, you can proactively monitor for and respond to various events and system states, including suspected breach activity and misconfigured assets in your organization's network. Custom detection rules, which are written in [Kusto query language (KQL)](/azure/data-explorer/kusto/query/), automatically trigger [alerts](../resources/security-alert.md) and automated actions when events occur that match a KQL query. +[!INCLUDE [national-cloud-support](../../includes/global-only.md)] + ## Permissions Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). diff --git a/api-reference/beta/api/security-detectionrule-update.md b/api-reference/beta/api/security-detectionrule-update.md index 0a561f8237c..943bf485323 100644 --- a/api-reference/beta/api/security-detectionrule-update.md +++ b/api-reference/beta/api/security-detectionrule-update.md @@ -16,6 +16,8 @@ Namespace: microsoft.graph.security Update the properties of a [detectionRule](../resources/security-detectionrule.md) object. +[!INCLUDE [national-cloud-support](../../includes/global-only.md)] + ## Permissions Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). diff --git a/api-reference/beta/api/security-rulesroot-delete-detectionrules.md b/api-reference/beta/api/security-rulesroot-delete-detectionrules.md index 1510348ad21..0647a4d2acb 100644 --- a/api-reference/beta/api/security-rulesroot-delete-detectionrules.md +++ b/api-reference/beta/api/security-rulesroot-delete-detectionrules.md @@ -16,6 +16,8 @@ Namespace: microsoft.graph.security Delete a [detectionRule](../resources/security-detectionrule.md) object. +[!INCLUDE [national-cloud-support](../../includes/global-only.md)] + ## Permissions Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). diff --git a/api-reference/beta/api/security-rulesroot-list-detectionrules.md b/api-reference/beta/api/security-rulesroot-list-detectionrules.md index dbf8aa058ee..e11fc9821d4 100644 --- a/api-reference/beta/api/security-rulesroot-list-detectionrules.md +++ b/api-reference/beta/api/security-rulesroot-list-detectionrules.md @@ -16,6 +16,8 @@ Namespace: microsoft.graph.security Get a list of [detectionRule](../resources/security-detectionrule.md) objects and their properties. +[!INCLUDE [national-cloud-support](../../includes/global-only.md)] + ## Permissions Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). diff --git a/api-reference/beta/api/security-rulesroot-post-detectionrules.md b/api-reference/beta/api/security-rulesroot-post-detectionrules.md index a8afa419fd3..5f81a4bb610 100644 --- a/api-reference/beta/api/security-rulesroot-post-detectionrules.md +++ b/api-reference/beta/api/security-rulesroot-post-detectionrules.md @@ -16,6 +16,8 @@ Namespace: microsoft.graph.security Create a new [detectionRule](../resources/security-detectionrule.md) object. +[!INCLUDE [national-cloud-support](../../includes/global-only.md)] + ## Permissions Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). From 1a15410b72c8d1ce46d457239090ef54b77727fb Mon Sep 17 00:00:00 2001 From: "snippet-gen-pull-automation[bot]" <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Date: Mon, 22 Jun 2026 16:20:26 +0300 Subject: [PATCH 21/52] Update reference TOC (#29131) Co-authored-by: Microsoft Graph DevX Tooling --- api-reference/beta/toc/security/toc.yml | 14 -------------- .../beta/toc/teamwork-and-communications/toc.yml | 2 ++ 2 files changed, 2 insertions(+), 14 deletions(-) diff --git a/api-reference/beta/toc/security/toc.yml b/api-reference/beta/toc/security/toc.yml index e3bdfacb7b0..525b71ea4f0 100644 --- a/api-reference/beta/toc/security/toc.yml +++ b/api-reference/beta/toc/security/toc.yml @@ -292,20 +292,6 @@ items: href: ../../resources/security-auditinfo.md - name: Custom detection rules items: - - name: Rules root - items: - - name: Rules root - href: ../../resources/security-rulesroot.md - - name: List - href: ../../api/security-rulesroot-list-detectionrules.md - - name: Create - href: ../../api/security-rulesroot-post-detectionrules.md - - name: Get - href: ../../api/security-detectionrule-get.md - - name: Update - href: ../../api/security-detectionrule-update.md - - name: Delete - href: ../../api/security-rulesroot-delete-detectionrules.md - name: Detection rule items: - name: Detection rule diff --git a/api-reference/beta/toc/teamwork-and-communications/toc.yml b/api-reference/beta/toc/teamwork-and-communications/toc.yml index 67aff909836..445b8394856 100644 --- a/api-reference/beta/toc/teamwork-and-communications/toc.yml +++ b/api-reference/beta/toc/teamwork-and-communications/toc.yml @@ -620,6 +620,8 @@ items: href: ../../api/virtualappointment-sendvirtualappointmentsms.md - name: Complex types items: + - name: Cloud video interop info + href: ../../resources/cloudvideointeropinfo.md - name: Identity set href: ../../resources/identityset.md - name: Virtual events From ced252bf8f83dc847f62cc85f5edc1ddd621851e Mon Sep 17 00:00:00 2001 From: "learn-build-service-prod[bot]" <113403604+learn-build-service-prod[bot]@users.noreply.github.com> Date: Mon, 22 Jun 2026 19:53:44 +0300 Subject: [PATCH 22/52] Confirm merge from repo_sync_working_branch to main to sync with https://github.com/microsoftgraph/microsoft-graph-docs-contrib (branch main) (#29133) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit * Use contractions in authenticationstrengthpolicy-list-combinationconfigurations * Use contractions in authenticationstrengthpolicy-usage * Use contractions in authenticationstrengthroot-list-authenticationmethodmodes * Use contractions in backuprestoreroot-list-onedriveforbusinessbrowsesessions * Use contractions in backuprestoreroot-list-sharepointbrowsesessions * Use contractions in basesitepage-list * Use contractions in bitlocker-list-recoverykeys * Use contractions in bookingappointment-update * Use contractions in bookingbusiness-list * Use contractions in bookingcustomer-get * Use contractions in bundle-removeitem * Use contractions in bundle-update * Use contractions in calendar-list-calendarview * Use contractions in call-keepalive * Use contractions in call-list-participants * Use contractions in call-reject * Use contractions in channel-get-members * Use contractions in chat-delete * Use contractions in chat-get * Use contractions in chat-get-members * Use contractions in chat-list-members * Use contractions in contenttype-delete * Use contractions in conversationmember-list * Use contractions in directory-list-customsecurityattributedefinitions * Use contractions in directoryobject-delta * Use contractions in domain-delete * Use contractions in domain-get-rootdomain * Use contractions in domain-list-federationconfiguration * Use contractions in drive-get-specialfolder * Use contractions in driveitem-copy * Use contractions in driveitem-createlink * Use contractions in driveitem-search * Use contractions in driveitemversion-get * Use contractions in educationclass-delta * Use contractions in educationclass-post * Use contractions in entitlementmanagementsettings-get * Use contractions in externalauthenticationmethodconfiguration-get * Use contractions in externalconnectors-externalgroup-update * Use contractions in externalconnectors-externalitem-get * Use contractions in externalconnectors-schema-get * Use contractions in fido2authenticationmethod-list * Use contractions in group-delta * Use contractions in group-list-acceptedsenders * Use contractions in group-list-calendarview * Use contractions in group-post-members * Use contractions in group-update * Use contractions in identitygovernance-insights-workflowsprocessedsummary * Use contractions in identitygovernance-task-get * Use contractions in identitygovernance-workflowtemplate-get * Use contractions in identityuserflowattributeassignment-update * Use contractions in inferenceclassification-list-overrides * Use contractions in internaldomainfederation-get * Use contractions in learningcourseactivity-update * Use contractions in list-get * Use contractions in listitem-delete * Use contractions in listitem-update * Use contractions in mailfolder-list-childfolders * Use contractions in message-createreply * Use contractions in message-createreplyall * Use contractions in message-delta * Use contractions in message-reply * Use contractions in message-replyall * Use contractions in offershiftrequest-get * Use contractions in onlinemeeting-createorget * Use contractions in orgcontact-delta * Use contractions in outlookuser-supportedtimezones * Use contractions in permissiongrantpolicy-update * Use contractions in permission-update * Use contractions in phoneauthenticationmethod-update * Use contractions in plannerassignedtotaskboardtaskformat-update * Use contractions in post-post-attachments * Use contractions in printdocument-createuploadsession * Use contractions in printer-update * Use contractions in printjob-cancel * Use contractions in projectrome-put-activity * Use contractions in qrcode-get * Use contractions in reportroot-getemailactivitycounts * Use contractions in reportroot-getemailactivityusercounts * Use contractions in reportroot-getemailactivityuserdetail * Use contractions in reportroot-getemailappusageappsusercounts * Use contractions in reportroot-getemailappusageusercounts * Use contractions in reportroot-getemailappusageuserdetail * Use contractions in reportroot-getm365appplatformusercounts * Use contractions in reportroot-getm365appusercounts * Use contractions in reportroot-getm365appuserdetail * Use contractions in reportroot-getmailboxusagedetail * Use contractions in reportroot-getmailboxusagemailboxcounts * Use contractions in reportroot-getmailboxusagequotastatusmailboxcounts * Use contractions in reportroot-getmailboxusagestorage * Use contractions in reportroot-getoffice365activationcounts * Use contractions in reportroot-getoffice365activationsuserdetail * Use contractions in reportroot-getoffice365activeusercounts * Use contractions in reportroot-getoffice365activeuserdetail * Use contractions in reportroot-getoffice365groupsactivitycounts * Use contractions in reportroot-getoffice365groupsactivitydetail * Use contractions in reportroot-getoffice365groupsactivityfilecounts * Use contractions in reportroot-getoffice365groupsactivitystorage * Use contractions in reportroot-getoffice365servicesusercounts * Use contractions in reportroot-getonedriveactivityfilecounts * Use contractions in reportroot-getonedriveactivityusercounts * Use contractions in reportroot-getonedriveactivityuserdetail * Use contractions in reportroot-getonedriveusageaccountcounts * Use contractions in reportroot-getonedriveusageaccountdetail * Use contractions in reportroot-getonedriveusagefilecounts * Use contractions in reportroot-getsharepointactivityfilecounts * Use contractions in reportroot-getsharepointactivitypages * Use contractions in reportroot-getsharepointactivityuserdetail * Use contractions in reportroot-getsharepointsiteusagedetail * Use contractions in reportroot-getsharepointsiteusagefilecounts * Use contractions in reportroot-getsharepointsiteusagepages * Use contractions in reportroot-getsharepointsiteusagesitecounts * Use contractions in reportroot-getsharepointsiteusagestorage * Use contractions in reportroot-getskypeforbusinessactivitycounts * Use contractions in reportroot-getskypeforbusinessactivityusercounts * Use contractions in reportroot-getskypeforbusinessactivityuserdetail * Use contractions in reportroot-getskypeforbusinessdeviceusagedistributionusercounts * Use contractions in reportroot-getskypeforbusinessdeviceusageuserdetail * Use contractions in reportroot-getskypeforbusinessorganizeractivityminutecounts * Use contractions in reportroot-getskypeforbusinessparticipantactivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivitycounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityusercounts * Use contractions in reportroot-getteamsdeviceusageusercounts * Use contractions in reportroot-getteamsuseractivityusercounts * Use contractions in reportroot-getteamsuseractivityuserdetail * Use contractions in reportroot-getyammeractivitycounts * Use contractions in reportroot-getyammeractivityusercounts * Use contractions in reportroot-getyammeractivityuserdetail * Use contractions in reportroot-getyammerdeviceusagedistributionusercounts * Use contractions in reportroot-getyammerdeviceusageusercounts * Use contractions in reportroot-getyammerdeviceusageuserdetail * Use contractions in reportroot-getyammergroupsactivitycounts * Use contractions in reportroot-getyammergroupsactivitydetail * Use contractions in riskdetection-get * Use contractions in riskyuser-get * Use contractions in schedulinggroup-delete * Use contractions in schemaextension-delete * Use contractions in security-ediscoverysearch-list-lastestimatestatisticsoperation * Use contractions in security-host-list-childhostpairs * Use contractions in security-host-list-parenthostpairs * Use contractions in security-hostpair-get * Use contractions in security-threatintelligence-list-sslcertificates * Use contractions in servicehealthissue-get * Use contractions in servicehealthissue-incidentreport * Use contractions in serviceprincipal-get * Use contractions in serviceupdatemessage-get * Use contractions in sharedwithchannelteaminfo-get * Use contractions in sharedwithchannelteaminfo-list-allowedmembers * Use contractions in simulationautomation-get * Use contractions in simulation-get * Use contractions in singlevaluelegacyextendedproperty-get * Use contractions in sitepage-publish * Use contractions in sitepage-update * Use contractions in site-search * Use contractions in subjectrightsrequest-list-notes * Use contractions in subscribedsku-list * Use contractions in synchronization-synchronizationschema-delete * Use contractions in synchronization-synchronizationschema-update * Use contractions in teamsapp-delete * Use contractions in teamsapp-publish * Use contractions in teamsapp-update * Use contractions in teamworktag-get * Use contractions in tenantappmanagementpolicy-update * Use contractions in tenantdatasecurityandgovernance-processcontentasync * Use contractions in timeoffrequest-get * Use contractions in todotask-delta * Use contractions in todotask-list-checklistitems * Use contractions in todotask-post-attachments * Use contractions in userdatasecurityandgovernance-processcontent * Use contractions in user-delta * Use contractions in user-findmeetingtimes * Use contractions in user-list-calendarview * Use contractions in user-list-mailfolders * Use contractions in user-list-messages * Use contractions in userregistrationdetails-get * Use contractions in user-sendmail * Use contractions in verticalsection-update * Use contractions in virtualeventregistrationconfiguration-list-questions * Use contractions in virtualeventregistration-list * Use contractions in virtualeventregistration-list-sessions * Use contractions in virtualeventwebinar-post-registrations * Use contractions in webpart-delete * Use contractions in workbook-tablerowoperationresult * Use contractions in x509certificateauthenticationmethodconfiguration-get * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * Update simulation-update.md for requirement around simuation state (#9936) * Update simulation-update.md for requirement around simuation state Clarified simulation state as draft as required and updated description. * Minor fixes --------- Co-authored-by: Faith Moraa Ombongi * Publish main to live - reconcile divergence 2026-06-17 Sets live content identical to main to clear the squash-induced divergence. No manual live hotfixes existed. * Reconcile live to main (unblock auto-publish #29094) (#29095) * Publish main to live - reconcile divergence (refresh 2026-06-17 18:25) Sets live content identical to current main. main is authoritative; no live-only hotfixes. * Update tenantappmanagementpolicy-get.md --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Remove license-type availability banner from Graph beta eDiscovery overview Replaces preview/SKU-specific note in ediscovery-ediscoveryapioverview.md with neutral guidance pointing to Microsoft Purview eDiscovery documentation. Addresses customer confusion (IcM 51000001064141) about creating searches in standard eDiscovery cases via Graph. * Merge to publish. (#29097) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update reference TOC (#29058) Co-authored-by: Microsoft Graph DevX Tooling * Update profilePropertySetting docs (#29038) * Updated according to KnutB's spec * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update peopleadminsettings-list-profilepropertysettings.md * Update profilepropertysetting.md * Move extended Delete description from resource table to API topic * Apply suggestion from @MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222741 (#29057) Co-authored-by: Microsoft Graph DevX Tooling * Update generated permissions tables with build 222558 (#29051) Co-authored-by: Microsoft Graph DevX Tooling * Revise traceRouteHop availability in callRecord docs (#29055) * Revise traceRouteHop availability in callRecord docs * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update whats-new-overview.md (#29010) * Update whats-new-overview.md * Update whats-new-overview.md --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update pull request template to remove documentation plan requirement (#29069) Removed the requirement to attach the documentation plan for AI-assisted docs authoring. * 2026-06-15: Automated permissions reference update (#29068) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Update generated permissions tables with build 222982 (#29067) Co-authored-by: Microsoft Graph DevX Tooling * Update whats-new-overview.md (#29064) * Update whats-new-overview.md * Update whats-new-overview.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add tenantId property to userAccount resource (#28845) * Add tenantId field to security user account resource Added tenantId field to user account resource details. * Update userAccount resource date and add tenantId * Update date for security userAccount resource * Update changelog with new API changes Added new changelog entries for tenantId and categories properties in userAccount resource. * Apply review suggestions: update changelog dates and add What's New entry for tenantId on userAccount * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi --------- Co-authored-by: Faith Moraa Ombongi Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Add mergeIncidents and moveAlerts v1.0 API docs (#28851) * Add mergeIncidents and moveAlerts v1.0 API docs Add v1.0 documentation for security action endpoints: - API pages: security-incident-mergeincidents.md, security-alert-movealerts.md - Resource pages: security-mergeresponse.md, security-correlationreason.md - Permission and RBAC include files - Update security-incident.md and security-alert.md Methods tables - Update v1.0 toc.mapping.json with new complex types - Add v1.0 changelog entries for all new artifacts Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Fix comments * Apply suggestion from @FaithOmbongi * Update what's new --------- Co-authored-by: Harel Damti Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * Update reference TOC (#29071) Co-authored-by: Microsoft Graph DevX Tooling * Update people doc (#29023) * Updated people & workplace intelligence document according to Knut Brandrud's proposal reviewed within our team. * Minor typo Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Address review comments in social intelligence overview * Apply remaining review thread doc fixes * minor date fix Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * date --------- Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add isVisible property to lpc v1.0 (#28915) * Add isVisible property to lpc v1.0 * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update Microsoft.People.json * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @Danipocket --------- Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply simulation-update v1.0 PR #9936 changes to beta file (#29077) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Remove unsupported expand query from getRetentionLabel docs (#29080) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated files with build 223158 (#29075) Co-authored-by: Microsoft Graph DevX Tooling * Resolve syncing conflicts from repo_sync_working_branch to main (#29076) * Enhance clarity in API documentation by updating request and response example phrasing across multiple files * Apply suggestions from code review Co-authored-by: Jarbas Horst * Fix trailing pipe tables 1.0 (#9930) * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudclipboardroot-list-items * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in itemactivitystat-getactivitybyinterval * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in tablecolumncollection-add * Fix trailing pipe formatting in user-findmeetingtimes * Apply suggestions from code review Co-authored-by: Jarbas Horst --------- Co-authored-by: Jarbas Horst * Fix missing closing codeblock beta (#9919) * Fix formatting of HTTP request example in accesspackageresource-list-uploadsessions.md * Fix missing closing code block in security-labelsroot-delete-citations.md * Fix missing closing code block in singlevaluelegacyextendedproperty-get.md * Fix missing closing code block in usersettings-list-windows.md * Fix missing closing code block in webapplicationfirewallprovider-verify.md * Fix missing closing code block in windowssetting-get.md * Fix missing closing code block in windowssetting-list-instances.md * fix(beta api): close malformed http code fence in windowssettinginstance-get * Apply suggestions from code review Co-authored-by: Jarbas Horst --------- Co-authored-by: Jarbas Horst * Update synchronization-synchronization-list-templates.md (#9922) Update headings from H3 to H2. * Update https://github.com/microsoftgraph/microsoft-graph-docs-contrib/edit/main/api-reference/v1.0/api/synchronization-synchronizationtemplate-get.md (#9923) Update headings from H3 to H2. * Update synchronization-synchronizationtemplate-update.md (#9924) Update headings from H3 to H2. * Update eventmessage-post-attachments.md (#9926) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update event-post-attachments.md (#9925) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update educationassignment-list-resources.md (#9927) Update formatting * Update provisioningobjectsummary-list.md (#9928) Fix typo in error response example section * Fix trailing pipe tables beta (#9929) * Fix trailing pipe formatting in b2cidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bookingbusiness-update * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudpc-retrievecloudpccountbystatus * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in contenttype-associatewithhubsites * Fix trailing pipe formatting in customdataprovidedresourceuploadsession-uploadfile * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in ediscovery-noncustodialdatasource-post * Fix trailing pipe formatting in get-device-command-status * Fix trailing pipe formatting in governancerolesetting-update * Fix trailing pipe formatting in industrydata-inboundapiflow-post * Fix trailing pipe formatting in itemactivity-getbyinterval * Fix trailing pipe formatting in listitem-createlink * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in message-createreply * Fix trailing pipe formatting in networkaccess-reports-getdestinationsummaries * Fix trailing pipe formatting in networkaccess-reports-getdeviceusagesummary * Fix trailing pipe formatting in pagetemplate-delete * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in rbacapplication-post-roleassignmentschedulerequests * Fix trailing pipe formatting in security-collaborationroot-list-analyzedemails * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in send-device-command * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in team-sendactivitynotification * Fix trailing pipe formatting in termstore-relation-post * Fix trailing pipe formatting in user-list-devices * Fix trailing pipe formatting in user-sendmail * Fix trailing pipe formatting in webpart-delete --------- Co-authored-by: Jarbas Horst * Fix missing closing codeblock 1.0 (#9920) * Fix missing closing http fence in security-auditlogquery-list-records * Fix missing closing http fence in userprotectionscopecontainer-compute * Fix missing closing http fence in usersettings-list-windows --------- Co-authored-by: Jarbas Horst * Update date range (#9931) When requesting a date over 28 days the API returns: "Invalid date value specified: 2026-04-06. Only support data for the past 28 days." * Correct date range for email activity report (#9932) https://github.com/microsoftgraph/microsoft-graph-docs-contrib/pull/9931/changes * Change user ID to placeholder in processContent API (#9921) * Change user ID to placeholder in processContent API Updated user ID placeholder in processContent API calls. * Update userdatasecurityandgovernance-processcontent.md Updated example user ID in processContent API calls. * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * Update simulation-update.md for requirement around simuation state (#9936) * Update simulation-update.md for requirement around simuation state Clarified simulation state as draft as required and updated description. * Minor fixes --------- Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Jarbas Horst Co-authored-by: Jarbas Horst Co-authored-by: learn-build-service-prod[bot] <113403604+learn-build-service-prod[bot]@users.noreply.github.com> Co-authored-by: Learn Build Service GitHub App Co-authored-by: Jarbas Horst <26866873+JarbasHorst@users.noreply.github.com> Co-authored-by: Ryutaro Koma Co-authored-by: Micah Warren <26724012+MicahWW@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Vipul <84970543+VipulMSFT@users.noreply.github.com> * Document provisioning workflow support in Lifecycle Workflows (beta) (#28966) * Document provisioning workflow support in Lifecycle Workflows (beta) Add public preview documentation for provisioning workflow features in Microsoft Graph Lifecycle Workflows beta API. New resources: - workflowSubject (abstract base type) - provisioningObjectWorkflowSubject (concrete implementation) - attributeSetEntry (key-value pairs for attribute sets) - awaitedWorkflowProcessingResult (return type) - customTaskExtensionResponseData (extension response) - provisioningAttributeMapping (execution conditions) - subjectProcessingResult (entity for processing results) New API operations: - workflow: activateAndWait - run: list subjectProcessingResults - subjectProcessingResult: get - taskReport: list subjectProcessingResults Updated enumerations: - Added customTaskExtensionReplyMode enum - Added extensibility to lifecycleTaskCategory - Added extensibility to lifecycleWorkflowCategory - Added extensibilityOnDemand to workflowExecutionType Updates to existing resources: - customTaskExtension: added replyMode property - customTaskExtensionCallbackData: added targetSubject property - taskProcessingResult: added workflowSubject property - run: added subjectProcessingResults relationship and list method - taskReport: added subjectProcessingResults relationship and list method - workflow: added activateAndWait method Also includes changelog, What's New, TOC, and permissions updates. Workload: Microsoft.AAD.LCM Changelog GUID: 6a9c6f5d-eeb3-438e-b9f2-4705836e94fe * Clean up temp-docstubs folder Remove temporary authoring input files. Only temp-docstubs-instructions.md should remain. * Fix documentation validation errors - Fix openType metadata in subjectProcessingResult (was 'id', now false) - Remove tab syntax from HTTP-only examples (tabs require multiple SDK examples) * Fix changelog target and add missing complex types to TOC - Fixed changelog: Changed Target from customTaskExtensionCalloutData to customTaskExtensionCallbackData for targetSubject property - Removed workflowSubjectType enum entry (private preview feature) - Added missing complex types to TOC: attributeSetEntry, awaitedWorkflowProcessingResult, customTaskExtensionResponseData, provisioningAttributeMapping, provisioningObjectWorkflowSubject, workflowSubject * Remove taskProcessingResults expansion example - Removed Example 2 that demonstrated expanding taskProcessingResults relationship - Keep only the basic GET example without expansion * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * fix: update resource link prefixes in customTaskExtensionResponseData doc * Fix reference * Updates * Update reference TOC * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update api-reference/beta/api/identitygovernance-taskreport-list-subjectprocessingresults.md Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update api-reference/beta/api/identitygovernance-run-list-subjectprocessingresults.md Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update api-reference/beta/api/identitygovernance-taskreport-list-subjectprocessingresults.md Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update api-reference/beta/api/identitygovernance-run-list-subjectprocessingresults.md Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update perms * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix subject * Updates * Revert "Update perms" This reverts commit 636a2a571984b1f18c187522635abf853b55be2d. * Perms updates * Remove from docstubs * Fix broken link * fixes from code review * Update api-reference/beta/resources/identitygovernance-subjectprocessingresult.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/identitygovernance-awaitedworkflowprocessingresult.md Co-authored-by: Faith Moraa Ombongi * Update callout data * Updated changelog * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Mason Wolff Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * docs: Clarify MTO tenant API permission-to-property mapping and role access (#28886) * docs: clarify MTO tenant API permission-to-property mapping and role access - Add detailed permission-to-property mapping showing which properties are returned for each permission level - Document that Directory.Read.All also grants full read access to multitenant organization tenant resources (delegated or application) - Clarify that ReadBasic.All only returns displayName and tenantId, and only active tenants - Expand RBAC role documentation to specify that Security Reader and Global Reader can only read basic tenant info - Add guidance on which role is needed for full property access - Updated for both v1.0 and beta API references Addresses IcM 31000000597799 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * docs: add Directory.Read.All clarification to GET member endpoint Apply the same permission-to-property mapping to the multitenantorganizationmember-get API (v1.0 and beta). Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * fix: make RBAC include generic (shared across 6 MTO endpoints) The rbac-multitenantorganization-apis-read.md include is consumed by 6 different endpoints returning different resource types. Remove member-specific property names (displayName, tenantId, role, state, etc.) that are incorrect for the non-member endpoints (MTO object, join request, sync policy template, partner config template). Property-specific details remain in the individual API docs where they are correct and scoped to the right resource type. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * fix: add MultiTenantOrganization.Read.All to beta get-member docs * fix: add MultiTenantOrganization.Read.All to v1.0 get-member docs * fix: remove redundant RBAC statement per reviewer feedback * fix: remove redundant RBAC statement from v1.0 per reviewer feedback * Simplify permission callouts in beta list-tenants per reviewer suggestion * Simplify permission callouts in beta get-member per reviewer suggestion * Simplify permission callouts in v1.0 list-tenants per reviewer suggestion * Simplify permission callouts in v1.0 get-member per reviewer suggestion * fix: restore line endings mangled by Apply-Suggestion edits The 4 'Simplify permission callouts' commits collapsed the 4 MTO API doc files into single lines, breaking YAML frontmatter and Markdown structure. This caused the API Doctor validation to fail (h1-missing, title-missing, bookmark-not-found tabs, ms-date-missing, description-missing). This commit restores proper line endings while preserving the reviewer-approved simplified permission-to-property mapping that documents Directory.Read.All as an accepted permission for the MTO endpoints (per IcM 31000000597799 / MSRC 115408). --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update generated permissions tables with build 223315 (#29089) Co-authored-by: Microsoft Graph DevX Tooling * Move lifecycle workflows preview note from May to June 2026 What's New (#29090) * Move lifecycle workflows preview entry to June 2026 section * Apply suggestion from @FaithOmbongi --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * Adding Redirect URI Restrictions in App Management Policies (#28070) * Initial documentation on Redirect URI restrictions in App Management Policies * Update changelog/Microsoft.DirectoryServices.json Co-authored-by: Faith Moraa Ombongi * Update concepts/whats-new-overview.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiblockeddomainconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiwildcardexcludeformats.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiplatformalloweddomainconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiplatformblockeddomainconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiplatformblockedschemeconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiplatformallowedschemeconfiguration.md Co-authored-by: Faith Moraa Ombongi * Doc: update redirect URI restrictions and examples * Doc: add examples for updating redirect URI restrictions * Doc: update examples for tenantAppManagementPolicy to include redirect URI restrictions * Apply suggestion from @FaithOmbongi --------- Co-authored-by: Faith Moraa Ombongi Co-authored-by: Copilot * Add personal distribution lists beta API documentation (#29046) * Add personal distribution lists beta API documentation Add documentation for personal distribution lists in the user's mailbox, including resource types, API methods, permission includes, changelog, What's New, and TOC mapping updates. New resources: - distributionList (entity type, inherits outlookItem) - distributionListMember (entity type) - member (complex type) - recipientType (enum type) New API methods (9): - List/Create/Get/Update/Delete distributionList - addMembers/deleteMembers actions - List/Get distributionListMembers Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.Exchange.json Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Align distributionLists docs with approved CSDL Apply review feedback from API team. CSDL is source of truth; docs now match the schema exactly. Resources: - member: replace emailAddress with key; add routingType and contactId - distributionListMember: replace emailAddress with contactId; add contact navigation property - distributionList: add notes, personIdentifier properties; add singleValueExtendedProperties navigation property; note that members, notes, personIdentifier are not returned by default API methods: - addMembers, deleteMembers: change return from 204 No Content to 200 OK with updated distributionList object; update request and response examples to use key/routingType/recipientType - Create, Update, Get, List distributionLists: remove members from example responses (not returned by default) - Get distributionList: note that members, notes, personIdentifier require explicit `` - List/Get distributionListMembers: replace emailAddress with contactId in example responses Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Revert "Align distributionLists docs with approved CSDL" This reverts commit 6636446866092d92ffbd80419cc67a3cb3bf885e. * Fix documentation clarity and consistency issues - Add clarity note to distributionlist members property - Mark displayName as optional in member complex type - Add read-only indicators to distributionListMember properties - Clarify parameter requirements in addMembers and deleteMembers * Fix PR review comments: align docs with API.md/CSDL source of truth - Fix string casing in JSON representations (String -> string) - Update addMembers/deleteMembers to return distributionList (not 204) - Remove members from default GET/List responses (requires $select) - Rename emailAddress to key in member complex type, add routingType and contactId - Update distributionListMember to use contactId instead of emailAddress - Fix all API examples to use correct property names Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update reference TOC * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * What's new update. * Fix changelog ChangedApiName format for bound actions Remove 'distributionList: ' prefix from addMembers and deleteMembers entries to match the standard changelog format used by other workloads. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> --------- Co-authored-by: Samuel Mwangi (from Dev Box) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Kimani Mwangi Co-authored-by: Microsoft Graph DevX Tooling --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@us… * Fix Read-only capitalization in appscope.md * Fix Read-only capitalization in azureactivedirectorytenant.md * Fix Read-only capitalization in channel.md * Fix Read-only capitalization in chatmessage.md * Fix Read-only capitalization in cloudpc.md * Fix Read-only capitalization in conditionalaccesspolicy.md * Fix Read-only capitalization in connectedorganizationmembers.md * Fix Read-only capitalization in crosscloudazureactivedirectorytenant.md * Fix Read-only capitalization in customaccesspackageworkflowextension.md * Fix Read-only capitalization in delegatedadminrelationship.md * Fix Read-only capitalization in directoryrole.md * Fix Read-only capitalization in externaldomainfederation.md * Fix Read-only capitalization in groupmembers.md * Fix Read-only capitalization in insights-shared.md * Fix Read-only capitalization in insights-trending.md * Fix Read-only capitalization in insights-used.md * Fix Read-only capitalization in passwordsinglesignonfield.md * Fix Read-only capitalization in plannerroster.md * Fix Read-only capitalization in reminder.md * Fix Read-only capitalization in serviceannouncement.md * Fix Read-only capitalization in singleuser.md * Fix Read-only capitalization in teamstab.md * Fix Read-only capitalization in translationpreferences.md * Fix Read-only capitalization in unifiedroleeligibilityscheduleinstance.md * Fix Read-only capitalization in accesspackageresourcerequest.md * Fix Read-only capitalization in accesspackageassignmentpolicy.md * Fix Read-only capitalization in azureactivedirectorytenant.md * Fix Read-only capitalization in channel.md * Fix Read-only capitalization in chatmessage.md * Fix Read-only capitalization in conditionalaccesspolicy.md * Fix Read-only capitalization in crosscloudazureactivedirectorytenant.md * Fix Read-only capitalization in delegatedadminrelationship.md * Fix Read-only capitalization in directoryrole.md * Fix Read-only capitalization in domainidentitysource.md * Fix Read-only capitalization in externaldomainfederation.md * Fix Read-only capitalization in insights-shared.md * Fix Read-only capitalization in insights-trending.md * Fix Read-only capitalization in reminder.md * Fix Read-only capitalization in serviceannouncement.md * Fix Read-only capitalization in rbacapplication-post-roleassignmentschedulerequests.md * Fix Read-only capitalization in rbacapplication-post-roleeligibilityschedulerequests.md * Fix Read-only capitalization in rbacapplication-rolescheduleinstances.md * Fix Read-only capitalization in rbacapplication-roleschedules.md * Fix Read-only capitalization in rbacapplication-post-roleassignmentschedulerequests.md * Fix Read-only capitalization in rbacapplication-post-roleeligibilityschedulerequests.md * Fix Read-only capitalization in rbacapplication-rolescheduleinstances.md * Fix Read-only capitalization in rbacapplication-roleschedules.md * Simplify description for protectionRule addition (#9944) --------- Co-authored-by: Jarbas Horst <26866873+JarbasHorst@users.noreply.github.com> Co-authored-by: learn-build-service-prod[bot] <113403604+learn-build-service-prod[bot]@users.noreply.github.com> Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Learn Build Service GitHub App Co-authored-by: Vipul <84970543+VipulMSFT@users.noreply.github.com> Co-authored-by: Shlomo Sagir <51323195+shsagir@users.noreply.github.com> Co-authored-by: Nick Robinson Co-authored-by: Matthew M. Co-authored-by: Yuvalabiri <154335961+Yuvalabiri@users.noreply.github.com> Co-authored-by: Ruth Waithera Co-authored-by: Jarbas Horst Co-authored-by: Jarbas Horst Co-authored-by: Ryutaro Koma Co-authored-by: Micah Warren <26724012+MicahWW@users.noreply.github.com> Co-authored-by: masonw1211 <31712004+masonw1211@users.noreply.github.com> Co-authored-by: Mason Wolff Co-authored-by: srinivaspadala-msft Co-authored-by: Anton Vanco <254866915+antonvano@users.noreply.github.com> Co-authored-by: Copilot Co-authored-by: Samuel Mwangi Co-authored-by: Samuel Mwangi (from Dev Box) Co-authored-by: Kimani Mwangi --- changelog/Microsoft.M365.Defender.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/changelog/Microsoft.M365.Defender.json b/changelog/Microsoft.M365.Defender.json index 257a6200490..d1a9b3fffe7 100644 --- a/changelog/Microsoft.M365.Defender.json +++ b/changelog/Microsoft.M365.Defender.json @@ -3217,7 +3217,7 @@ "ApiChange": "Resource", "ChangedApiName": "protectionRule", "ChangeType": "Addition", - "Description": "Added the [protectionRule](https://learn.microsoft.com/en-us/graph/api/resources/security-protectionRule?view=graph-rest-beta) resource", + "Description": "Added the protectionRule resource", "Target": "protectionRule" } ], From 3304972948634df83617afb4ae84b53cbf859051 Mon Sep 17 00:00:00 2001 From: Jasmeet Singh <22637121+jasmeet9323@users.noreply.github.com> Date: Mon, 22 Jun 2026 15:54:48 -0700 Subject: [PATCH 23/52] Clarify community ID input and add an Engage community example for Add teamworkSectionItem (#29099) * Clarify community ID input and add Engage community example for Add teamworkSectionItem Why: Reviewers asked whether a community ID must be passed as the full 19:{id}@EngageCommunity thread ID or just the bare community ID, and what "the service automatically normalizes the ID" means. The page had no community example to make this concrete. What: Clarify the id property description to state that either a bare community ID (returned when you list communities) or the full 19:{id}@EngageCommunity ID is accepted, and that a bare ID is normalized automatically while an already-prefixed ID is used as-is. Restructure Examples into Example 1 (chat) and add Example 2 (community) showing the bare ID in the request and the normalized ID in the response. Bump ms.date. Co-Authored-By: Claude Opus 4.8 (1M context) * Make the community example HTTP-only to fix include-not-found build errors The OpenPublishing build failed with six include-not-found errors because the add_teamworksectionitem_community example referenced language-tab snippet includes that don't exist yet. Per the established workflow (see the original section APIs PR), content PRs ship examples HTTP-only and the snippet-gen-pull-automation bot adds the language tabs and generated snippet files in a separate "Update generated files" PR afterward. Drop the hand-added tabs/includes from the new example so the build passes; the bot will generate them. Co-Authored-By: Claude Opus 4.8 (1M context) * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update teamworksection-post-items.md * Update whats-new-overview.md * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: jsinghmokha Co-authored-by: Claude Opus 4.8 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --- .../beta/api/teamworksection-post-items.md | 61 +++++++++++++++++-- concepts/whats-new-overview.md | 4 ++ 2 files changed, 61 insertions(+), 4 deletions(-) diff --git a/api-reference/beta/api/teamworksection-post-items.md b/api-reference/beta/api/teamworksection-post-items.md index c36b3a9036c..8184046607f 100644 --- a/api-reference/beta/api/teamworksection-post-items.md +++ b/api-reference/beta/api/teamworksection-post-items.md @@ -48,7 +48,7 @@ The following table lists the properties that you can set when you add a **teamw | Property | Type | Description | |:---------|:-----|:------------| -| id | String | The conversation ID of the chat, channel, meeting, or community to add to the section. For community items, the service automatically normalizes the ID to the `19:{id}@EngageCommunity` format. Required. | +| id | String | The conversation ID of the chat, channel, meeting, or community to add to the section. For a community (Viva Engage) item, you can provide either the bare community ID returned when you [list communities](../api/employeeexperience-list-communities.md) (for example, `eyJfdHlwZSI6Ikdyb3VwIiwiaWQiOiIxOTAzMzYyMTIyMTAifQ`) or the full `19:{communityId}@EngageCommunity` thread ID. When you provide a bare community ID, the service automatically normalizes it to the `19:{communityId}@EngageCommunity` format; an ID that already includes the thread prefix is used as-is. Required. | ## Response @@ -73,9 +73,13 @@ The following errors are possible. ## Examples -### Request +### Example 1: Add a chat to a section -The following example shows a request to add a chat to a section. +The following example shows how to add a chat to a section. + +#### Request + +The following example shows a request. # [HTTP](#tab/http) +```http +POST https://graph.microsoft.com/beta/users/10f8c3a6-3e2a-4e8b-9c7d-5a4b6c8d9e0f/teamwork/sections/a1b2c3d4-e5f6-7890-abcd-ef1234567890/items +Content-type: application/json +If-Match: "1742515210" + +{ + "id": "eyJfdHlwZSI6Ikdyb3VwIiwiaWQiOiIxOTAzMzYyMTIyMTAifQ" +} +``` + +#### Response + +The following example shows the response. The **id** property is returned in the normalized `19:{communityId}@EngageCommunity` format. + +>**Note:** The response object shown here might be shortened for readability. + + +```http +HTTP/1.1 201 Created +Content-type: application/json +Location: https://graph.microsoft.com/beta/users/10f8c3a6-3e2a-4e8b-9c7d-5a4b6c8d9e0f/teamwork/sections/a1b2c3d4-e5f6-7890-abcd-ef1234567890/items/19:eyJfdHlwZSI6Ikdyb3VwIiwiaWQiOiIxOTAzMzYyMTIyMTAifQ@EngageCommunity + +{ + "@odata.type": "#microsoft.graph.teamworkSectionItem", + "@odata.etag": "\"1742515220\"", + "id": "19:eyJfdHlwZSI6Ikdyb3VwIiwiaWQiOiIxOTAzMzYyMTIyMTAifQ@EngageCommunity", + "itemType": "community", + "createdDateTime": "2026-03-08T10:05:00Z", + "lastModifiedDateTime": null +} +``` + + +``` http +POST https://graph.microsoft.com/beta/deviceManagement/virtualEndpoint/provisioningPolicies/1d164206-bf41-4fd2-8424-a3192d39ffff/apply +Content-Type: application/json + +{ + "isForceUserLogoffEnabled": true, + "reservePercentage": 0 +} +``` + +#### Response + +The following example shows the response. + + + +``` http +HTTP/1.1 204 No Content +``` diff --git a/api-reference/beta/api/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult.md b/api-reference/beta/api/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult.md new file mode 100644 index 00000000000..1ef71845373 --- /dev/null +++ b/api-reference/beta/api/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult.md @@ -0,0 +1,86 @@ +--- +title: "cloudPcProvisioningPolicy: retrievePolicyUpdateStatusResult" +description: "Retrieve the pending apply status of a provisioning policy to determine whether unapplied changes exist for Cloud PCs." +author: "zhuangzhuang131419" +ms.localizationpriority: medium +ms.subservice: "cloud-pc" +doc_type: apiPageType +ms.date: 06/01/2026 +--- + +# cloudPcProvisioningPolicy: retrievePolicyUpdateStatusResult + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Retrieve the pending apply status of a [provisioning policy](../resources/cloudpcprovisioningpolicy.md) to determine whether unapplied changes exist for Cloud PCs. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult-permissions.md)] + +## HTTP request + + + +``` http +GET /deviceManagement/virtualEndpoint/provisioningPolicies/{id}/retrievePolicyUpdateStatusResult +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this function returns a `200 OK` response code and a [cloudPcPolicyPendingApplyStatusResult](../resources/cloudpcpolicypendingapplystatusresult.md) in the response body. + +## Examples + +### Request + +The following example shows a request. + + + +``` http +GET https://graph.microsoft.com/beta/deviceManagement/virtualEndpoint/provisioningPolicies/b0c2d35f-3385-46c8-a6f5-6c3dfad7708b/retrievePolicyUpdateStatusResult +``` + +### Response + +The following example shows the response. + + + +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.type": "https://graph.microsoft.com/beta/$metadata#cloudPcPolicyPendingApplyStatusResult", + "hasUnappliedPolicyUpdate": true +} +``` diff --git a/api-reference/beta/includes/permissions/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult-permissions.md b/api-reference/beta/includes/permissions/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult-permissions.md new file mode 100644 index 00000000000..f5bba922e1b --- /dev/null +++ b/api-reference/beta/includes/permissions/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult-permissions.md @@ -0,0 +1,11 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|CloudPC.ReadWrite.All|Not available.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|CloudPC.ReadWrite.All|Not available.| diff --git a/api-reference/beta/resources/cloudpcpolicypendingapplystatusresult.md b/api-reference/beta/resources/cloudpcpolicypendingapplystatusresult.md new file mode 100644 index 00000000000..1b5881f67ef --- /dev/null +++ b/api-reference/beta/resources/cloudpcpolicypendingapplystatusresult.md @@ -0,0 +1,43 @@ +--- +title: "cloudPcPolicyPendingApplyStatusResult resource type" +description: "Represents the result of checking whether a provisioning policy has unapplied changes pending for Cloud PCs." +author: "zhuangzhuang131419" +ms.localizationpriority: medium +ms.subservice: "cloud-pc" +doc_type: resourcePageType +ms.date: 06/01/2026 +--- + +# cloudPcPolicyPendingApplyStatusResult resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents the result of checking whether a provisioning policy has unapplied changes pending for Cloud PCs. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|hasUnappliedPolicyUpdate|Boolean|Indicates whether the provisioning policy has unapplied changes pending for Cloud PCs. When `true`, the policy contains changes that aren't yet applied. When `false`, all policy changes are applied. Read-only.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.cloudPcPolicyPendingApplyStatusResult", + "hasUnappliedPolicyUpdate": true +} +``` diff --git a/api-reference/beta/resources/cloudpcpolicyscheduledapplyactiondetail.md b/api-reference/beta/resources/cloudpcpolicyscheduledapplyactiondetail.md index c4c415c8d69..2c3dcfe4ac4 100644 --- a/api-reference/beta/resources/cloudpcpolicyscheduledapplyactiondetail.md +++ b/api-reference/beta/resources/cloudpcpolicyscheduledapplyactiondetail.md @@ -5,7 +5,7 @@ author: "zhuangzhuang131419" ms.localizationpriority: medium ms.subservice: "cloud-pc" doc_type: resourcePageType -ms.date: 05/08/2025 +ms.date: 06/01/2026 --- # cloudPcPolicyScheduledApplyActionDetail resource type @@ -20,11 +20,12 @@ Represents a scheduled apply rule set on the policy. For `Frontline shared` only |Property|Type|Description| |:---|:---|:---| -|reservePercentage|Int32|The percentage of Cloud PCs to keep available. Administrators can set this property to a value from 0 to 99. Cloud PCs are reprovisioned only when there are no active and connected Cloud PC users. `Frontline shared` only.| |cronScheduleExpression|String|An expression that specifies the cron schedule. (For example, "0 0 0 20 * *" means schedules a job to run at midnight on the 20th of every month) Administrators can set a cron expression to define the scheduling rules for automatic regular application. When auto provision is disabled, `cronScheduleExpression` is set to null, stopping the automatic task scheduling. Read-Only.| +|endDateTime|String|Indicates IT Admins can set an end date to define the last scheduler run before this time. If not set, the scheduler runs continuously. There is no time zone information at this time; it needs to be coordinated with `timezone`, for example, "2025-02-01 00:00:00" with "China Standard Time" means the scheduling rule takes effect before Feb 01 2025 00:00:00 GMT+0800 (China Standard Time).| +|isForceUserLogoffEnabled|Boolean|Indicates whether active Cloud PC sessions are forcibly signed out when reprovisioning begins. When `true`, connected users are immediately signed out and reprovisioning starts right away; **reservePercentage** must be set to `0` when this property is `true`, otherwise the request fails. When `false`, reprovisioning waits until the user disconnects. The default value is `false`. Optional. *Frontline shared* only.| |nextRunDateTime|String|Indicates IT Admins can see when the next automatic regular apply is executed. It needs to be coordinated with `timezone`, for example, "2025-01-01 00:00:00" with "China Standard Time" means the next task executes at Jan 01 2025 00:00:00 GMT+0800 (China Standard Time). Read-Only.| +|reservePercentage|Int32|The percentage of Cloud PCs to keep available. Administrators can set this property to a value from `0` to `99`. Cloud PCs are reprovisioned only when there are no active and connected Cloud PC users. *Frontline shared* only.| |startDateTime|String|Indicates IT Admins can set a start date to define the first scheduler run after this time. If not set, the default is the current time. There is no time zone information at this time, it needs to be coordinated with `timezone`, for example, "2025-01-01 00:00:00" with "China Standard Time" means the scheduling rule takes effect after Jan 01 2025 00:00:00 GMT+0800 (China Standard Time).| -|endDateTime|String|Indicates IT Admins can set an end date to define the last scheduler run before this time. If not set, the scheduler runs continuously. There is no time zone information at this time; it needs to be coordinated with `timezone`, for example, "2025-02-01 00:00:00" with "China Standard Time" means the scheduling rule takes effect before Feb 01 2025 00:00:00 GMT+0800 (China Standard Time).| |timezone|cloudPcPolicyTimezone|Indicates IT Admins can set a timezone to define the timezone of `nextRunDateTime`, `startDateTime`, `endDateTime`, default is `gmt`. Possible values are `gmt`, `bit`, `nut`, `hst`, `mit`, `akst`, `pst`, `mst`, `east`, `est`, `ast`, `nst`, `art`, `gst`, `azot`, `cet`, `cat`, `eat`, `get`, `pkt`, `ist`, `bst`, `tha`, `cst`, `jst`, `acst`, `pgt`, `sbt`, `fjt`, `tot`, `lint`, and `unknownFutureValue`.| ## JSON representation @@ -43,6 +44,7 @@ The following JSON representation shows the resource type. { "@odata.type": "https://graph.microsoft.com/beta/$metadata#cloudPcPolicyScheduledApplyActionDetail", "reservePercentage": 50, + "isForceUserLogoffEnabled": "Boolean", "cronScheduleExpression": "0 0 0 20 * *", "nextRunDateTime": "2025-03-20 08:00:00", "startDateTime": "2025-03-12 00:00:00", diff --git a/api-reference/beta/resources/cloudpcprovisioningpolicy.md b/api-reference/beta/resources/cloudpcprovisioningpolicy.md index 7ef7fbeb013..22a3005f985 100644 --- a/api-reference/beta/resources/cloudpcprovisioningpolicy.md +++ b/api-reference/beta/resources/cloudpcprovisioningpolicy.md @@ -5,7 +5,7 @@ author: "danipocket" ms.localizationpriority: medium ms.subservice: "cloud-pc" doc_type: resourcePageType -ms.date: 05/05/2026 +ms.date: 06/01/2026 --- # cloudPcProvisioningPolicy resource type @@ -32,6 +32,7 @@ Represents a Cloud PC provisioning policy. |[Schedule policy apply task](../api/cloudpcprovisioningpolicy-schedulepolicyapplytask.md)|None|Schedule a policy apply task for a [provisioning policy](../resources/cloudpcprovisioningpolicy.md).| |[Retrieve policy apply action result](../api/cloudpcprovisioningpolicy-retrievepolicyapplyactionresult.md)|[cloudPcPolicyApplyActionResult](../resources/cloudpcpolicyapplyactionresult.md)|Retrieve the result of a policy apply action for a [provisioning policy](../resources/cloudpcprovisioningpolicy.md).| |[Retrieve policy apply schedule](../api/cloudpcprovisioningpolicy-retrievepolicyapplyschedule.md)|[cloudPcPolicyScheduledApplyActionDetail](../resources/cloudpcpolicyscheduledapplyactiondetail.md)|Retrieve the schedule for a policy apply action for a [provisioning policy](../resources/cloudpcprovisioningpolicy.md).| +|[Retrieve policy update status result](../api/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult.md)|[cloudPcPolicyPendingApplyStatusResult](../resources/cloudpcpolicypendingapplystatusresult.md)|Retrieve the pending apply status of a [provisioning policy](../resources/cloudpcprovisioningpolicy.md) to determine whether unapplied changes exist for Cloud PCs.| ## Properties diff --git a/api-reference/beta/toc/toc.mapping.json b/api-reference/beta/toc/toc.mapping.json index 6aa64610749..4e6ee71e579 100644 --- a/api-reference/beta/toc/toc.mapping.json +++ b/api-reference/beta/toc/toc.mapping.json @@ -695,6 +695,7 @@ "cloudPcOnPremisesConnectionStatusDetails", "cloudPcOnPremisesConnectionSubnetIpDetail", "cloudPcPartnerAgentInstallResult", + "cloudPcPolicyPendingApplyStatusResult", "cloudPcPoolCapabilityConfiguration", "cloudPcProvisioningPolicyAssignment", "cloudPcProvisioningPolicyAutopatch", diff --git a/changelog/Microsoft.CloudManagedDesktop.json b/changelog/Microsoft.CloudManagedDesktop.json index 19fde0c44cd..cdf4699b114 100644 --- a/changelog/Microsoft.CloudManagedDesktop.json +++ b/changelog/Microsoft.CloudManagedDesktop.json @@ -1,5 +1,47 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "ddd9e07d-bacf-449d-86ae-7b4aaeac7358", + "ApiChange": "Property", + "ChangedApiName": "isForceUserLogoffEnabled", + "ChangeType": "Addition", + "Description": "Added the **isForceUserLogoffEnabled** property to the [cloudPcPolicyScheduledApplyActionDetail](https://learn.microsoft.com/en-us/graph/api/resources/cloudpcpolicyscheduledapplyactiondetail?view=graph-rest-beta) resource.", + "Target": "cloudPcPolicyScheduledApplyActionDetail" + }, + { + "Id": "ddd9e07d-bacf-449d-86ae-7b4aaeac7358", + "ApiChange": "Parameter", + "ChangedApiName": "isForceUserLogoffEnabled", + "ChangeType": "Addition", + "Description": "Added the **isForceUserLogoffEnabled** parameter to the [apply](https://learn.microsoft.com/en-us/graph/api/cloudpcprovisioningpolicy-apply?view=graph-rest-beta) method.", + "Target": "apply" + }, + { + "Id": "ddd9e07d-bacf-449d-86ae-7b4aaeac7358", + "ApiChange": "Resource", + "ChangedApiName": "cloudPcPolicyPendingApplyStatusResult", + "ChangeType": "Addition", + "Description": "Added the [cloudPcPolicyPendingApplyStatusResult](https://learn.microsoft.com/en-us/graph/api/resources/cloudpcpolicypendingapplystatusresult?view=graph-rest-beta) resource type.", + "Target": "cloudPcPolicyPendingApplyStatusResult" + }, + { + "Id": "ddd9e07d-bacf-449d-86ae-7b4aaeac7358", + "ApiChange": "Method", + "ChangedApiName": "retrievePolicyUpdateStatusResult", + "ChangeType": "Addition", + "Description": "Added the [retrievePolicyUpdateStatusResult](https://learn.microsoft.com/en-us/graph/api/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult?view=graph-rest-beta) method to the [cloudPcProvisioningPolicy](https://learn.microsoft.com/en-us/graph/api/resources/cloudpcprovisioningpolicy?view=graph-rest-beta) resource.", + "Target": "cloudPcProvisioningPolicy" + } + ], + "Id": "ddd9e07d-bacf-449d-86ae-7b4aaeac7358", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-22T00:00:00.0000000Z", + "WorkloadArea": "Device and app management", + "SubArea": "Cloud PC" + }, { "ChangeList": [ { diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index 99ef8d63a1d..8ad1866db71 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -137,6 +137,8 @@ Added the **groupDisplayName** property to the [delegatedAdministrationRoleAssig ### Users Application permissions for the [user: translateExchangeIds](/graph/api/user-translateexchangeids?view=graph-rest-beta&preserve-view=true) API are supported only for request URLs that identify a user in the path. +- [Retrieve](/graph/api/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult?view=graph-rest-beta&preserve-view=true) the pending apply status of a [provisioning policy](/graph/api/resources/cloudpcprovisioningpolicy?view=graph-rest-beta&preserve-view=true) to determine whether unapplied changes exist for Cloud PCs. +- Use the **isForceUserLogoffEnabled** parameter and property on [cloudPcProvisioningPolicy: apply](/graph/api/cloudpcprovisioningpolicy-apply?view=graph-rest-beta&preserve-view=true) and [cloudPcPolicyScheduledApplyActionDetail](/graph/api/resources/cloudpcpolicyscheduledapplyactiondetail?view=graph-rest-beta&preserve-view=true) to indicate whether active Cloud PC sessions are forcibly signed out when reprovisioning begins. ## May 2026: New and generally available From 991d0c2afa134e70cc52f86df8639e5165e761df Mon Sep 17 00:00:00 2001 From: angiechen22 <111081743+angiechen22@users.noreply.github.com> Date: Mon, 22 Jun 2026 18:48:09 -0700 Subject: [PATCH 25/52] Windows Updates New Enrollment States (#24135) * updatecategoryenrollmetninformation.md * updatemanagementenrollment.md * azureaddevice.md * changelog * cleanup * acrolinx * Update api-reference/beta/resources/windowsupdates-updatecategoryenrollmentinformation.md Co-authored-by: Daniela Bonilla Montero <92937694+Danielabom@users.noreply.github.com> * Update api-reference/beta/resources/windowsupdates-updatecategoryenrollmentinformation.md Co-authored-by: Daniela Bonilla Montero <92937694+Danielabom@users.noreply.github.com> * reviewer suggestions * typo fix * fixed build error * created enums.md file * heading change * build errors * Fixed build errors. * Fixing build issues. * Build issues * Apply suggestions from code review * Apply suggestions from code review * Update windowsupdates-enums.md * Apply suggestions from code review * Update windowsupdates-enums.md * Apply suggestions from code review * Updated response. * reverted changelog issues * reverted changelog to commit 37f2366 * reverted changelog to commit c4f4d79cfa76e4c41b5cf8da4f7e751d3c41c5e3 * re-added changelog entries for this PR * Update Microsoft.WindowsUpdates.json The changelog was showing incorrect entries. * Apply suggestions from code review * Apply suggestions from code review * Update changelog * Revert "Update changelog" This reverts commit df0209779bae59e2dbc398837f334e521dba546f. * update changelog attempt 2 * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Minor fixes. * Delete api-reference/beta/resources/windowsupdates-enums.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update enums-windowsupdates.md * Minor fixes. * Remove unintended changelog update * minor fixes * Update windowsupdates-azureaddevice.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update toc.mapping.json * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update windowsupdates-updatableassetenrollment.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update Microsoft.WindowsUpdates.json * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update reference TOC * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update reference TOC * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Daniela Bonilla Montero <92937694+Danielabom@users.noreply.github.com> Co-authored-by: Daniela Bonilla Montero Co-authored-by: araqueno Co-authored-by: araqueno <118419398+araqueno@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Microsoft Graph DevX Tooling --- ...ates-list-updatableassets-azureaddevice.md | 49 +++++++++-- ...dminwindowsupdates-list-updatableassets.md | 19 +++-- .../beta/api/sharepointgroup-list-members.md | 6 +- .../api/windowsupdates-azureaddevice-get.md | 20 +++-- ...ates-deploymentaudience-list-exclusions.md | 21 +++-- ...updates-deploymentaudience-list-members.md | 20 +++-- .../beta/resources/enums-windowsupdates.md | 11 +++ .../resources/windowsupdates-azureaddevice.md | 15 ++-- ...windowsupdates-updatableassetenrollment.md | 8 +- ...tes-updatecategoryenrollmentinformation.md | 47 +++++++++++ ...ndowsupdates-updatemanagementenrollment.md | 19 +++-- .../toc/device-and-app-management/toc.yml | 4 +- api-reference/beta/toc/toc.mapping.json | 1 + .../v1.0/api/sharepointgroup-list-members.md | 5 +- changelog/Microsoft.WindowsUpdates.json | 82 +++++++++++++++++++ concepts/whats-new-overview.md | 4 + 16 files changed, 274 insertions(+), 57 deletions(-) create mode 100644 api-reference/beta/resources/windowsupdates-updatecategoryenrollmentinformation.md diff --git a/api-reference/beta/api/adminwindowsupdates-list-updatableassets-azureaddevice.md b/api-reference/beta/api/adminwindowsupdates-list-updatableassets-azureaddevice.md index f18253c24d5..7654b805d1f 100644 --- a/api-reference/beta/api/adminwindowsupdates-list-updatableassets-azureaddevice.md +++ b/api-reference/beta/api/adminwindowsupdates-list-updatableassets-azureaddevice.md @@ -116,18 +116,39 @@ Content-Type: application/json "@odata.type": "#microsoft.graph.windowsUpdates.azureADDevice", "id": "983f03cd-03cd-983f-cd03-3f98cd033f98", "errors": [], - "enrollments": [ - { - "@odata.type": "microsoft.graph.windowsUpdates.updateManagementEnrollment", - "updateCategory": "feature" + "enrollment": { + "feature": { + "enrollmentState": "enrolled", + "lastModifiedDateTime": "2024-01-31T23:34:50.3183446Z" + }, + "quality": { + "enrollmentState": "notEnrolled", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" + }, + "driver": { + "enrollmentState": "enrolling", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" } - ] + } }, { "@odata.type": "#microsoft.graph.windowsUpdates.azureADDevice", "id": "90b91efa-6d46-42cd-ad4d-381831773a85", "errors": [], - "enrollments": [] + "enrollment": { + "feature": { + "enrollmentState": "enrolled", + "lastModifiedDateTime": "2024-01-31T23:34:50.3183446Z" + }, + "quality": { + "enrollmentState": "notEnrolled", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" + }, + "driver": { + "enrollmentState": "enrolling", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" + } + } }, { "@odata.type": "#microsoft.graph.windowsUpdates.azureADDevice", @@ -137,9 +158,21 @@ Content-Type: application/json "@odata.type": "microsoft.graph.windowsUpdates.azureADDeviceRegistrationError" } ], - "enrollments": [] + "enrollment": { + "feature": { + "enrollmentState": "enrolled", + "lastModifiedDateTime": "2024-01-31T23:34:50.3183446Z" + }, + "quality": { + "enrollmentState": "notEnrolled", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" + }, + "driver": { + "enrollmentState": "notEnrolled", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" + } + } } ] } ``` - diff --git a/api-reference/beta/api/adminwindowsupdates-list-updatableassets.md b/api-reference/beta/api/adminwindowsupdates-list-updatableassets.md index 31aed555c4f..baccdcd848f 100644 --- a/api-reference/beta/api/adminwindowsupdates-list-updatableassets.md +++ b/api-reference/beta/api/adminwindowsupdates-list-updatableassets.md @@ -118,14 +118,21 @@ Content-Type: application/json "@odata.type": "#microsoft.graph.windowsUpdates.azureADDevice", "id": "983f03cd-03cd-983f-cd03-3f98cd033f98", "errors": [], - "enrollments": [ - { - "@odata.type": "microsoft.graph.windowsUpdates.updateManagementEnrollment", - "updateCategory": "feature" + "enrollment": { + "feature": { + "enrollmentState": "enrolled", + "lastModifiedDateTime": "2024-01-31T23:34:50.3183446Z" + }, + "quality": { + "enrollmentState": "notEnrolled", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" + }, + "driver": { + "enrollmentState": "enrolling", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" } - ] + } } ] } ``` - diff --git a/api-reference/beta/api/sharepointgroup-list-members.md b/api-reference/beta/api/sharepointgroup-list-members.md index 2062076b51d..13861635ca1 100644 --- a/api-reference/beta/api/sharepointgroup-list-members.md +++ b/api-reference/beta/api/sharepointgroup-list-members.md @@ -145,9 +145,5 @@ Content-Type: application/json "description": "List members", "keywords": "", "section": "documentation", - "tocPath": "", - "suppressions": [ - "Error: /api/sharepointgroup-list-members.md: - Failed to parse enumeration values for type microsoft.graph.list. Table requires a column header named one of the following: Member, Name, Value" - ] + "tocPath": "" }--> diff --git a/api-reference/beta/api/windowsupdates-azureaddevice-get.md b/api-reference/beta/api/windowsupdates-azureaddevice-get.md index 7a37e59f117..6c07871f65c 100644 --- a/api-reference/beta/api/windowsupdates-azureaddevice-get.md +++ b/api-reference/beta/api/windowsupdates-azureaddevice-get.md @@ -114,12 +114,20 @@ Content-Type: application/json "@odata.type": "#microsoft.graph.windowsUpdates.azureADDevice", "id": "983f03cd-03cd-983f-cd03-3f98cd033f98", "errors": [], - "enrollments": [ - { - "@odata.type": "microsoft.graph.windowsUpdates.updateManagementEnrollment", - "updateCategory": "feature" - } - ] + "enrollment": { + "feature": { + "enrollmentState": "enrolled", + "lastModifiedDateTime": "2024-01-31T23:34:50.3183446Z" + }, + "quality": { + "enrollmentState": "notEnrolled", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" + }, + "driver": { + "enrollmentState": "enrolling", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" + } + } } } ``` diff --git a/api-reference/beta/api/windowsupdates-deploymentaudience-list-exclusions.md b/api-reference/beta/api/windowsupdates-deploymentaudience-list-exclusions.md index 4b64c0e2978..06b52453d62 100644 --- a/api-reference/beta/api/windowsupdates-deploymentaudience-list-exclusions.md +++ b/api-reference/beta/api/windowsupdates-deploymentaudience-list-exclusions.md @@ -110,14 +110,21 @@ Content-Type: application/json "@odata.type": "#microsoft.graph.windowsUpdates.azureADDevice", "id": "fb95f07d-9e73-411d-99ab-7eca3a5122b1", "errors": [], - "enrollments": [ - { - "@odata.type": "microsoft.graph.windowsUpdates.updateManagementEnrollment", - "updateCategory": "feature" + "enrollment": { + "feature": { + "enrollmentState": "enrolled", + "lastModifiedDateTime": "2024-01-31T23:34:50.3183446Z" + }, + "quality": { + "enrollmentState": "notEnrolled", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" + }, + "driver": { + "enrollmentState": "enrolling", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" } - ] + } } ] } -``` - +``` \ No newline at end of file diff --git a/api-reference/beta/api/windowsupdates-deploymentaudience-list-members.md b/api-reference/beta/api/windowsupdates-deploymentaudience-list-members.md index d9d3c7f6e8a..3dd0f8f6fb6 100644 --- a/api-reference/beta/api/windowsupdates-deploymentaudience-list-members.md +++ b/api-reference/beta/api/windowsupdates-deploymentaudience-list-members.md @@ -111,12 +111,20 @@ Content-Type: application/json "@odata.type": "#microsoft.graph.windowsUpdates.azureADDevice", "id": "fb95f07d-9e73-411d-99ab-7eca3a5122b1", "errors": [], - "enrollments": [ - { - "@odata.type": "microsoft.graph.windowsUpdates.updateManagementEnrollment", - "updateCategory": "feature" - } - ] + "enrollment": { + "feature": { + "enrollmentState": "enrolled", + "lastModifiedDateTime": "2024-01-31T23:34:50.3183446Z" + }, + "quality": { + "enrollmentState": "notEnrolled", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" + }, + "driver": { + "enrollmentState": "notEnrolled", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" + } + } } ] } diff --git a/api-reference/beta/resources/enums-windowsupdates.md b/api-reference/beta/resources/enums-windowsupdates.md index a1b3ca39e7e..0cf1d678ee5 100644 --- a/api-reference/beta/resources/enums-windowsupdates.md +++ b/api-reference/beta/resources/enums-windowsupdates.md @@ -44,6 +44,17 @@ Namespace: microsoft.graph.windowsUpdates |archived| |unknownFutureValue| +### enrollmentState values + +|Member| +|:---| +|notEnrolled| +|enrolled| +|enrolledWithPolicy| +|enrolling| +|unenrolling| +|unknownFutureValue| + ### monitoringAction values |Member| diff --git a/api-reference/beta/resources/windowsupdates-azureaddevice.md b/api-reference/beta/resources/windowsupdates-azureaddevice.md index c3576444faf..2ddf6b309d2 100644 --- a/api-reference/beta/resources/windowsupdates-azureaddevice.md +++ b/api-reference/beta/resources/windowsupdates-azureaddevice.md @@ -17,6 +17,7 @@ Namespace: microsoft.graph.windowsUpdates Represents a device in Microsoft Entra ID that is registered with Windows Autopatch. A Microsoft Entra device is automatically created through one of the following methods: + * [updatableAsset: enrollAssets](../api/windowsupdates-updatableasset-enrollassets.md) * [updatableAsset: enrollAssetsById](../api/windowsupdates-updatableasset-enrollassetsbyid.md) * [deploymentAudience: updateAudience](../api/windowsupdates-deploymentaudience-updateaudience.md) @@ -27,6 +28,7 @@ A Microsoft Entra device is automatically created through one of the following m Inherits from [updatableAsset](../resources/windowsupdates-updatableasset.md). ## Methods + |Method|Return type|Description| |:---|:---|:---| |[List Microsoft Entra devices](../api/adminwindowsupdates-list-updatableassets-azureaddevice.md)|[microsoft.graph.windowsUpdates.azureADDevice](../resources/windowsupdates-azureaddevice.md) collection|Get a list of the [azureADDevice](../resources/windowsupdates-azureaddevice.md) objects and their properties.| @@ -38,16 +40,19 @@ Inherits from [updatableAsset](../resources/windowsupdates-updatableasset.md). |[Unenroll by ID](../api/windowsupdates-updatableasset-unenrollassetsbyid.md)|None|Unenroll [azureADDevice](../resources/windowsupdates-azureaddevice.md) resources of the same type from update management by Windows Autopatch.| ## Properties + |Property|Type|Description| |:---|:---|:---| -|enrollments|[microsoft.graph.windowsUpdates.updatableAssetEnrollment](../resources/windowsupdates-updatableassetenrollment.md) collection|Specifies areas in which the device is enrolled. Read-only. Returned by default.| -|errors|[microsoft.graph.windowsUpdates.updatableAssetError](../resources/windowsupdates-updatableasseterror.md) collection|Specifies any errors that prevent the device from being enrolled in update management or receving deployed content. Read-only. Returned by default.| +|enrollment|[microsoft.graph.windowsUpdates.updateManagementEnrollment](../resources/windowsupdates-updatemanagementenrollment.md)|Specifies the update management enrollment for the device. Read-only. Returned by default.| +|errors|[microsoft.graph.windowsUpdates.updatableAssetError](../resources/windowsupdates-updatableasseterror.md) collection|Specifies any errors that prevent the device from being enrolled in update management or receiving deployed content. Read-only. Returned by default.| |id|String|An identifier for the device. Key. Not nullable. Read-only. Returned by default. Inherited from [updatableAsset](../resources/windowsupdates-updatableasset.md)| ## Relationships + None. ## JSON representation + The following JSON representation shows the resource type. +``` json +{ + "@odata.type": "#microsoft.graph.windowsUpdates.updateCategoryEnrollmentInformation", + "enrollmentState": "String", + "lastModifiedDateTime": "String (timestamp)" +} +``` diff --git a/api-reference/beta/resources/windowsupdates-updatemanagementenrollment.md b/api-reference/beta/resources/windowsupdates-updatemanagementenrollment.md index 11fb604ff73..323ad52c6fc 100644 --- a/api-reference/beta/resources/windowsupdates-updatemanagementenrollment.md +++ b/api-reference/beta/resources/windowsupdates-updatemanagementenrollment.md @@ -1,6 +1,6 @@ --- title: "updateManagementEnrollment resource type" -description: "Represents enrollment into management by Windows Autopatch of a certain update category." +description: "Represents per-category enrollment information for Windows Updates across supported update categories." author: "andredm7" ms.localizationpriority: medium ms.subservice: windows-autopatch @@ -14,14 +14,15 @@ Namespace: microsoft.graph.windowsUpdates [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Represents enrollment into management by Windows Autopatch of a certain update category. +Represents per-category enrollment information for Windows Updates across supported update categories. Inherits from [updatableAssetEnrollment](../resources/windowsupdates-updatableassetenrollment.md). - ## Properties |Property|Type|Description| |:---|:---|:---| -|updateCategory|microsoft.graph.windowsUpdates.updateCategory|The category of updates that Windows Autopatch manages. Supports a subset of the values for **updateCategory**. The possible values are: `driver`, `feature`, `quality`, `unknownFutureValue`.| +|driver|[microsoft.graph.windowsUpdates.updateCategoryEnrollmentInformation](../resources/windowsupdates-updatecategoryenrollmentinformation.md)|Information about the enrollment state of the device in driver update management.| +|feature|[microsoft.graph.windowsUpdates.updateCategoryEnrollmentInformation](../resources/windowsupdates-updatecategoryenrollmentinformation.md)|Information about the enrollment state of the device in feature update management.| +|quality|[microsoft.graph.windowsUpdates.updateCategoryEnrollmentInformation](../resources/windowsupdates-updatecategoryenrollmentinformation.md)|Information about the enrollment state of the device in quality update management.| ## Relationships None. @@ -36,6 +37,14 @@ The following JSON representation shows the resource type. ``` json { "@odata.type": "#microsoft.graph.windowsUpdates.updateManagementEnrollment", - "updateCategory": "String" + "driver": { + "@odata.type": "microsoft.graph.windowsUpdates.updateCategoryEnrollmentInformation" + }, + "feature": { + "@odata.type": "microsoft.graph.windowsUpdates.updateCategoryEnrollmentInformation" + }, + "quality": { + "@odata.type": "microsoft.graph.windowsUpdates.updateCategoryEnrollmentInformation" + } } ``` diff --git a/api-reference/beta/toc/device-and-app-management/toc.yml b/api-reference/beta/toc/device-and-app-management/toc.yml index 334c636823a..f45b5fd2dac 100644 --- a/api-reference/beta/toc/device-and-app-management/toc.yml +++ b/api-reference/beta/toc/device-and-app-management/toc.yml @@ -8934,10 +8934,12 @@ items: href: ../../resources/windowsupdates-softwareupdatecatalogentry.md - name: Software update filter href: ../../resources/windowsupdates-softwareupdatefilter.md - - name: Updatable asset enrollment + - name: Updatable asset enrollment (deprecated) href: ../../resources/windowsupdates-updatableassetenrollment.md - name: Updatable asset error href: ../../resources/windowsupdates-updatableasseterror.md + - name: Update category enrollment information + href: ../../resources/windowsupdates-updatecategoryenrollmentinformation.md - name: Update management enrollment href: ../../resources/windowsupdates-updatemanagementenrollment.md - name: User experience settings diff --git a/api-reference/beta/toc/toc.mapping.json b/api-reference/beta/toc/toc.mapping.json index 4e6ee71e579..c89ca4f3714 100644 --- a/api-reference/beta/toc/toc.mapping.json +++ b/api-reference/beta/toc/toc.mapping.json @@ -906,6 +906,7 @@ "microsoft.graph.windowsUpdates.softwareUpdateFilter", "microsoft.graph.windowsUpdates.updatableAssetEnrollment", "microsoft.graph.windowsUpdates.updatableAssetError", + "microsoft.graph.windowsUpdates.updateCategoryEnrollmentInformation", "microsoft.graph.windowsUpdates.updateManagementEnrollment", "microsoft.graph.windowsUpdates.userExperienceSettings", "microsoft.graph.windowsUpdates.windowsUpdateFilter" diff --git a/api-reference/v1.0/api/sharepointgroup-list-members.md b/api-reference/v1.0/api/sharepointgroup-list-members.md index 84174ba43d9..976d47d441a 100644 --- a/api-reference/v1.0/api/sharepointgroup-list-members.md +++ b/api-reference/v1.0/api/sharepointgroup-list-members.md @@ -145,8 +145,5 @@ Content-Type: application/json "description": "List members", "keywords": "", "section": "documentation", - "tocPath": "", - "suppressions": [ - "Error: /api/sharepointgroup-list-members.md: Failed to parse enumeration values for type microsoft.graph.list. Table requires a column header named one of the following: Member, Name, Value" - ] + "tocPath": "" }--> diff --git a/changelog/Microsoft.WindowsUpdates.json b/changelog/Microsoft.WindowsUpdates.json index f984b318702..421525e3381 100644 --- a/changelog/Microsoft.WindowsUpdates.json +++ b/changelog/Microsoft.WindowsUpdates.json @@ -1,5 +1,87 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Enumeration", + "ChangedApiName": "enrollmentState", + "ChangeType": "Addition", + "Description": "Added the **enrollmentState** enumeration type.", + "Target": "enrollmentState" + }, + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Resource", + "ChangedApiName": "updateCategoryEnrollmentInformation", + "ChangeType": "Addition", + "Description": "Added the [updateCategoryEnrollmentInformation](https://learn.microsoft.com/en-us/graph/api/resources/windowsupdates-updatecategoryenrollmentinformation?view=graph-rest-beta) resource type.", + "Target": "updateCategoryEnrollmentInformation" + }, + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Property", + "ChangedApiName": "updateCategory", + "ChangeType": "Deletion", + "Description": "Removed the **updateCategory** property from the [updateManagementEnrollment](https://learn.microsoft.com/en-us/graph/api/resources/windowsupdates-updateManagementEnrollment?view=graph-rest-beta) resource.", + "Target": "updateManagementEnrollment" + }, + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Property", + "ChangedApiName": "feature", + "ChangeType": "Addition", + "Description": "Added the **feature** property to the [updateManagementEnrollment](https://learn.microsoft.com/en-us/graph/api/resources/windowsupdates-updateManagementEnrollment?view=graph-rest-beta) resource.", + "Target": "updateManagementEnrollment" + }, + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Property", + "ChangedApiName": "quality", + "ChangeType": "Addition", + "Description": "Added the **quality** property to the [updateManagementEnrollment](https://learn.microsoft.com/en-us/graph/api/resources/windowsupdates-updateManagementEnrollment?view=graph-rest-beta) resource.", + "Target": "updateManagementEnrollment" + }, + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Property", + "ChangedApiName": "driver", + "ChangeType": "Addition", + "Description": "Added the **driver** property to the [updateManagementEnrollment](https://learn.microsoft.com/en-us/graph/api/resources/windowsupdates-updateManagementEnrollment?view=graph-rest-beta) resource.", + "Target": "updateManagementEnrollment" + }, + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Resource", + "ChangedApiName": "updatableAssetEnrollment", + "ChangeType": "Deprecation", + "Description": "Deprecated the [updatableAssetEnrollment](https://learn.microsoft.com/en-us/graph/api/resources/windowsupdates-updatableAssetEnrollment?view=graph-rest-beta) resource. The **updatableAssetEnrollment** resource is deprecated and stopped returning data on July 1, 2024.", + "Target": "updatableAssetEnrollment" + }, + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Property", + "ChangedApiName": "enrollments", + "ChangeType": "Deletion", + "Description": "Removed the **enrollments** property from the [azureADDevice](https://learn.microsoft.com/en-us/graph/api/resources/windowsupdates-azureADDevice?view=graph-rest-beta) resource.", + "Target": "azureADDevice" + }, + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Property", + "ChangedApiName": "enrollment", + "ChangeType": "Addition", + "Description": "Added the **enrollment** property to the [azureADDevice](https://learn.microsoft.com/en-us/graph/api/resources/windowsupdates-azureADDevice?view=graph-rest-beta) resource.", + "Target": "azureADDevice" + } + ], + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-26T23:34:50.3183446Z", + "WorkloadArea": "Device and app management", + "SubArea": "Device updates" + }, { "ChangeList": [ { diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index 8ad1866db71..158cf7db6a8 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -68,6 +68,10 @@ Use the new full workload backup APIs to protect entire Microsoft 365 workloads Use the [cloudPcProvisioningPolicy: apply](/graph/api/cloudpcprovisioningpolicy-apply?view=graph-rest-beta&preserve-view=true) method to apply policy settings such as `region` and `singleSignOn`. This method also supports reprovisioning for frontline shared mode Cloud PCs by using the **reservePercentage** parameter to control the percentage of Cloud PCs that remain available during the process. +### Device and app management | Device updates + +Added the [updateCategoryEnrollmentInformation](/graph/api/resources/windowsupdates-updatecategoryenrollmentinformation?view=graph-rest-beta&preserve-view=true) resource type to manage per-category enrollment state for Windows Updates. Use it to track enrollment state changes across update categories and access the current enrollment configuration through the [updateManagementEnrollment](/graph/api/resources/windowsupdates-updatemanagementenrollment?view=graph-rest-beta&preserve-view=true) and [azureADDevice](/graph/api/resources/windowsupdates-azureaddevice?view=graph-rest-beta&preserve-view=true) resources. + ### Files [Upsert](/graph/api/filestoragecontainer-patch-permissions?view=graph-rest-beta&preserve-view=true) (create or update) up to 40 permissions on a [fileStorageContainer](/graph/api/resources/filestoragecontainer?view=graph-rest-beta&preserve-view=true) in a single request. The limit increased from 10 to 40 [permission](/graph/api/resources/permission?view=graph-rest-beta&preserve-view=true) objects per request. From f35c2b542fbd5c47328e8c801e7dc0b2a227b398 Mon Sep 17 00:00:00 2001 From: Danipocket <88507770+Danipocket@users.noreply.github.com> Date: Mon, 22 Jun 2026 21:10:07 -0600 Subject: [PATCH 26/52] Merge to publish. (#29141) * Add force user logoff option and policy update status API for Cloud PC provisioning policy (#28989) * add new property and function * remove generated files * add change log * Address Copilot review feedback * Address Copilot review feedback * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * resolve merge connflict and update accordingly * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Danni Zhao Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Windows Updates New Enrollment States (#24135) * updatecategoryenrollmetninformation.md * updatemanagementenrollment.md * azureaddevice.md * changelog * cleanup * acrolinx * Update api-reference/beta/resources/windowsupdates-updatecategoryenrollmentinformation.md Co-authored-by: Daniela Bonilla Montero <92937694+Danielabom@users.noreply.github.com> * Update api-reference/beta/resources/windowsupdates-updatecategoryenrollmentinformation.md Co-authored-by: Daniela Bonilla Montero <92937694+Danielabom@users.noreply.github.com> * reviewer suggestions * typo fix * fixed build error * created enums.md file * heading change * build errors * Fixed build errors. * Fixing build issues. * Build issues * Apply suggestions from code review * Apply suggestions from code review * Update windowsupdates-enums.md * Apply suggestions from code review * Update windowsupdates-enums.md * Apply suggestions from code review * Updated response. * reverted changelog issues * reverted changelog to commit 37f2366 * reverted changelog to commit c4f4d79cfa76e4c41b5cf8da4f7e751d3c41c5e3 * re-added changelog entries for this PR * Update Microsoft.WindowsUpdates.json The changelog was showing incorrect entries. * Apply suggestions from code review * Apply suggestions from code review * Update changelog * Revert "Update changelog" This reverts commit df0209779bae59e2dbc398837f334e521dba546f. * update changelog attempt 2 * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Minor fixes. * Delete api-reference/beta/resources/windowsupdates-enums.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update enums-windowsupdates.md * Minor fixes. * Remove unintended changelog update * minor fixes * Update windowsupdates-azureaddevice.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update toc.mapping.json * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update windowsupdates-updatableassetenrollment.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update Microsoft.WindowsUpdates.json * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update reference TOC * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update reference TOC * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Daniela Bonilla Montero <92937694+Danielabom@users.noreply.github.com> Co-authored-by: Daniela Bonilla Montero Co-authored-by: araqueno Co-authored-by: araqueno <118419398+araqueno@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Microsoft Graph DevX Tooling --------- Co-authored-by: danny1718 Co-authored-by: Danni Zhao Co-authored-by: MSFT-Andrea Co-authored-by: angiechen22 <111081743+angiechen22@users.noreply.github.com> Co-authored-by: Daniela Bonilla Montero <92937694+Danielabom@users.noreply.github.com> Co-authored-by: Daniela Bonilla Montero Co-authored-by: araqueno Co-authored-by: araqueno <118419398+araqueno@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling --- ...ates-list-updatableassets-azureaddevice.md | 49 +++++++++-- ...dminwindowsupdates-list-updatableassets.md | 19 ++-- .../api/cloudpcprovisioningpolicy-apply.md | 44 +++++++++- ...policy-retrievepolicyupdatestatusresult.md | 86 +++++++++++++++++++ .../beta/api/sharepointgroup-list-members.md | 6 +- .../api/windowsupdates-azureaddevice-get.md | 20 +++-- ...ates-deploymentaudience-list-exclusions.md | 21 +++-- ...updates-deploymentaudience-list-members.md | 20 +++-- ...evepolicyupdatestatusresult-permissions.md | 11 +++ .../cloudpcpolicypendingapplystatusresult.md | 43 ++++++++++ ...cloudpcpolicyscheduledapplyactiondetail.md | 8 +- .../resources/cloudpcprovisioningpolicy.md | 3 +- .../beta/resources/enums-windowsupdates.md | 11 +++ .../resources/windowsupdates-azureaddevice.md | 15 ++-- ...windowsupdates-updatableassetenrollment.md | 8 +- ...tes-updatecategoryenrollmentinformation.md | 47 ++++++++++ ...ndowsupdates-updatemanagementenrollment.md | 19 ++-- .../toc/device-and-app-management/toc.yml | 4 +- api-reference/beta/toc/toc.mapping.json | 2 + .../v1.0/api/sharepointgroup-list-members.md | 5 +- changelog/Microsoft.CloudManagedDesktop.json | 42 +++++++++ changelog/Microsoft.WindowsUpdates.json | 82 ++++++++++++++++++ concepts/whats-new-overview.md | 6 ++ 23 files changed, 508 insertions(+), 63 deletions(-) create mode 100644 api-reference/beta/api/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult.md create mode 100644 api-reference/beta/includes/permissions/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult-permissions.md create mode 100644 api-reference/beta/resources/cloudpcpolicypendingapplystatusresult.md create mode 100644 api-reference/beta/resources/windowsupdates-updatecategoryenrollmentinformation.md diff --git a/api-reference/beta/api/adminwindowsupdates-list-updatableassets-azureaddevice.md b/api-reference/beta/api/adminwindowsupdates-list-updatableassets-azureaddevice.md index f18253c24d5..7654b805d1f 100644 --- a/api-reference/beta/api/adminwindowsupdates-list-updatableassets-azureaddevice.md +++ b/api-reference/beta/api/adminwindowsupdates-list-updatableassets-azureaddevice.md @@ -116,18 +116,39 @@ Content-Type: application/json "@odata.type": "#microsoft.graph.windowsUpdates.azureADDevice", "id": "983f03cd-03cd-983f-cd03-3f98cd033f98", "errors": [], - "enrollments": [ - { - "@odata.type": "microsoft.graph.windowsUpdates.updateManagementEnrollment", - "updateCategory": "feature" + "enrollment": { + "feature": { + "enrollmentState": "enrolled", + "lastModifiedDateTime": "2024-01-31T23:34:50.3183446Z" + }, + "quality": { + "enrollmentState": "notEnrolled", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" + }, + "driver": { + "enrollmentState": "enrolling", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" } - ] + } }, { "@odata.type": "#microsoft.graph.windowsUpdates.azureADDevice", "id": "90b91efa-6d46-42cd-ad4d-381831773a85", "errors": [], - "enrollments": [] + "enrollment": { + "feature": { + "enrollmentState": "enrolled", + "lastModifiedDateTime": "2024-01-31T23:34:50.3183446Z" + }, + "quality": { + "enrollmentState": "notEnrolled", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" + }, + "driver": { + "enrollmentState": "enrolling", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" + } + } }, { "@odata.type": "#microsoft.graph.windowsUpdates.azureADDevice", @@ -137,9 +158,21 @@ Content-Type: application/json "@odata.type": "microsoft.graph.windowsUpdates.azureADDeviceRegistrationError" } ], - "enrollments": [] + "enrollment": { + "feature": { + "enrollmentState": "enrolled", + "lastModifiedDateTime": "2024-01-31T23:34:50.3183446Z" + }, + "quality": { + "enrollmentState": "notEnrolled", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" + }, + "driver": { + "enrollmentState": "notEnrolled", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" + } + } } ] } ``` - diff --git a/api-reference/beta/api/adminwindowsupdates-list-updatableassets.md b/api-reference/beta/api/adminwindowsupdates-list-updatableassets.md index 31aed555c4f..baccdcd848f 100644 --- a/api-reference/beta/api/adminwindowsupdates-list-updatableassets.md +++ b/api-reference/beta/api/adminwindowsupdates-list-updatableassets.md @@ -118,14 +118,21 @@ Content-Type: application/json "@odata.type": "#microsoft.graph.windowsUpdates.azureADDevice", "id": "983f03cd-03cd-983f-cd03-3f98cd033f98", "errors": [], - "enrollments": [ - { - "@odata.type": "microsoft.graph.windowsUpdates.updateManagementEnrollment", - "updateCategory": "feature" + "enrollment": { + "feature": { + "enrollmentState": "enrolled", + "lastModifiedDateTime": "2024-01-31T23:34:50.3183446Z" + }, + "quality": { + "enrollmentState": "notEnrolled", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" + }, + "driver": { + "enrollmentState": "enrolling", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" } - ] + } } ] } ``` - diff --git a/api-reference/beta/api/cloudpcprovisioningpolicy-apply.md b/api-reference/beta/api/cloudpcprovisioningpolicy-apply.md index 96775a49299..78a39ce28c5 100644 --- a/api-reference/beta/api/cloudpcprovisioningpolicy-apply.md +++ b/api-reference/beta/api/cloudpcprovisioningpolicy-apply.md @@ -5,7 +5,7 @@ author: "Guoan-Tang" ms.localizationpriority: medium ms.subservice: "cloud-pc" doc_type: apiPageType -ms.date: 05/18/2026 +ms.date: 06/01/2026 --- # cloudPcProvisioningPolicy: apply @@ -51,8 +51,9 @@ The following table shows the parameters that you can use with this method. |Parameter|Type|Description| |:---|:---|:---| +|isForceUserLogoffEnabled|Boolean|For *Frontline shared* only. Indicates whether active Cloud PC sessions are forcibly signed out when reprovisioning begins. When `true`, connected users are immediately signed out and reprovisioning starts right away; **reservePercentage** must be set to `0` when this parameter is `true`, otherwise the request fails. When `false`, reprovisioning waits until the user disconnects. The default value is `false`. Optional.| |policySettings|cloudPcPolicySettingType|The target property of the apply action. The possible values are: `region`, `singleSignOn`, `unknownFutureValue`. The default value is `region`. This action applies `region` as a value if this parameter is `null`.| -|reservePercentage|Int32|For `Frontline shared` only. The percentage of Cloud PCs to keep available. Administrators can set this property to a value from 0 to 99. Cloud PCs are reprovisioned only when there are no active and connected Cloud PC users.| +|reservePercentage|Int32|For *Frontline shared* only. The percentage of Cloud PCs to keep available. Administrators can set this property to a value from `0` to `99`. Cloud PCs are reprovisioned only when there are no active and connected Cloud PC users.| ## Response @@ -144,6 +145,7 @@ POST https://graph.microsoft.com/beta/deviceManagement/virtualEndpoint/provision Content-Type: application/json { + "isForceUserLogoffEnabled": false, "reservePercentage": 80 } ``` @@ -187,3 +189,41 @@ The following example shows the response. ``` http HTTP/1.1 204 No Content ``` + +### Example 3: Reprovision frontline shared Cloud PCs and force user sign-out + +The following example shows how to immediately reprovision frontline shared Cloud PCs under a specified provisioning policy by forcibly signing out active sessions. When **isForceUserLogoffEnabled** is `true`, **reservePercentage** must be set to `0`. + +#### Request + +The following example shows a request. + + + +``` http +POST https://graph.microsoft.com/beta/deviceManagement/virtualEndpoint/provisioningPolicies/1d164206-bf41-4fd2-8424-a3192d39ffff/apply +Content-Type: application/json + +{ + "isForceUserLogoffEnabled": true, + "reservePercentage": 0 +} +``` + +#### Response + +The following example shows the response. + + + +``` http +HTTP/1.1 204 No Content +``` diff --git a/api-reference/beta/api/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult.md b/api-reference/beta/api/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult.md new file mode 100644 index 00000000000..1ef71845373 --- /dev/null +++ b/api-reference/beta/api/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult.md @@ -0,0 +1,86 @@ +--- +title: "cloudPcProvisioningPolicy: retrievePolicyUpdateStatusResult" +description: "Retrieve the pending apply status of a provisioning policy to determine whether unapplied changes exist for Cloud PCs." +author: "zhuangzhuang131419" +ms.localizationpriority: medium +ms.subservice: "cloud-pc" +doc_type: apiPageType +ms.date: 06/01/2026 +--- + +# cloudPcProvisioningPolicy: retrievePolicyUpdateStatusResult + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Retrieve the pending apply status of a [provisioning policy](../resources/cloudpcprovisioningpolicy.md) to determine whether unapplied changes exist for Cloud PCs. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult-permissions.md)] + +## HTTP request + + + +``` http +GET /deviceManagement/virtualEndpoint/provisioningPolicies/{id}/retrievePolicyUpdateStatusResult +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this function returns a `200 OK` response code and a [cloudPcPolicyPendingApplyStatusResult](../resources/cloudpcpolicypendingapplystatusresult.md) in the response body. + +## Examples + +### Request + +The following example shows a request. + + + +``` http +GET https://graph.microsoft.com/beta/deviceManagement/virtualEndpoint/provisioningPolicies/b0c2d35f-3385-46c8-a6f5-6c3dfad7708b/retrievePolicyUpdateStatusResult +``` + +### Response + +The following example shows the response. + + + +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.type": "https://graph.microsoft.com/beta/$metadata#cloudPcPolicyPendingApplyStatusResult", + "hasUnappliedPolicyUpdate": true +} +``` diff --git a/api-reference/beta/api/sharepointgroup-list-members.md b/api-reference/beta/api/sharepointgroup-list-members.md index 2062076b51d..13861635ca1 100644 --- a/api-reference/beta/api/sharepointgroup-list-members.md +++ b/api-reference/beta/api/sharepointgroup-list-members.md @@ -145,9 +145,5 @@ Content-Type: application/json "description": "List members", "keywords": "", "section": "documentation", - "tocPath": "", - "suppressions": [ - "Error: /api/sharepointgroup-list-members.md: - Failed to parse enumeration values for type microsoft.graph.list. Table requires a column header named one of the following: Member, Name, Value" - ] + "tocPath": "" }--> diff --git a/api-reference/beta/api/windowsupdates-azureaddevice-get.md b/api-reference/beta/api/windowsupdates-azureaddevice-get.md index 7a37e59f117..6c07871f65c 100644 --- a/api-reference/beta/api/windowsupdates-azureaddevice-get.md +++ b/api-reference/beta/api/windowsupdates-azureaddevice-get.md @@ -114,12 +114,20 @@ Content-Type: application/json "@odata.type": "#microsoft.graph.windowsUpdates.azureADDevice", "id": "983f03cd-03cd-983f-cd03-3f98cd033f98", "errors": [], - "enrollments": [ - { - "@odata.type": "microsoft.graph.windowsUpdates.updateManagementEnrollment", - "updateCategory": "feature" - } - ] + "enrollment": { + "feature": { + "enrollmentState": "enrolled", + "lastModifiedDateTime": "2024-01-31T23:34:50.3183446Z" + }, + "quality": { + "enrollmentState": "notEnrolled", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" + }, + "driver": { + "enrollmentState": "enrolling", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" + } + } } } ``` diff --git a/api-reference/beta/api/windowsupdates-deploymentaudience-list-exclusions.md b/api-reference/beta/api/windowsupdates-deploymentaudience-list-exclusions.md index 4b64c0e2978..06b52453d62 100644 --- a/api-reference/beta/api/windowsupdates-deploymentaudience-list-exclusions.md +++ b/api-reference/beta/api/windowsupdates-deploymentaudience-list-exclusions.md @@ -110,14 +110,21 @@ Content-Type: application/json "@odata.type": "#microsoft.graph.windowsUpdates.azureADDevice", "id": "fb95f07d-9e73-411d-99ab-7eca3a5122b1", "errors": [], - "enrollments": [ - { - "@odata.type": "microsoft.graph.windowsUpdates.updateManagementEnrollment", - "updateCategory": "feature" + "enrollment": { + "feature": { + "enrollmentState": "enrolled", + "lastModifiedDateTime": "2024-01-31T23:34:50.3183446Z" + }, + "quality": { + "enrollmentState": "notEnrolled", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" + }, + "driver": { + "enrollmentState": "enrolling", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" } - ] + } } ] } -``` - +``` \ No newline at end of file diff --git a/api-reference/beta/api/windowsupdates-deploymentaudience-list-members.md b/api-reference/beta/api/windowsupdates-deploymentaudience-list-members.md index d9d3c7f6e8a..3dd0f8f6fb6 100644 --- a/api-reference/beta/api/windowsupdates-deploymentaudience-list-members.md +++ b/api-reference/beta/api/windowsupdates-deploymentaudience-list-members.md @@ -111,12 +111,20 @@ Content-Type: application/json "@odata.type": "#microsoft.graph.windowsUpdates.azureADDevice", "id": "fb95f07d-9e73-411d-99ab-7eca3a5122b1", "errors": [], - "enrollments": [ - { - "@odata.type": "microsoft.graph.windowsUpdates.updateManagementEnrollment", - "updateCategory": "feature" - } - ] + "enrollment": { + "feature": { + "enrollmentState": "enrolled", + "lastModifiedDateTime": "2024-01-31T23:34:50.3183446Z" + }, + "quality": { + "enrollmentState": "notEnrolled", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" + }, + "driver": { + "enrollmentState": "notEnrolled", + "lastModifiedDateTime": "2024-03-31T23:34:50.3183446Z" + } + } } ] } diff --git a/api-reference/beta/includes/permissions/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult-permissions.md b/api-reference/beta/includes/permissions/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult-permissions.md new file mode 100644 index 00000000000..f5bba922e1b --- /dev/null +++ b/api-reference/beta/includes/permissions/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult-permissions.md @@ -0,0 +1,11 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|CloudPC.ReadWrite.All|Not available.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|CloudPC.ReadWrite.All|Not available.| diff --git a/api-reference/beta/resources/cloudpcpolicypendingapplystatusresult.md b/api-reference/beta/resources/cloudpcpolicypendingapplystatusresult.md new file mode 100644 index 00000000000..1b5881f67ef --- /dev/null +++ b/api-reference/beta/resources/cloudpcpolicypendingapplystatusresult.md @@ -0,0 +1,43 @@ +--- +title: "cloudPcPolicyPendingApplyStatusResult resource type" +description: "Represents the result of checking whether a provisioning policy has unapplied changes pending for Cloud PCs." +author: "zhuangzhuang131419" +ms.localizationpriority: medium +ms.subservice: "cloud-pc" +doc_type: resourcePageType +ms.date: 06/01/2026 +--- + +# cloudPcPolicyPendingApplyStatusResult resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents the result of checking whether a provisioning policy has unapplied changes pending for Cloud PCs. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|hasUnappliedPolicyUpdate|Boolean|Indicates whether the provisioning policy has unapplied changes pending for Cloud PCs. When `true`, the policy contains changes that aren't yet applied. When `false`, all policy changes are applied. Read-only.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.cloudPcPolicyPendingApplyStatusResult", + "hasUnappliedPolicyUpdate": true +} +``` diff --git a/api-reference/beta/resources/cloudpcpolicyscheduledapplyactiondetail.md b/api-reference/beta/resources/cloudpcpolicyscheduledapplyactiondetail.md index c4c415c8d69..2c3dcfe4ac4 100644 --- a/api-reference/beta/resources/cloudpcpolicyscheduledapplyactiondetail.md +++ b/api-reference/beta/resources/cloudpcpolicyscheduledapplyactiondetail.md @@ -5,7 +5,7 @@ author: "zhuangzhuang131419" ms.localizationpriority: medium ms.subservice: "cloud-pc" doc_type: resourcePageType -ms.date: 05/08/2025 +ms.date: 06/01/2026 --- # cloudPcPolicyScheduledApplyActionDetail resource type @@ -20,11 +20,12 @@ Represents a scheduled apply rule set on the policy. For `Frontline shared` only |Property|Type|Description| |:---|:---|:---| -|reservePercentage|Int32|The percentage of Cloud PCs to keep available. Administrators can set this property to a value from 0 to 99. Cloud PCs are reprovisioned only when there are no active and connected Cloud PC users. `Frontline shared` only.| |cronScheduleExpression|String|An expression that specifies the cron schedule. (For example, "0 0 0 20 * *" means schedules a job to run at midnight on the 20th of every month) Administrators can set a cron expression to define the scheduling rules for automatic regular application. When auto provision is disabled, `cronScheduleExpression` is set to null, stopping the automatic task scheduling. Read-Only.| +|endDateTime|String|Indicates IT Admins can set an end date to define the last scheduler run before this time. If not set, the scheduler runs continuously. There is no time zone information at this time; it needs to be coordinated with `timezone`, for example, "2025-02-01 00:00:00" with "China Standard Time" means the scheduling rule takes effect before Feb 01 2025 00:00:00 GMT+0800 (China Standard Time).| +|isForceUserLogoffEnabled|Boolean|Indicates whether active Cloud PC sessions are forcibly signed out when reprovisioning begins. When `true`, connected users are immediately signed out and reprovisioning starts right away; **reservePercentage** must be set to `0` when this property is `true`, otherwise the request fails. When `false`, reprovisioning waits until the user disconnects. The default value is `false`. Optional. *Frontline shared* only.| |nextRunDateTime|String|Indicates IT Admins can see when the next automatic regular apply is executed. It needs to be coordinated with `timezone`, for example, "2025-01-01 00:00:00" with "China Standard Time" means the next task executes at Jan 01 2025 00:00:00 GMT+0800 (China Standard Time). Read-Only.| +|reservePercentage|Int32|The percentage of Cloud PCs to keep available. Administrators can set this property to a value from `0` to `99`. Cloud PCs are reprovisioned only when there are no active and connected Cloud PC users. *Frontline shared* only.| |startDateTime|String|Indicates IT Admins can set a start date to define the first scheduler run after this time. If not set, the default is the current time. There is no time zone information at this time, it needs to be coordinated with `timezone`, for example, "2025-01-01 00:00:00" with "China Standard Time" means the scheduling rule takes effect after Jan 01 2025 00:00:00 GMT+0800 (China Standard Time).| -|endDateTime|String|Indicates IT Admins can set an end date to define the last scheduler run before this time. If not set, the scheduler runs continuously. There is no time zone information at this time; it needs to be coordinated with `timezone`, for example, "2025-02-01 00:00:00" with "China Standard Time" means the scheduling rule takes effect before Feb 01 2025 00:00:00 GMT+0800 (China Standard Time).| |timezone|cloudPcPolicyTimezone|Indicates IT Admins can set a timezone to define the timezone of `nextRunDateTime`, `startDateTime`, `endDateTime`, default is `gmt`. Possible values are `gmt`, `bit`, `nut`, `hst`, `mit`, `akst`, `pst`, `mst`, `east`, `est`, `ast`, `nst`, `art`, `gst`, `azot`, `cet`, `cat`, `eat`, `get`, `pkt`, `ist`, `bst`, `tha`, `cst`, `jst`, `acst`, `pgt`, `sbt`, `fjt`, `tot`, `lint`, and `unknownFutureValue`.| ## JSON representation @@ -43,6 +44,7 @@ The following JSON representation shows the resource type. { "@odata.type": "https://graph.microsoft.com/beta/$metadata#cloudPcPolicyScheduledApplyActionDetail", "reservePercentage": 50, + "isForceUserLogoffEnabled": "Boolean", "cronScheduleExpression": "0 0 0 20 * *", "nextRunDateTime": "2025-03-20 08:00:00", "startDateTime": "2025-03-12 00:00:00", diff --git a/api-reference/beta/resources/cloudpcprovisioningpolicy.md b/api-reference/beta/resources/cloudpcprovisioningpolicy.md index 7ef7fbeb013..22a3005f985 100644 --- a/api-reference/beta/resources/cloudpcprovisioningpolicy.md +++ b/api-reference/beta/resources/cloudpcprovisioningpolicy.md @@ -5,7 +5,7 @@ author: "danipocket" ms.localizationpriority: medium ms.subservice: "cloud-pc" doc_type: resourcePageType -ms.date: 05/05/2026 +ms.date: 06/01/2026 --- # cloudPcProvisioningPolicy resource type @@ -32,6 +32,7 @@ Represents a Cloud PC provisioning policy. |[Schedule policy apply task](../api/cloudpcprovisioningpolicy-schedulepolicyapplytask.md)|None|Schedule a policy apply task for a [provisioning policy](../resources/cloudpcprovisioningpolicy.md).| |[Retrieve policy apply action result](../api/cloudpcprovisioningpolicy-retrievepolicyapplyactionresult.md)|[cloudPcPolicyApplyActionResult](../resources/cloudpcpolicyapplyactionresult.md)|Retrieve the result of a policy apply action for a [provisioning policy](../resources/cloudpcprovisioningpolicy.md).| |[Retrieve policy apply schedule](../api/cloudpcprovisioningpolicy-retrievepolicyapplyschedule.md)|[cloudPcPolicyScheduledApplyActionDetail](../resources/cloudpcpolicyscheduledapplyactiondetail.md)|Retrieve the schedule for a policy apply action for a [provisioning policy](../resources/cloudpcprovisioningpolicy.md).| +|[Retrieve policy update status result](../api/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult.md)|[cloudPcPolicyPendingApplyStatusResult](../resources/cloudpcpolicypendingapplystatusresult.md)|Retrieve the pending apply status of a [provisioning policy](../resources/cloudpcprovisioningpolicy.md) to determine whether unapplied changes exist for Cloud PCs.| ## Properties diff --git a/api-reference/beta/resources/enums-windowsupdates.md b/api-reference/beta/resources/enums-windowsupdates.md index a1b3ca39e7e..0cf1d678ee5 100644 --- a/api-reference/beta/resources/enums-windowsupdates.md +++ b/api-reference/beta/resources/enums-windowsupdates.md @@ -44,6 +44,17 @@ Namespace: microsoft.graph.windowsUpdates |archived| |unknownFutureValue| +### enrollmentState values + +|Member| +|:---| +|notEnrolled| +|enrolled| +|enrolledWithPolicy| +|enrolling| +|unenrolling| +|unknownFutureValue| + ### monitoringAction values |Member| diff --git a/api-reference/beta/resources/windowsupdates-azureaddevice.md b/api-reference/beta/resources/windowsupdates-azureaddevice.md index c3576444faf..2ddf6b309d2 100644 --- a/api-reference/beta/resources/windowsupdates-azureaddevice.md +++ b/api-reference/beta/resources/windowsupdates-azureaddevice.md @@ -17,6 +17,7 @@ Namespace: microsoft.graph.windowsUpdates Represents a device in Microsoft Entra ID that is registered with Windows Autopatch. A Microsoft Entra device is automatically created through one of the following methods: + * [updatableAsset: enrollAssets](../api/windowsupdates-updatableasset-enrollassets.md) * [updatableAsset: enrollAssetsById](../api/windowsupdates-updatableasset-enrollassetsbyid.md) * [deploymentAudience: updateAudience](../api/windowsupdates-deploymentaudience-updateaudience.md) @@ -27,6 +28,7 @@ A Microsoft Entra device is automatically created through one of the following m Inherits from [updatableAsset](../resources/windowsupdates-updatableasset.md). ## Methods + |Method|Return type|Description| |:---|:---|:---| |[List Microsoft Entra devices](../api/adminwindowsupdates-list-updatableassets-azureaddevice.md)|[microsoft.graph.windowsUpdates.azureADDevice](../resources/windowsupdates-azureaddevice.md) collection|Get a list of the [azureADDevice](../resources/windowsupdates-azureaddevice.md) objects and their properties.| @@ -38,16 +40,19 @@ Inherits from [updatableAsset](../resources/windowsupdates-updatableasset.md). |[Unenroll by ID](../api/windowsupdates-updatableasset-unenrollassetsbyid.md)|None|Unenroll [azureADDevice](../resources/windowsupdates-azureaddevice.md) resources of the same type from update management by Windows Autopatch.| ## Properties + |Property|Type|Description| |:---|:---|:---| -|enrollments|[microsoft.graph.windowsUpdates.updatableAssetEnrollment](../resources/windowsupdates-updatableassetenrollment.md) collection|Specifies areas in which the device is enrolled. Read-only. Returned by default.| -|errors|[microsoft.graph.windowsUpdates.updatableAssetError](../resources/windowsupdates-updatableasseterror.md) collection|Specifies any errors that prevent the device from being enrolled in update management or receving deployed content. Read-only. Returned by default.| +|enrollment|[microsoft.graph.windowsUpdates.updateManagementEnrollment](../resources/windowsupdates-updatemanagementenrollment.md)|Specifies the update management enrollment for the device. Read-only. Returned by default.| +|errors|[microsoft.graph.windowsUpdates.updatableAssetError](../resources/windowsupdates-updatableasseterror.md) collection|Specifies any errors that prevent the device from being enrolled in update management or receiving deployed content. Read-only. Returned by default.| |id|String|An identifier for the device. Key. Not nullable. Read-only. Returned by default. Inherited from [updatableAsset](../resources/windowsupdates-updatableasset.md)| ## Relationships + None. ## JSON representation + The following JSON representation shows the resource type. +``` json +{ + "@odata.type": "#microsoft.graph.windowsUpdates.updateCategoryEnrollmentInformation", + "enrollmentState": "String", + "lastModifiedDateTime": "String (timestamp)" +} +``` diff --git a/api-reference/beta/resources/windowsupdates-updatemanagementenrollment.md b/api-reference/beta/resources/windowsupdates-updatemanagementenrollment.md index 11fb604ff73..323ad52c6fc 100644 --- a/api-reference/beta/resources/windowsupdates-updatemanagementenrollment.md +++ b/api-reference/beta/resources/windowsupdates-updatemanagementenrollment.md @@ -1,6 +1,6 @@ --- title: "updateManagementEnrollment resource type" -description: "Represents enrollment into management by Windows Autopatch of a certain update category." +description: "Represents per-category enrollment information for Windows Updates across supported update categories." author: "andredm7" ms.localizationpriority: medium ms.subservice: windows-autopatch @@ -14,14 +14,15 @@ Namespace: microsoft.graph.windowsUpdates [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Represents enrollment into management by Windows Autopatch of a certain update category. +Represents per-category enrollment information for Windows Updates across supported update categories. Inherits from [updatableAssetEnrollment](../resources/windowsupdates-updatableassetenrollment.md). - ## Properties |Property|Type|Description| |:---|:---|:---| -|updateCategory|microsoft.graph.windowsUpdates.updateCategory|The category of updates that Windows Autopatch manages. Supports a subset of the values for **updateCategory**. The possible values are: `driver`, `feature`, `quality`, `unknownFutureValue`.| +|driver|[microsoft.graph.windowsUpdates.updateCategoryEnrollmentInformation](../resources/windowsupdates-updatecategoryenrollmentinformation.md)|Information about the enrollment state of the device in driver update management.| +|feature|[microsoft.graph.windowsUpdates.updateCategoryEnrollmentInformation](../resources/windowsupdates-updatecategoryenrollmentinformation.md)|Information about the enrollment state of the device in feature update management.| +|quality|[microsoft.graph.windowsUpdates.updateCategoryEnrollmentInformation](../resources/windowsupdates-updatecategoryenrollmentinformation.md)|Information about the enrollment state of the device in quality update management.| ## Relationships None. @@ -36,6 +37,14 @@ The following JSON representation shows the resource type. ``` json { "@odata.type": "#microsoft.graph.windowsUpdates.updateManagementEnrollment", - "updateCategory": "String" + "driver": { + "@odata.type": "microsoft.graph.windowsUpdates.updateCategoryEnrollmentInformation" + }, + "feature": { + "@odata.type": "microsoft.graph.windowsUpdates.updateCategoryEnrollmentInformation" + }, + "quality": { + "@odata.type": "microsoft.graph.windowsUpdates.updateCategoryEnrollmentInformation" + } } ``` diff --git a/api-reference/beta/toc/device-and-app-management/toc.yml b/api-reference/beta/toc/device-and-app-management/toc.yml index 334c636823a..f45b5fd2dac 100644 --- a/api-reference/beta/toc/device-and-app-management/toc.yml +++ b/api-reference/beta/toc/device-and-app-management/toc.yml @@ -8934,10 +8934,12 @@ items: href: ../../resources/windowsupdates-softwareupdatecatalogentry.md - name: Software update filter href: ../../resources/windowsupdates-softwareupdatefilter.md - - name: Updatable asset enrollment + - name: Updatable asset enrollment (deprecated) href: ../../resources/windowsupdates-updatableassetenrollment.md - name: Updatable asset error href: ../../resources/windowsupdates-updatableasseterror.md + - name: Update category enrollment information + href: ../../resources/windowsupdates-updatecategoryenrollmentinformation.md - name: Update management enrollment href: ../../resources/windowsupdates-updatemanagementenrollment.md - name: User experience settings diff --git a/api-reference/beta/toc/toc.mapping.json b/api-reference/beta/toc/toc.mapping.json index 6aa64610749..c89ca4f3714 100644 --- a/api-reference/beta/toc/toc.mapping.json +++ b/api-reference/beta/toc/toc.mapping.json @@ -695,6 +695,7 @@ "cloudPcOnPremisesConnectionStatusDetails", "cloudPcOnPremisesConnectionSubnetIpDetail", "cloudPcPartnerAgentInstallResult", + "cloudPcPolicyPendingApplyStatusResult", "cloudPcPoolCapabilityConfiguration", "cloudPcProvisioningPolicyAssignment", "cloudPcProvisioningPolicyAutopatch", @@ -905,6 +906,7 @@ "microsoft.graph.windowsUpdates.softwareUpdateFilter", "microsoft.graph.windowsUpdates.updatableAssetEnrollment", "microsoft.graph.windowsUpdates.updatableAssetError", + "microsoft.graph.windowsUpdates.updateCategoryEnrollmentInformation", "microsoft.graph.windowsUpdates.updateManagementEnrollment", "microsoft.graph.windowsUpdates.userExperienceSettings", "microsoft.graph.windowsUpdates.windowsUpdateFilter" diff --git a/api-reference/v1.0/api/sharepointgroup-list-members.md b/api-reference/v1.0/api/sharepointgroup-list-members.md index 84174ba43d9..976d47d441a 100644 --- a/api-reference/v1.0/api/sharepointgroup-list-members.md +++ b/api-reference/v1.0/api/sharepointgroup-list-members.md @@ -145,8 +145,5 @@ Content-Type: application/json "description": "List members", "keywords": "", "section": "documentation", - "tocPath": "", - "suppressions": [ - "Error: /api/sharepointgroup-list-members.md: Failed to parse enumeration values for type microsoft.graph.list. Table requires a column header named one of the following: Member, Name, Value" - ] + "tocPath": "" }--> diff --git a/changelog/Microsoft.CloudManagedDesktop.json b/changelog/Microsoft.CloudManagedDesktop.json index 19fde0c44cd..cdf4699b114 100644 --- a/changelog/Microsoft.CloudManagedDesktop.json +++ b/changelog/Microsoft.CloudManagedDesktop.json @@ -1,5 +1,47 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "ddd9e07d-bacf-449d-86ae-7b4aaeac7358", + "ApiChange": "Property", + "ChangedApiName": "isForceUserLogoffEnabled", + "ChangeType": "Addition", + "Description": "Added the **isForceUserLogoffEnabled** property to the [cloudPcPolicyScheduledApplyActionDetail](https://learn.microsoft.com/en-us/graph/api/resources/cloudpcpolicyscheduledapplyactiondetail?view=graph-rest-beta) resource.", + "Target": "cloudPcPolicyScheduledApplyActionDetail" + }, + { + "Id": "ddd9e07d-bacf-449d-86ae-7b4aaeac7358", + "ApiChange": "Parameter", + "ChangedApiName": "isForceUserLogoffEnabled", + "ChangeType": "Addition", + "Description": "Added the **isForceUserLogoffEnabled** parameter to the [apply](https://learn.microsoft.com/en-us/graph/api/cloudpcprovisioningpolicy-apply?view=graph-rest-beta) method.", + "Target": "apply" + }, + { + "Id": "ddd9e07d-bacf-449d-86ae-7b4aaeac7358", + "ApiChange": "Resource", + "ChangedApiName": "cloudPcPolicyPendingApplyStatusResult", + "ChangeType": "Addition", + "Description": "Added the [cloudPcPolicyPendingApplyStatusResult](https://learn.microsoft.com/en-us/graph/api/resources/cloudpcpolicypendingapplystatusresult?view=graph-rest-beta) resource type.", + "Target": "cloudPcPolicyPendingApplyStatusResult" + }, + { + "Id": "ddd9e07d-bacf-449d-86ae-7b4aaeac7358", + "ApiChange": "Method", + "ChangedApiName": "retrievePolicyUpdateStatusResult", + "ChangeType": "Addition", + "Description": "Added the [retrievePolicyUpdateStatusResult](https://learn.microsoft.com/en-us/graph/api/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult?view=graph-rest-beta) method to the [cloudPcProvisioningPolicy](https://learn.microsoft.com/en-us/graph/api/resources/cloudpcprovisioningpolicy?view=graph-rest-beta) resource.", + "Target": "cloudPcProvisioningPolicy" + } + ], + "Id": "ddd9e07d-bacf-449d-86ae-7b4aaeac7358", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-22T00:00:00.0000000Z", + "WorkloadArea": "Device and app management", + "SubArea": "Cloud PC" + }, { "ChangeList": [ { diff --git a/changelog/Microsoft.WindowsUpdates.json b/changelog/Microsoft.WindowsUpdates.json index f984b318702..421525e3381 100644 --- a/changelog/Microsoft.WindowsUpdates.json +++ b/changelog/Microsoft.WindowsUpdates.json @@ -1,5 +1,87 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Enumeration", + "ChangedApiName": "enrollmentState", + "ChangeType": "Addition", + "Description": "Added the **enrollmentState** enumeration type.", + "Target": "enrollmentState" + }, + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Resource", + "ChangedApiName": "updateCategoryEnrollmentInformation", + "ChangeType": "Addition", + "Description": "Added the [updateCategoryEnrollmentInformation](https://learn.microsoft.com/en-us/graph/api/resources/windowsupdates-updatecategoryenrollmentinformation?view=graph-rest-beta) resource type.", + "Target": "updateCategoryEnrollmentInformation" + }, + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Property", + "ChangedApiName": "updateCategory", + "ChangeType": "Deletion", + "Description": "Removed the **updateCategory** property from the [updateManagementEnrollment](https://learn.microsoft.com/en-us/graph/api/resources/windowsupdates-updateManagementEnrollment?view=graph-rest-beta) resource.", + "Target": "updateManagementEnrollment" + }, + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Property", + "ChangedApiName": "feature", + "ChangeType": "Addition", + "Description": "Added the **feature** property to the [updateManagementEnrollment](https://learn.microsoft.com/en-us/graph/api/resources/windowsupdates-updateManagementEnrollment?view=graph-rest-beta) resource.", + "Target": "updateManagementEnrollment" + }, + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Property", + "ChangedApiName": "quality", + "ChangeType": "Addition", + "Description": "Added the **quality** property to the [updateManagementEnrollment](https://learn.microsoft.com/en-us/graph/api/resources/windowsupdates-updateManagementEnrollment?view=graph-rest-beta) resource.", + "Target": "updateManagementEnrollment" + }, + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Property", + "ChangedApiName": "driver", + "ChangeType": "Addition", + "Description": "Added the **driver** property to the [updateManagementEnrollment](https://learn.microsoft.com/en-us/graph/api/resources/windowsupdates-updateManagementEnrollment?view=graph-rest-beta) resource.", + "Target": "updateManagementEnrollment" + }, + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Resource", + "ChangedApiName": "updatableAssetEnrollment", + "ChangeType": "Deprecation", + "Description": "Deprecated the [updatableAssetEnrollment](https://learn.microsoft.com/en-us/graph/api/resources/windowsupdates-updatableAssetEnrollment?view=graph-rest-beta) resource. The **updatableAssetEnrollment** resource is deprecated and stopped returning data on July 1, 2024.", + "Target": "updatableAssetEnrollment" + }, + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Property", + "ChangedApiName": "enrollments", + "ChangeType": "Deletion", + "Description": "Removed the **enrollments** property from the [azureADDevice](https://learn.microsoft.com/en-us/graph/api/resources/windowsupdates-azureADDevice?view=graph-rest-beta) resource.", + "Target": "azureADDevice" + }, + { + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "ApiChange": "Property", + "ChangedApiName": "enrollment", + "ChangeType": "Addition", + "Description": "Added the **enrollment** property to the [azureADDevice](https://learn.microsoft.com/en-us/graph/api/resources/windowsupdates-azureADDevice?view=graph-rest-beta) resource.", + "Target": "azureADDevice" + } + ], + "Id": "ee9d9d3a-1ba3-406a-a53a-e43a2508acd9", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-26T23:34:50.3183446Z", + "WorkloadArea": "Device and app management", + "SubArea": "Device updates" + }, { "ChangeList": [ { diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index 99ef8d63a1d..158cf7db6a8 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -68,6 +68,10 @@ Use the new full workload backup APIs to protect entire Microsoft 365 workloads Use the [cloudPcProvisioningPolicy: apply](/graph/api/cloudpcprovisioningpolicy-apply?view=graph-rest-beta&preserve-view=true) method to apply policy settings such as `region` and `singleSignOn`. This method also supports reprovisioning for frontline shared mode Cloud PCs by using the **reservePercentage** parameter to control the percentage of Cloud PCs that remain available during the process. +### Device and app management | Device updates + +Added the [updateCategoryEnrollmentInformation](/graph/api/resources/windowsupdates-updatecategoryenrollmentinformation?view=graph-rest-beta&preserve-view=true) resource type to manage per-category enrollment state for Windows Updates. Use it to track enrollment state changes across update categories and access the current enrollment configuration through the [updateManagementEnrollment](/graph/api/resources/windowsupdates-updatemanagementenrollment?view=graph-rest-beta&preserve-view=true) and [azureADDevice](/graph/api/resources/windowsupdates-azureaddevice?view=graph-rest-beta&preserve-view=true) resources. + ### Files [Upsert](/graph/api/filestoragecontainer-patch-permissions?view=graph-rest-beta&preserve-view=true) (create or update) up to 40 permissions on a [fileStorageContainer](/graph/api/resources/filestoragecontainer?view=graph-rest-beta&preserve-view=true) in a single request. The limit increased from 10 to 40 [permission](/graph/api/resources/permission?view=graph-rest-beta&preserve-view=true) objects per request. @@ -137,6 +141,8 @@ Added the **groupDisplayName** property to the [delegatedAdministrationRoleAssig ### Users Application permissions for the [user: translateExchangeIds](/graph/api/user-translateexchangeids?view=graph-rest-beta&preserve-view=true) API are supported only for request URLs that identify a user in the path. +- [Retrieve](/graph/api/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult?view=graph-rest-beta&preserve-view=true) the pending apply status of a [provisioning policy](/graph/api/resources/cloudpcprovisioningpolicy?view=graph-rest-beta&preserve-view=true) to determine whether unapplied changes exist for Cloud PCs. +- Use the **isForceUserLogoffEnabled** parameter and property on [cloudPcProvisioningPolicy: apply](/graph/api/cloudpcprovisioningpolicy-apply?view=graph-rest-beta&preserve-view=true) and [cloudPcPolicyScheduledApplyActionDetail](/graph/api/resources/cloudpcpolicyscheduledapplyactiondetail?view=graph-rest-beta&preserve-view=true) to indicate whether active Cloud PC sessions are forcibly signed out when reprovisioning begins. ## May 2026: New and generally available From 478dadb02b804e5182493d6f623c9732ac94915c Mon Sep 17 00:00:00 2001 From: Copilot <198982749+Copilot@users.noreply.github.com> Date: Tue, 23 Jun 2026 10:38:29 +0300 Subject: [PATCH 27/52] Fix unsafe test.com domain in TLS inspection doc examples (#29134) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> --- .../api/networkaccess-tlsinspectionpolicy-list-policyrules.md | 2 +- api-reference/beta/api/networkaccess-tlsinspectionrule-get.md | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/api-reference/beta/api/networkaccess-tlsinspectionpolicy-list-policyrules.md b/api-reference/beta/api/networkaccess-tlsinspectionpolicy-list-policyrules.md index 8548e23b40b..e9bcf2574e3 100644 --- a/api-reference/beta/api/networkaccess-tlsinspectionpolicy-list-policyrules.md +++ b/api-reference/beta/api/networkaccess-tlsinspectionpolicy-list-policyrules.md @@ -133,7 +133,7 @@ Content-Type: application/json { "@odata.type": "#microsoft.graph.networkaccess.tlsInspectionFqdnDestination", "values": [ - "www.contoso.test.com", + "www.contoso.com", "*.contoso.org" ] }, diff --git a/api-reference/beta/api/networkaccess-tlsinspectionrule-get.md b/api-reference/beta/api/networkaccess-tlsinspectionrule-get.md index 9a74c968e70..373a9676448 100644 --- a/api-reference/beta/api/networkaccess-tlsinspectionrule-get.md +++ b/api-reference/beta/api/networkaccess-tlsinspectionrule-get.md @@ -130,7 +130,7 @@ Content-Type: application/json { "@odata.type": "#microsoft.graph.networkaccess.tlsInspectionFqdnDestination", "values": [ - "www.contoso.test.com", + "www.contoso.com", "*.contoso.org" ] }, From 980bb38b930dfc124aa52cd22b118c4c47418730 Mon Sep 17 00:00:00 2001 From: Faith Moraa Ombongi Date: Tue, 23 Jun 2026 10:44:27 +0300 Subject: [PATCH 28/52] docs: add appRoleAssignmentRequired to agentIdentity resource (beta) (#29020) * docs: add appRoleAssignmentRequired to agentIdentity properties (beta) Adds `appRoleAssignmentRequired` to the Properties table and JSON representation of the agentIdentity resource type. The property is now included in the default projection following schema-Prod-beta.csdl PR 15981723 (Work Item 48856). Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * docs: add changelog entry for agentIdentity.appRoleAssignmentRequired (beta) Adds changelog entry for the `appRoleAssignmentRequired` property added to `agentIdentity` in the Microsoft Graph beta endpoint (schema-Prod-beta.csdl PR 15981723, Work Item 48856). Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * docs: update changelog WorkloadArea/SubArea for agentIdentity.appRoleAssignmentRequired Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * docs: add What's New entry for agentIdentity.appRoleAssignmentRequired (June 2026 beta) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestion from @FaithOmbongi * docs: rebase PR changes onto latest main (resolve merge conflicts) * Readd what's new --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> --- api-reference/beta/resources/agentidentity.md | 2 ++ changelog/Microsoft.DirectoryServices.json | 18 ++++++++++++++++++ concepts/whats-new-overview.md | 7 +++++-- 3 files changed, 25 insertions(+), 2 deletions(-) diff --git a/api-reference/beta/resources/agentidentity.md b/api-reference/beta/resources/agentidentity.md index d815c38c905..0ea45366cf7 100644 --- a/api-reference/beta/resources/agentidentity.md +++ b/api-reference/beta/resources/agentidentity.md @@ -67,6 +67,7 @@ This resource is an open type that allows additional properties beyond those doc |odata.type|String| `#microsoft.graph.agentIdentity`. Distinguishes this object as an agent identity. Can be used to identify this object as an agent identity, instead of another kind of service principal. | |accountEnabled|Boolean|`true` if the agent identity account is enabled; otherwise, `false`. If set to `false`, then no users are able to sign in to this app, even if they're assigned to it. Inherited from [servicePrincipal](../resources/serviceprincipal.md).| |agentIdentityBlueprintId|String|The **appId** of the agent identity blueprint that defines the configuration for this agent identity.| +|appRoleAssignmentRequired|Boolean|Specifies whether users or other service principals need to be granted an app role assignment for this agent identity before users can sign in or apps can get tokens. The default value is `false`. Not nullable. Inherited from [servicePrincipal](../resources/serviceprincipal.md). Supports `$filter` (`eq`, `ne`, `NOT`).| |customSecurityAttributes|[customSecurityAttributeValue](../resources/customsecurityattributevalue.md)|An open complex type that holds the value of a custom security attribute that is assigned to a directory object. Nullable. Requires `$select` to retrieve. Inherited from [servicePrincipal](../resources/serviceprincipal.md).| |createdByAppId|String|The **appId** of the application that created this agent identity. Set internally by Microsoft Entra ID. Read-only. Inherited from [servicePrincipal](../resources/serviceprincipal.md).| |createdDateTime|DateTimeOffset|The date and time the agent identity was created. Read-only. Inherited from [servicePrincipal](../resources/serviceprincipal.md).| @@ -106,6 +107,7 @@ The following JSON representation shows the resource type. Only a subset of all "id": "String (identifier)", "accountEnabled": "Boolean", "agentIdentityBlueprintId": "String", + "appRoleAssignmentRequired": "Boolean", "createdByAppId": "String", "createdDateTime": "String (timestamp)", "disabledByMicrosoftStatus": "String", diff --git a/changelog/Microsoft.DirectoryServices.json b/changelog/Microsoft.DirectoryServices.json index 0581e8855af..24d87245d6e 100644 --- a/changelog/Microsoft.DirectoryServices.json +++ b/changelog/Microsoft.DirectoryServices.json @@ -15891,6 +15891,24 @@ "CreatedDateTime": "2026-03-31T15:28:36.2770719Z", "WorkloadArea": "Identity and access", "SubArea": "Directory management" + }, + { + "ChangeList": [ + { + "Id": "c327d619-2141-4517-b546-a89ffaf3929e", + "ApiChange": "Property", + "ChangedApiName": "appRoleAssignmentRequired", + "ChangeType": "Addition", + "Description": "Added the **appRoleAssignmentRequired** property to the [agentIdentity](https://learn.microsoft.com/en-us/graph/api/resources/agentidentity?view=graph-rest-beta) resource.", + "Target": "agentIdentity" + } + ], + "Id": "c327d619-2141-4517-b546-a89ffaf3929e", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-23T07:49:43.0000000Z", + "WorkloadArea": "Agents", + "SubArea": "Agent identities" } ] } \ No newline at end of file diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index 158cf7db6a8..a258a234e15 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -3,7 +3,7 @@ title: "What's new in Microsoft Graph" description: "Find out what's new in Microsoft Graph APIs, SDKs, documentation, and other resources." author: "lauragra" ms.localizationpriority: high -ms.date: 06/15/2026 +ms.date: 06/23/2026 ms.topic: whats-new --- @@ -60,6 +60,9 @@ Application permissions for the [user: translateExchangeIds](/graph/api/user-tra ## June 2026: New in preview only +### Agents | Agent identities +Added the **appRoleAssignmentRequired** property to the [agentIdentity](/graph/api/resources/agentidentity?view=graph-rest-beta&preserve-view=true) resource. This property indicates whether users or service principals must be explicitly granted an app role assignment before they can access the agent identity. + ### Backup storage Use the new full workload backup APIs to protect entire Microsoft 365 workloads (SharePoint Online, OneDrive for work or school, and Exchange Online) with minimal administrative overhead. Instead of manually selecting each item to protect, you can create a protection policy that backs up all data in a workload and then specify only the items to exclude from backup. For more information, see [exclusionUnitBase](/graph/api/resources/exclusionunitbase?view=graph-rest-beta&preserve-view=true) and [exclusionUnitBulkAdditionJob](/graph/api/resources/exclusionunitbulkadditionjob?view=graph-rest-beta&preserve-view=true). @@ -185,7 +188,7 @@ Use the mailbox import and export APIs in Microsoft Graph to build solutions tha ### People and workplace intelligence | People admin settings -Use the **isVisible** property on [profileCardProperty](/graph/api/resources/profilecardproperty) to indicate whether the given directory property should be shown on a user’s profile card. +Use the **isVisible** property on [profileCardProperty](/graph/api/resources/profilecardproperty) to indicate whether the given directory property should be shown on a user's profile card. ### Security | Alerts and incidents From be520d1812e3cece8e90e60a5c456da9e84079d9 Mon Sep 17 00:00:00 2001 From: "learn-build-service-prod[bot]" <113403604+learn-build-service-prod[bot]@users.noreply.github.com> Date: Tue, 23 Jun 2026 10:50:06 +0300 Subject: [PATCH 29/52] Resolve syncing conflicts from repo_sync_working_branch to main (#29136) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit * Use contractions in backuprestoreroot-list-onedriveforbusinessbrowsesessions * Use contractions in backuprestoreroot-list-sharepointbrowsesessions * Use contractions in basesitepage-list * Use contractions in bitlocker-list-recoverykeys * Use contractions in bookingappointment-update * Use contractions in bookingbusiness-list * Use contractions in bookingcustomer-get * Use contractions in bundle-removeitem * Use contractions in bundle-update * Use contractions in calendar-list-calendarview * Use contractions in call-keepalive * Use contractions in call-list-participants * Use contractions in call-reject * Use contractions in channel-get-members * Use contractions in chat-delete * Use contractions in chat-get * Use contractions in chat-get-members * Use contractions in chat-list-members * Use contractions in contenttype-delete * Use contractions in conversationmember-list * Use contractions in directory-list-customsecurityattributedefinitions * Use contractions in directoryobject-delta * Use contractions in domain-delete * Use contractions in domain-get-rootdomain * Use contractions in domain-list-federationconfiguration * Use contractions in drive-get-specialfolder * Use contractions in driveitem-copy * Use contractions in driveitem-createlink * Use contractions in driveitem-search * Use contractions in driveitemversion-get * Use contractions in educationclass-delta * Use contractions in educationclass-post * Use contractions in entitlementmanagementsettings-get * Use contractions in externalauthenticationmethodconfiguration-get * Use contractions in externalconnectors-externalgroup-update * Use contractions in externalconnectors-externalitem-get * Use contractions in externalconnectors-schema-get * Use contractions in fido2authenticationmethod-list * Use contractions in group-delta * Use contractions in group-list-acceptedsenders * Use contractions in group-list-calendarview * Use contractions in group-post-members * Use contractions in group-update * Use contractions in identitygovernance-insights-workflowsprocessedsummary * Use contractions in identitygovernance-task-get * Use contractions in identitygovernance-workflowtemplate-get * Use contractions in identityuserflowattributeassignment-update * Use contractions in inferenceclassification-list-overrides * Use contractions in internaldomainfederation-get * Use contractions in learningcourseactivity-update * Use contractions in list-get * Use contractions in listitem-delete * Use contractions in listitem-update * Use contractions in mailfolder-list-childfolders * Use contractions in message-createreply * Use contractions in message-createreplyall * Use contractions in message-delta * Use contractions in message-reply * Use contractions in message-replyall * Use contractions in offershiftrequest-get * Use contractions in onlinemeeting-createorget * Use contractions in orgcontact-delta * Use contractions in outlookuser-supportedtimezones * Use contractions in permissiongrantpolicy-update * Use contractions in permission-update * Use contractions in phoneauthenticationmethod-update * Use contractions in plannerassignedtotaskboardtaskformat-update * Use contractions in post-post-attachments * Use contractions in printdocument-createuploadsession * Use contractions in printer-update * Use contractions in printjob-cancel * Use contractions in projectrome-put-activity * Use contractions in qrcode-get * Use contractions in reportroot-getemailactivitycounts * Use contractions in reportroot-getemailactivityusercounts * Use contractions in reportroot-getemailactivityuserdetail * Use contractions in reportroot-getemailappusageappsusercounts * Use contractions in reportroot-getemailappusageusercounts * Use contractions in reportroot-getemailappusageuserdetail * Use contractions in reportroot-getm365appplatformusercounts * Use contractions in reportroot-getm365appusercounts * Use contractions in reportroot-getm365appuserdetail * Use contractions in reportroot-getmailboxusagedetail * Use contractions in reportroot-getmailboxusagemailboxcounts * Use contractions in reportroot-getmailboxusagequotastatusmailboxcounts * Use contractions in reportroot-getmailboxusagestorage * Use contractions in reportroot-getoffice365activationcounts * Use contractions in reportroot-getoffice365activationsuserdetail * Use contractions in reportroot-getoffice365activeusercounts * Use contractions in reportroot-getoffice365activeuserdetail * Use contractions in reportroot-getoffice365groupsactivitycounts * Use contractions in reportroot-getoffice365groupsactivitydetail * Use contractions in reportroot-getoffice365groupsactivityfilecounts * Use contractions in reportroot-getoffice365groupsactivitystorage * Use contractions in reportroot-getoffice365servicesusercounts * Use contractions in reportroot-getonedriveactivityfilecounts * Use contractions in reportroot-getonedriveactivityusercounts * Use contractions in reportroot-getonedriveactivityuserdetail * Use contractions in reportroot-getonedriveusageaccountcounts * Use contractions in reportroot-getonedriveusageaccountdetail * Use contractions in reportroot-getonedriveusagefilecounts * Use contractions in reportroot-getsharepointactivityfilecounts * Use contractions in reportroot-getsharepointactivitypages * Use contractions in reportroot-getsharepointactivityuserdetail * Use contractions in reportroot-getsharepointsiteusagedetail * Use contractions in reportroot-getsharepointsiteusagefilecounts * Use contractions in reportroot-getsharepointsiteusagepages * Use contractions in reportroot-getsharepointsiteusagesitecounts * Use contractions in reportroot-getsharepointsiteusagestorage * Use contractions in reportroot-getskypeforbusinessactivitycounts * Use contractions in reportroot-getskypeforbusinessactivityusercounts * Use contractions in reportroot-getskypeforbusinessactivityuserdetail * Use contractions in reportroot-getskypeforbusinessdeviceusagedistributionusercounts * Use contractions in reportroot-getskypeforbusinessdeviceusageuserdetail * Use contractions in reportroot-getskypeforbusinessorganizeractivityminutecounts * Use contractions in reportroot-getskypeforbusinessparticipantactivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivitycounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityusercounts * Use contractions in reportroot-getteamsdeviceusageusercounts * Use contractions in reportroot-getteamsuseractivityusercounts * Use contractions in reportroot-getteamsuseractivityuserdetail * Use contractions in reportroot-getyammeractivitycounts * Use contractions in reportroot-getyammeractivityusercounts * Use contractions in reportroot-getyammeractivityuserdetail * Use contractions in reportroot-getyammerdeviceusagedistributionusercounts * Use contractions in reportroot-getyammerdeviceusageusercounts * Use contractions in reportroot-getyammerdeviceusageuserdetail * Use contractions in reportroot-getyammergroupsactivitycounts * Use contractions in reportroot-getyammergroupsactivitydetail * Use contractions in riskdetection-get * Use contractions in riskyuser-get * Use contractions in schedulinggroup-delete * Use contractions in schemaextension-delete * Use contractions in security-ediscoverysearch-list-lastestimatestatisticsoperation * Use contractions in security-host-list-childhostpairs * Use contractions in security-host-list-parenthostpairs * Use contractions in security-hostpair-get * Use contractions in security-threatintelligence-list-sslcertificates * Use contractions in servicehealthissue-get * Use contractions in servicehealthissue-incidentreport * Use contractions in serviceprincipal-get * Use contractions in serviceupdatemessage-get * Use contractions in sharedwithchannelteaminfo-get * Use contractions in sharedwithchannelteaminfo-list-allowedmembers * Use contractions in simulationautomation-get * Use contractions in simulation-get * Use contractions in singlevaluelegacyextendedproperty-get * Use contractions in sitepage-publish * Use contractions in sitepage-update * Use contractions in site-search * Use contractions in subjectrightsrequest-list-notes * Use contractions in subscribedsku-list * Use contractions in synchronization-synchronizationschema-delete * Use contractions in synchronization-synchronizationschema-update * Use contractions in teamsapp-delete * Use contractions in teamsapp-publish * Use contractions in teamsapp-update * Use contractions in teamworktag-get * Use contractions in tenantappmanagementpolicy-update * Use contractions in tenantdatasecurityandgovernance-processcontentasync * Use contractions in timeoffrequest-get * Use contractions in todotask-delta * Use contractions in todotask-list-checklistitems * Use contractions in todotask-post-attachments * Use contractions in userdatasecurityandgovernance-processcontent * Use contractions in user-delta * Use contractions in user-findmeetingtimes * Use contractions in user-list-calendarview * Use contractions in user-list-mailfolders * Use contractions in user-list-messages * Use contractions in userregistrationdetails-get * Use contractions in user-sendmail * Use contractions in verticalsection-update * Use contractions in virtualeventregistrationconfiguration-list-questions * Use contractions in virtualeventregistration-list * Use contractions in virtualeventregistration-list-sessions * Use contractions in virtualeventwebinar-post-registrations * Use contractions in webpart-delete * Use contractions in workbook-tablerowoperationresult * Use contractions in x509certificateauthenticationmethodconfiguration-get * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * Update simulation-update.md for requirement around simuation state (#9936) * Update simulation-update.md for requirement around simuation state Clarified simulation state as draft as required and updated description. * Minor fixes --------- Co-authored-by: Faith Moraa Ombongi * Publish main to live - reconcile divergence 2026-06-17 Sets live content identical to main to clear the squash-induced divergence. No manual live hotfixes existed. * Reconcile live to main (unblock auto-publish #29094) (#29095) * Publish main to live - reconcile divergence (refresh 2026-06-17 18:25) Sets live content identical to current main. main is authoritative; no live-only hotfixes. * Update tenantappmanagementpolicy-get.md --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Remove license-type availability banner from Graph beta eDiscovery overview Replaces preview/SKU-specific note in ediscovery-ediscoveryapioverview.md with neutral guidance pointing to Microsoft Purview eDiscovery documentation. Addresses customer confusion (IcM 51000001064141) about creating searches in standard eDiscovery cases via Graph. * Merge to publish. (#29097) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update reference TOC (#29058) Co-authored-by: Microsoft Graph DevX Tooling * Update profilePropertySetting docs (#29038) * Updated according to KnutB's spec * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update peopleadminsettings-list-profilepropertysettings.md * Update profilepropertysetting.md * Move extended Delete description from resource table to API topic * Apply suggestion from @MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222741 (#29057) Co-authored-by: Microsoft Graph DevX Tooling * Update generated permissions tables with build 222558 (#29051) Co-authored-by: Microsoft Graph DevX Tooling * Revise traceRouteHop availability in callRecord docs (#29055) * Revise traceRouteHop availability in callRecord docs * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update whats-new-overview.md (#29010) * Update whats-new-overview.md * Update whats-new-overview.md --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update pull request template to remove documentation plan requirement (#29069) Removed the requirement to attach the documentation plan for AI-assisted docs authoring. * 2026-06-15: Automated permissions reference update (#29068) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Update generated permissions tables with build 222982 (#29067) Co-authored-by: Microsoft Graph DevX Tooling * Update whats-new-overview.md (#29064) * Update whats-new-overview.md * Update whats-new-overview.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add tenantId property to userAccount resource (#28845) * Add tenantId field to security user account resource Added tenantId field to user account resource details. * Update userAccount resource date and add tenantId * Update date for security userAccount resource * Update changelog with new API changes Added new changelog entries for tenantId and categories properties in userAccount resource. * Apply review suggestions: update changelog dates and add What's New entry for tenantId on userAccount * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi --------- Co-authored-by: Faith Moraa Ombongi Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Add mergeIncidents and moveAlerts v1.0 API docs (#28851) * Add mergeIncidents and moveAlerts v1.0 API docs Add v1.0 documentation for security action endpoints: - API pages: security-incident-mergeincidents.md, security-alert-movealerts.md - Resource pages: security-mergeresponse.md, security-correlationreason.md - Permission and RBAC include files - Update security-incident.md and security-alert.md Methods tables - Update v1.0 toc.mapping.json with new complex types - Add v1.0 changelog entries for all new artifacts Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Fix comments * Apply suggestion from @FaithOmbongi * Update what's new --------- Co-authored-by: Harel Damti Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * Update reference TOC (#29071) Co-authored-by: Microsoft Graph DevX Tooling * Update people doc (#29023) * Updated people & workplace intelligence document according to Knut Brandrud's proposal reviewed within our team. * Minor typo Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Address review comments in social intelligence overview * Apply remaining review thread doc fixes * minor date fix Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * date --------- Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add isVisible property to lpc v1.0 (#28915) * Add isVisible property to lpc v1.0 * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update Microsoft.People.json * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @Danipocket --------- Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply simulation-update v1.0 PR #9936 changes to beta file (#29077) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Remove unsupported expand query from getRetentionLabel docs (#29080) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated files with build 223158 (#29075) Co-authored-by: Microsoft Graph DevX Tooling * Resolve syncing conflicts from repo_sync_working_branch to main (#29076) * Enhance clarity in API documentation by updating request and response example phrasing across multiple files * Apply suggestions from code review Co-authored-by: Jarbas Horst * Fix trailing pipe tables 1.0 (#9930) * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudclipboardroot-list-items * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in itemactivitystat-getactivitybyinterval * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in tablecolumncollection-add * Fix trailing pipe formatting in user-findmeetingtimes * Apply suggestions from code review Co-authored-by: Jarbas Horst --------- Co-authored-by: Jarbas Horst * Fix missing closing codeblock beta (#9919) * Fix formatting of HTTP request example in accesspackageresource-list-uploadsessions.md * Fix missing closing code block in security-labelsroot-delete-citations.md * Fix missing closing code block in singlevaluelegacyextendedproperty-get.md * Fix missing closing code block in usersettings-list-windows.md * Fix missing closing code block in webapplicationfirewallprovider-verify.md * Fix missing closing code block in windowssetting-get.md * Fix missing closing code block in windowssetting-list-instances.md * fix(beta api): close malformed http code fence in windowssettinginstance-get * Apply suggestions from code review Co-authored-by: Jarbas Horst --------- Co-authored-by: Jarbas Horst * Update synchronization-synchronization-list-templates.md (#9922) Update headings from H3 to H2. * Update https://github.com/microsoftgraph/microsoft-graph-docs-contrib/edit/main/api-reference/v1.0/api/synchronization-synchronizationtemplate-get.md (#9923) Update headings from H3 to H2. * Update synchronization-synchronizationtemplate-update.md (#9924) Update headings from H3 to H2. * Update eventmessage-post-attachments.md (#9926) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update event-post-attachments.md (#9925) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update educationassignment-list-resources.md (#9927) Update formatting * Update provisioningobjectsummary-list.md (#9928) Fix typo in error response example section * Fix trailing pipe tables beta (#9929) * Fix trailing pipe formatting in b2cidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bookingbusiness-update * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudpc-retrievecloudpccountbystatus * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in contenttype-associatewithhubsites * Fix trailing pipe formatting in customdataprovidedresourceuploadsession-uploadfile * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in ediscovery-noncustodialdatasource-post * Fix trailing pipe formatting in get-device-command-status * Fix trailing pipe formatting in governancerolesetting-update * Fix trailing pipe formatting in industrydata-inboundapiflow-post * Fix trailing pipe formatting in itemactivity-getbyinterval * Fix trailing pipe formatting in listitem-createlink * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in message-createreply * Fix trailing pipe formatting in networkaccess-reports-getdestinationsummaries * Fix trailing pipe formatting in networkaccess-reports-getdeviceusagesummary * Fix trailing pipe formatting in pagetemplate-delete * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in rbacapplication-post-roleassignmentschedulerequests * Fix trailing pipe formatting in security-collaborationroot-list-analyzedemails * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in send-device-command * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in team-sendactivitynotification * Fix trailing pipe formatting in termstore-relation-post * Fix trailing pipe formatting in user-list-devices * Fix trailing pipe formatting in user-sendmail * Fix trailing pipe formatting in webpart-delete --------- Co-authored-by: Jarbas Horst * Fix missing closing codeblock 1.0 (#9920) * Fix missing closing http fence in security-auditlogquery-list-records * Fix missing closing http fence in userprotectionscopecontainer-compute * Fix missing closing http fence in usersettings-list-windows --------- Co-authored-by: Jarbas Horst * Update date range (#9931) When requesting a date over 28 days the API returns: "Invalid date value specified: 2026-04-06. Only support data for the past 28 days." * Correct date range for email activity report (#9932) https://github.com/microsoftgraph/microsoft-graph-docs-contrib/pull/9931/changes * Change user ID to placeholder in processContent API (#9921) * Change user ID to placeholder in processContent API Updated user ID placeholder in processContent API calls. * Update userdatasecurityandgovernance-processcontent.md Updated example user ID in processContent API calls. * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * Update simulation-update.md for requirement around simuation state (#9936) * Update simulation-update.md for requirement around simuation state Clarified simulation state as draft as required and updated description. * Minor fixes --------- Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Jarbas Horst Co-authored-by: Jarbas Horst Co-authored-by: learn-build-service-prod[bot] <113403604+learn-build-service-prod[bot]@users.noreply.github.com> Co-authored-by: Learn Build Service GitHub App Co-authored-by: Jarbas Horst <26866873+JarbasHorst@users.noreply.github.com> Co-authored-by: Ryutaro Koma Co-authored-by: Micah Warren <26724012+MicahWW@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Vipul <84970543+VipulMSFT@users.noreply.github.com> * Document provisioning workflow support in Lifecycle Workflows (beta) (#28966) * Document provisioning workflow support in Lifecycle Workflows (beta) Add public preview documentation for provisioning workflow features in Microsoft Graph Lifecycle Workflows beta API. New resources: - workflowSubject (abstract base type) - provisioningObjectWorkflowSubject (concrete implementation) - attributeSetEntry (key-value pairs for attribute sets) - awaitedWorkflowProcessingResult (return type) - customTaskExtensionResponseData (extension response) - provisioningAttributeMapping (execution conditions) - subjectProcessingResult (entity for processing results) New API operations: - workflow: activateAndWait - run: list subjectProcessingResults - subjectProcessingResult: get - taskReport: list subjectProcessingResults Updated enumerations: - Added customTaskExtensionReplyMode enum - Added extensibility to lifecycleTaskCategory - Added extensibility to lifecycleWorkflowCategory - Added extensibilityOnDemand to workflowExecutionType Updates to existing resources: - customTaskExtension: added replyMode property - customTaskExtensionCallbackData: added targetSubject property - taskProcessingResult: added workflowSubject property - run: added subjectProcessingResults relationship and list method - taskReport: added subjectProcessingResults relationship and list method - workflow: added activateAndWait method Also includes changelog, What's New, TOC, and permissions updates. Workload: Microsoft.AAD.LCM Changelog GUID: 6a9c6f5d-eeb3-438e-b9f2-4705836e94fe * Clean up temp-docstubs folder Remove temporary authoring input files. Only temp-docstubs-instructions.md should remain. * Fix documentation validation errors - Fix openType metadata in subjectProcessingResult (was 'id', now false) - Remove tab syntax from HTTP-only examples (tabs require multiple SDK examples) * Fix changelog target and add missing complex types to TOC - Fixed changelog: Changed Target from customTaskExtensionCalloutData to customTaskExtensionCallbackData for targetSubject property - Removed workflowSubjectType enum entry (private preview feature) - Added missing complex types to TOC: attributeSetEntry, awaitedWorkflowProcessingResult, customTaskExtensionResponseData, provisioningAttributeMapping, provisioningObjectWorkflowSubject, workflowSubject * Remove taskProcessingResults expansion example - Removed Example 2 that demonstrated expanding taskProcessingResults relationship - Keep only the basic GET example without expansion * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * fix: update resource link prefixes in customTaskExtensionResponseData doc * Fix reference * Updates * Update reference TOC * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update api-reference/beta/api/identitygovernance-taskreport-list-subjectprocessingresults.md Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update api-reference/beta/api/identitygovernance-run-list-subjectprocessingresults.md Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update api-reference/beta/api/identitygovernance-taskreport-list-subjectprocessingresults.md Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update api-reference/beta/api/identitygovernance-run-list-subjectprocessingresults.md Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update perms * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix subject * Updates * Revert "Update perms" This reverts commit 636a2a571984b1f18c187522635abf853b55be2d. * Perms updates * Remove from docstubs * Fix broken link * fixes from code review * Update api-reference/beta/resources/identitygovernance-subjectprocessingresult.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/identitygovernance-awaitedworkflowprocessingresult.md Co-authored-by: Faith Moraa Ombongi * Update callout data * Updated changelog * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Mason Wolff Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * docs: Clarify MTO tenant API permission-to-property mapping and role access (#28886) * docs: clarify MTO tenant API permission-to-property mapping and role access - Add detailed permission-to-property mapping showing which properties are returned for each permission level - Document that Directory.Read.All also grants full read access to multitenant organization tenant resources (delegated or application) - Clarify that ReadBasic.All only returns displayName and tenantId, and only active tenants - Expand RBAC role documentation to specify that Security Reader and Global Reader can only read basic tenant info - Add guidance on which role is needed for full property access - Updated for both v1.0 and beta API references Addresses IcM 31000000597799 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * docs: add Directory.Read.All clarification to GET member endpoint Apply the same permission-to-property mapping to the multitenantorganizationmember-get API (v1.0 and beta). Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * fix: make RBAC include generic (shared across 6 MTO endpoints) The rbac-multitenantorganization-apis-read.md include is consumed by 6 different endpoints returning different resource types. Remove member-specific property names (displayName, tenantId, role, state, etc.) that are incorrect for the non-member endpoints (MTO object, join request, sync policy template, partner config template). Property-specific details remain in the individual API docs where they are correct and scoped to the right resource type. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * fix: add MultiTenantOrganization.Read.All to beta get-member docs * fix: add MultiTenantOrganization.Read.All to v1.0 get-member docs * fix: remove redundant RBAC statement per reviewer feedback * fix: remove redundant RBAC statement from v1.0 per reviewer feedback * Simplify permission callouts in beta list-tenants per reviewer suggestion * Simplify permission callouts in beta get-member per reviewer suggestion * Simplify permission callouts in v1.0 list-tenants per reviewer suggestion * Simplify permission callouts in v1.0 get-member per reviewer suggestion * fix: restore line endings mangled by Apply-Suggestion edits The 4 'Simplify permission callouts' commits collapsed the 4 MTO API doc files into single lines, breaking YAML frontmatter and Markdown structure. This caused the API Doctor validation to fail (h1-missing, title-missing, bookmark-not-found tabs, ms-date-missing, description-missing). This commit restores proper line endings while preserving the reviewer-approved simplified permission-to-property mapping that documents Directory.Read.All as an accepted permission for the MTO endpoints (per IcM 31000000597799 / MSRC 115408). --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update generated permissions tables with build 223315 (#29089) Co-authored-by: Microsoft Graph DevX Tooling * Move lifecycle workflows preview note from May to June 2026 What's New (#29090) * Move lifecycle workflows preview entry to June 2026 section * Apply suggestion from @FaithOmbongi --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * Adding Redirect URI Restrictions in App Management Policies (#28070) * Initial documentation on Redirect URI restrictions in App Management Policies * Update changelog/Microsoft.DirectoryServices.json Co-authored-by: Faith Moraa Ombongi * Update concepts/whats-new-overview.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiblockeddomainconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiwildcardexcludeformats.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiplatformalloweddomainconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiplatformblockeddomainconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiplatformblockedschemeconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiplatformallowedschemeconfiguration.md Co-authored-by: Faith Moraa Ombongi * Doc: update redirect URI restrictions and examples * Doc: add examples for updating redirect URI restrictions * Doc: update examples for tenantAppManagementPolicy to include redirect URI restrictions * Apply suggestion from @FaithOmbongi --------- Co-authored-by: Faith Moraa Ombongi Co-authored-by: Copilot * Add personal distribution lists beta API documentation (#29046) * Add personal distribution lists beta API documentation Add documentation for personal distribution lists in the user's mailbox, including resource types, API methods, permission includes, changelog, What's New, and TOC mapping updates. New resources: - distributionList (entity type, inherits outlookItem) - distributionListMember (entity type) - member (complex type) - recipientType (enum type) New API methods (9): - List/Create/Get/Update/Delete distributionList - addMembers/deleteMembers actions - List/Get distributionListMembers Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.Exchange.json Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Align distributionLists docs with approved CSDL Apply review feedback from API team. CSDL is source of truth; docs now match the schema exactly. Resources: - member: replace emailAddress with key; add routingType and contactId - distributionListMember: replace emailAddress with contactId; add contact navigation property - distributionList: add notes, personIdentifier properties; add singleValueExtendedProperties navigation property; note that members, notes, personIdentifier are not returned by default API methods: - addMembers, deleteMembers: change return from 204 No Content to 200 OK with updated distributionList object; update request and response examples to use key/routingType/recipientType - Create, Update, Get, List distributionLists: remove members from example responses (not returned by default) - Get distributionList: note that members, notes, personIdentifier require explicit `` - List/Get distributionListMembers: replace emailAddress with contactId in example responses Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Revert "Align distributionLists docs with approved CSDL" This reverts commit 6636446866092d92ffbd80419cc67a3cb3bf885e. * Fix documentation clarity and consistency issues - Add clarity note to distributionlist members property - Mark displayName as optional in member complex type - Add read-only indicators to distributionListMember properties - Clarify parameter requirements in addMembers and deleteMembers * Fix PR review comments: align docs with API.md/CSDL source of truth - Fix string casing in JSON representations (String -> string) - Update addMembers/deleteMembers to return distributionList (not 204) - Remove members from default GET/List responses (requires $select) - Rename emailAddress to key in member complex type, add routingType and contactId - Update distributionListMember to use contactId instead of emailAddress - Fix all API examples to use correct property names Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update reference TOC * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * What's new update. * Fix changelog ChangedApiName format for bound actions Remove 'distributionList: ' prefix from addMembers and deleteMembers entries to match the standard changelog format used by other workloads. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> --------- Co-authored-by: Samuel Mwangi (from Dev Box) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Kimani Mwangi Co-authored-by: Microsoft Graph DevX Tooling --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@us… * Fix Read-only capitalization in appscope.md * Fix Read-only capitalization in azureactivedirectorytenant.md * Fix Read-only capitalization in channel.md * Fix Read-only capitalization in chatmessage.md * Fix Read-only capitalization in cloudpc.md * Fix Read-only capitalization in conditionalaccesspolicy.md * Fix Read-only capitalization in connectedorganizationmembers.md * Fix Read-only capitalization in crosscloudazureactivedirectorytenant.md * Fix Read-only capitalization in customaccesspackageworkflowextension.md * Fix Read-only capitalization in delegatedadminrelationship.md * Fix Read-only capitalization in directoryrole.md * Fix Read-only capitalization in externaldomainfederation.md * Fix Read-only capitalization in groupmembers.md * Fix Read-only capitalization in insights-shared.md * Fix Read-only capitalization in insights-trending.md * Fix Read-only capitalization in insights-used.md * Fix Read-only capitalization in passwordsinglesignonfield.md * Fix Read-only capitalization in plannerroster.md * Fix Read-only capitalization in reminder.md * Fix Read-only capitalization in serviceannouncement.md * Fix Read-only capitalization in singleuser.md * Fix Read-only capitalization in teamstab.md * Fix Read-only capitalization in translationpreferences.md * Fix Read-only capitalization in unifiedroleeligibilityscheduleinstance.md * Fix Read-only capitalization in accesspackageresourcerequest.md * Fix Read-only capitalization in accesspackageassignmentpolicy.md * Fix Read-only capitalization in azureactivedirectorytenant.md * Fix Read-only capitalization in channel.md * Fix Read-only capitalization in chatmessage.md * Fix Read-only capitalization in conditionalaccesspolicy.md * Fix Read-only capitalization in crosscloudazureactivedirectorytenant.md * Fix Read-only capitalization in delegatedadminrelationship.md * Fix Read-only capitalization in directoryrole.md * Fix Read-only capitalization in domainidentitysource.md * Fix Read-only capitalization in externaldomainfederation.md * Fix Read-only capitalization in insights-shared.md * Fix Read-only capitalization in insights-trending.md * Fix Read-only capitalization in reminder.md * Fix Read-only capitalization in serviceannouncement.md * Fix Read-only capitalization in rbacapplication-post-roleassignmentschedulerequests.md * Fix Read-only capitalization in rbacapplication-post-roleeligibilityschedulerequests.md * Fix Read-only capitalization in rbacapplication-rolescheduleinstances.md * Fix Read-only capitalization in rbacapplication-roleschedules.md * Fix Read-only capitalization in rbacapplication-post-roleassignmentschedulerequests.md * Fix Read-only capitalization in rbacapplication-post-roleeligibilityschedulerequests.md * Fix Read-only capitalization in rbacapplication-rolescheduleinstances.md * Fix Read-only capitalization in rbacapplication-roleschedules.md * Simplify description for protectionRule addition (#9944) * Repo sync for protected branch (#9945) * Resolve syncing conflicts from repo_sync_working_branch to main (#29086) * Use contractions in userdatasecurityandgovernance-processcontent * Use contractions in user-delta * Use contractions in user-findmeetingtimes * Use contractions in user-get * Use contractions in user-list-calendarview * Use contractions in user-list-events * Use contractions in user-list-mailfolders * Use contractions in user-list-messages * Use contractions in user-list-people * Use contractions in user-list-permissiongrants * Use contractions in userregistrationdetails-get * Use contractions in user-sendmail * Use contractions in verticalsection-update * Use contractions in virtualendpoint-list-serviceplans * Use contractions in virtualeventregistrationconfiguration-list-questions * Use contractions in virtualeventregistrationconfiguration-post-questions * Use contractions in virtualmachinewithawsstoragebucketaccessfinding-get * Use contractions in windowsupdates-deploymentaudience-updateaudiencebyid * Use contractions in windowsupdates-updatableasset-enrollassets * Use contractions in windowsupdates-updatableassetgroup-addmembers * Use contractions in workbook-tablerowoperationresult * Use contractions in x509certificateauthenticationmethodconfiguration-get * Use contractions in accessreviewinstance-update * Use contractions in accessreviewscheduledefinition-update * Use contractions in accessreviewset-post-definitions * Use contractions in accessreviewstage-update * Use contractions in agentidentityblueprint-list * Use contractions in agentidentity-list * Use contractions in agreementfile-get * Use contractions in agreementfile-list-localizations * Use contractions in allowedvalue-get * Use contractions in application-addkey * Use contractions in application-post-applications * Use contractions in application-removekey * Use contractions in application-update * Use contractions in approval-get * Use contractions in approval-list-stages * Use contractions in approvalstage-get * Use contractions in associatedteaminfo-list * Use contractions in attachment-createuploadsession * Use contractions in authenticationcombinationconfiguration-get * Use contractions in authenticationcontextclassreference-get * Use contractions in authenticationeventlistener-get * Use contractions in authentication-list-methods * Use contractions in authenticationmethod-get * Use contractions in authenticationmethodmodedetail-get * Use contractions in authenticationmethodspolicy-get * Use contractions in authenticationstrengthpolicy-get * Use contractions in authenticationstrengthpolicy-list-combinationconfigurations * Use contractions in authenticationstrengthpolicy-usage * Use contractions in authenticationstrengthroot-list-authenticationmethodmodes * Use contractions in backuprestoreroot-list-onedriveforbusinessbrowsesessions * Use contractions in backuprestoreroot-list-sharepointbrowsesessions * Use contractions in basesitepage-list * Use contractions in bitlocker-list-recoverykeys * Use contractions in bookingappointment-update * Use contractions in bookingbusiness-list * Use contractions in bookingcustomer-get * Use contractions in bundle-removeitem * Use contractions in bundle-update * Use contractions in calendar-list-calendarview * Use contractions in call-keepalive * Use contractions in call-list-participants * Use contractions in call-reject * Use contractions in channel-get-members * Use contractions in chat-delete * Use contractions in chat-get * Use contractions in chat-get-members * Use contractions in chat-list-members * Use contractions in contenttype-delete * Use contractions in conversationmember-list * Use contractions in directory-list-customsecurityattributedefinitions * Use contractions in directoryobject-delta * Use contractions in domain-delete * Use contractions in domain-get-rootdomain * Use contractions in domain-list-federationconfiguration * Use contractions in drive-get-specialfolder * Use contractions in driveitem-copy * Use contractions in driveitem-createlink * Use contractions in driveitem-search * Use contractions in driveitemversion-get * Use contractions in educationclass-delta * Use contractions in educationclass-post * Use contractions in entitlementmanagementsettings-get * Use contractions in externalauthenticationmethodconfiguration-get * Use contractions in externalconnectors-externalgroup-update * Use contractions in externalconnectors-externalitem-get * Use contractions in externalconnectors-schema-get * Use contractions in fido2authenticationmethod-list * Use contractions in group-delta * Use contractions in group-list-acceptedsenders * Use contractions in group-list-calendarview * Use contractions in group-post-members * Use contractions in group-update * Use contractions in identitygovernance-insights-workflowsprocessedsummary * Use contractions in identitygovernance-task-get * Use contractions in identitygovernance-workflowtemplate-get * Use contractions in identityuserflowattributeassignment-update * Use contractions in inferenceclassification-list-overrides * Use contractions in internaldomainfederation-get * Use contractions in learningcourseactivity-update * Use contractions in list-get * Use contractions in listitem-delete * Use contractions in listitem-update * Use contractions in mailfolder-list-childfolders * Use contractions in message-createreply * Use contractions in message-createreplyall * Use contractions in message-delta * Use contractions in message-reply * Use contractions in message-replyall * Use contractions in offershiftrequest-get * Use contractions in onlinemeeting-createorget * Use contractions in orgcontact-delta * Use contractions in outlookuser-supportedtimezones * Use contractions in permissiongrantpolicy-update * Use contractions in permission-update * Use contractions in phoneauthenticationmethod-update * Use contractions in plannerassignedtotaskboardtaskformat-update * Use contractions in post-post-attachments * Use contractions in printdocument-createuploadsession * Use contractions in printer-update * Use contractions in printjob-cancel * Use contractions in projectrome-put-activity * Use contractions in qrcode-get * Use contractions in reportroot-getemailactivitycounts * Use contractions in reportroot-getemailactivityusercounts * Use contractions in reportroot-getemailactivityuserdetail * Use contractions in reportroot-getemailappusageappsusercounts * Use contractions in reportroot-getemailappusageusercounts * Use contractions in reportroot-getemailappusageuserdetail * Use contractions in reportroot-getm365appplatformusercounts * Use contractions in reportroot-getm365appusercounts * Use contractions in reportroot-getm365appuserdetail * Use contractions in reportroot-getmailboxusagedetail * Use contractions in reportroot-getmailboxusagemailboxcounts * Use contractions in reportroot-getmailboxusagequotastatusmailboxcounts * Use contractions in reportroot-getmailboxusagestorage * Use contractions in reportroot-getoffice365activationcounts * Use contractions in reportroot-getoffice365activationsuserdetail * Use contractions in reportroot-getoffice365activeusercounts * Use contractions in reportroot-getoffice365activeuserdetail * Use contractions in reportroot-getoffice365groupsactivitycounts * Use contractions in reportroot-getoffice365groupsactivitydetail * Use contractions in reportroot-getoffice365groupsactivityfilecounts * Use contractions in reportroot-getoffice365groupsactivitystorage * Use contractions in reportroot-getoffice365servicesusercounts * Use contractions in reportroot-getonedriveactivityfilecounts * Use contractions in reportroot-getonedriveactivityusercounts * Use contractions in reportroot-getonedriveactivityuserdetail * Use contractions in reportroot-getonedriveusageaccountcounts * Use contractions in reportroot-getonedriveusageaccountdetail * Use contractions in reportroot-getonedriveusagefilecounts * Use contractions in reportroot-getsharepointactivityfilecounts * Use contractions in reportroot-getsharepointactivitypages * Use contractions in reportroot-getsharepointactivityuserdetail * Use contractions in reportroot-getsharepointsiteusagedetail * Use contractions in reportroot-getsharepointsiteusagefilecounts * Use contractions in reportroot-getsharepointsiteusagepages * Use contractions in reportroot-getsharepointsiteusagesitecounts * Use contractions in reportroot-getsharepointsiteusagestorage * Use contractions in reportroot-getskypeforbusinessactivitycounts * Use contractions in reportroot-getskypeforbusinessactivityusercounts * Use contractions in reportroot-getskypeforbusinessactivityuserdetail * Use contractions in reportroot-getskypeforbusinessdeviceusagedistributionusercounts * Use contractions in reportroot-getskypeforbusinessdeviceusageuserdetail * Use contractions in reportroot-getskypeforbusinessorganizeractivityminutecounts * Use contractions in reportroot-getskypeforbusinessparticipantactivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivitycounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityusercounts * Use contractions in reportroot-getteamsdeviceusageusercounts * Use contractions in reportroot-getteamsuseractivityusercounts * Use contractions in reportroot-getteamsuseractivityuserdetail * Use contractions in reportroot-getyammeractivitycounts * Use contractions in reportroot-getyammeractivityusercounts * Use contractions in reportroot-getyammeractivityuserdetail * Use contractions in reportroot-getyammerdeviceusagedistributionusercounts * Use contractions in reportroot-getyammerdeviceusageusercounts * Use contractions in reportroot-getyammerdeviceusageuserdetail * Use contractions in reportroot-getyammergroupsactivitycounts * Use contractions in reportroot-getyammergroupsactivitydetail * Use contractions in riskdetection-get * Use contractions in riskyuser-get * Use contractions in schedulinggroup-delete * Use contractions in schemaextension-delete * Use contractions in security-ediscoverysearch-list-lastestimatestatisticsoperation * Use contractions in security-host-list-childhostpairs * Use contractions in security-host-list-parenthostpairs * Use contractions in security-hostpair-get * Use contractions in security-threatintelligence-list-sslcertificates * Use contractions in servicehealthissue-get * Use contractions in servicehealthissue-incidentreport * Use contractions in serviceprincipal-get * Use contractions in serviceupdatemessage-get * Use contractions in sharedwithchannelteaminfo-get * Use contractions in sharedwithchannelteaminfo-list-allowedmembers * Use contractions in simulationautomation-get * Use contractions in simulation-get * Use contractions in singlevaluelegacyextendedproperty-get * Use contractions in sitepage-publish * Use contractions in sitepage-update * Use contractions in site-search * Use contractions in subjectrightsrequest-list-notes * Use contractions in subscribedsku-list * Use contractions in synchronization-synchronizationschema-delete * Use contractions in synchronization-synchronizationschema-update * Use contractions in teamsapp-delete * Use contractions in teamsapp-publish * Use contractions in teamsapp-update * Use contractions in teamworktag-get * Use contractions in tenantappmanagementpolicy-update * Use contractions in tenantdatasecurityandgovernance-processcontentasync * Use contractions in timeoffrequest-get * Use contractions in todotask-delta * Use contractions in todotask-list-checklistitems * Use contractions in todotask-post-attachments * Use contractions in userdatasecurityandgovernance-processcontent * Use contractions in user-delta * Use contractions in user-findmeetingtimes * Use contractions in user-list-calendarview * Use contractions in user-list-mailfolders * Use contractions in user-list-messages * Use contractions in userregistrationdetails-get * Use contractions in user-sendmail * Use contractions in verticalsection-update * Use contractions in virtualeventregistrationconfiguration-list-questions * Use contractions in virtualeventregistration-list * Use contractions in virtualeventregistration-list-sessions * Use contractions in virtualeventwebinar-post-registrations * Use contractions in webpart-delete * Use contractions in workbook-tablerowoperationresult * Use contractions in x509certificateauthenticationmethodconfiguration-get * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * Update simulation-update.md for requirement around simuation state (#9936) * Update simulation-update.md for requirement around simuation state Clarified simulation state as draft as required and updated description. * Minor fixes --------- Co-authored-by: Faith Moraa Ombongi * Publish main to live - reconcile divergence 2026-06-17 Sets live content identical to main to clear the squash-induced divergence. No manual live hotfixes existed. * Reconcile live to main (unblock auto-publish #29094) (#29095) * Publish main to live - reconcile divergence (refresh 2026-06-17 18:25) Sets live content identical to current main. main is authoritative; no live-only hotfixes. * Update tenantappmanagementpolicy-get.md --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Merge to publish. (#29097) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update reference TOC (#29058) Co-authored-by: Microsoft Graph DevX Tooling * Update profilePropertySetting docs (#29038) * Updated according to KnutB's spec * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update peopleadminsettings-list-profilepropertysettings.md * Update profilepropertysetting.md * Move extended Delete description from resource table to API topic * Apply suggestion from @MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222741 (#29057) Co-authored-by: Microsoft Graph DevX Tooling * Update generated permissions tables with build 222558 (#29051) Co-authored-by: Microsoft Graph DevX Tooling * Revise traceRouteHop availability in callRecord docs (#29055) * Revise traceRouteHop availability in callRecord docs * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update whats-new-overview.md (#29010) * Update whats-new-overview.md * Update whats-new-overview.md --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update pull request template to remove documentation plan requirement (#29069) Removed the requirement to attach the documentation plan for AI-assisted docs authoring. * 2026-06-15: Automated permissions reference update (#29068) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Update generated permissions tables with build 222982 (#29067) Co-authored-by: Microsoft Graph DevX Tooling * Update whats-new-overview.md (#29064) * Update whats-new-overview.md * Update whats-new-overview.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add tenantId property to userAccount resource (#28845) * Add tenantId field to security user account resource Added tenantId field to user account resource details. * Update userAccount resource date and add tenantId * Update date for security userAccount resource * Update changelog with new API changes Added new changelog entries for tenantId and categories properties in userAccount resource. * Apply review suggestions: update changelog dates and add What's New entry for tenantId on userAccount * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi --------- Co-authored-by: Faith Moraa Ombongi Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Add mergeIncidents and moveAlerts v1.0 API docs (#28851) * Add mergeIncidents and moveAlerts v1.0 API docs Add v1.0 documentation for security action endpoints: - API pages: security-incident-mergeincidents.md, security-alert-movealerts.md - Resource pages: security-mergeresponse.md, security-correlationreason.md - Permission and RBAC include files - Update security-incident.md and security-alert.md Methods tables - Update v1.0 toc.mapping.json with new complex types - Add v1.0 changelog entries for all new artifacts Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Fix comments * Apply suggestion from @FaithOmbongi * Update what's new --------- Co-authored-by: Harel Damti Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * Update reference TOC (#29071) Co-authored-by: Microsoft Graph DevX Tooling * Update people doc (#29023) * Updated people & workplace intelligence document according to Knut Brandrud's proposal reviewed within our team. * Minor typo Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Address review comments in social intelligence overview * Apply remaining review thread doc fixes * minor date fix Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * date --------- Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add isVisible property to lpc v1.0 (#28915) * Add isVisible property to lpc v1.0 * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update Microsoft.People.json * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @Danipocket --------- Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply simulation-update v1.0 PR #9936 changes to beta file (#29077) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Remove unsupported expand query from getRetentionLabel docs (#29080) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated files with build 223158 (#29075) Co-authored-by: Microsoft Graph DevX Tooling * Resolve syncing conflicts from repo_sync_working_branch to main (#29076) * Enhance clarity in API documentation by updating request and response example phrasing across multiple files * Apply suggestions from code review Co-authored-by: Jarbas Horst * Fix trailing pipe tables 1.0 (#9930) * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudclipboardroot-list-items * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in itemactivitystat-getactivitybyinterval * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in tablecolumncollection-add * Fix trailing pipe formatting in user-findmeetingtimes * Apply suggestions from code review Co-authored-by: Jarbas Horst --------- Co-authored-by: Jarbas Horst * Fix missing closing codeblock beta (#9919) * Fix formatting of HTTP request example in accesspackageresource-list-uploadsessions.md * Fix missing closing code block in security-labelsroot-delete-citations.md * Fix missing closing code block in singlevaluelegacyextendedproperty-get.md * Fix missing closing code block in usersettings-list-windows.md * Fix missing closing code block in webapplicationfirewallprovider-verify.md * Fix missing closing code block in windowssetting-get.md * Fix missing closing code block in windowssetting-list-instances.md * fix(beta api): close malformed http code fence in windowssettinginstance-get * Apply suggestions from code review Co-authored-by: Jarbas Horst --------- Co-authored-by: Jarbas Horst * Update synchronization-synchronization-list-templates.md (#9922) Update headings from H3 to H2. * Update https://github.com/microsoftgraph/microsoft-graph-docs-contrib/edit/main/api-reference/v1.0/api/synchronization-synchronizationtemplate-get.md (#9923) Update headings from H3 to H2. * Update synchronization-synchronizationtemplate-update.md (#9924) Update headings from H3 to H2. * Update eventmessage-post-attachments.md (#9926) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update event-post-attachments.md (#9925) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update educationassignment-list-resources.md (#9927) Update formatting * Update provisioningobjectsummary-list.md (#9928) Fix typo in error response example section * Fix trailing pipe tables beta (#9929) * Fix trailing pipe formatting in b2cidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bookingbusiness-update * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudpc-retrievecloudpccountbystatus * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in contenttype-associatewithhubsites * Fix trailing pipe formatting in customdataprovidedresourceuploadsession-uploadfile * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in ediscovery-noncustodialdatasource-post * Fix trailing pipe formatting in get-device-command-status * Fix trailing pipe formatting in governancerolesetting-update * Fix trailing pipe formatting in industrydata-inboundapiflow-post * Fix trailing pipe formatting in itemactivity-getbyinterval * Fix trailing pipe formatting in listitem-createlink * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in message-createreply * Fix trailing pipe formatting in networkaccess-reports-getdestinationsummaries * Fix trailing pipe formatting in networkaccess-reports-getdeviceusagesummary * Fix trailing pipe formatting in pagetemplate-delete * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in rbacapplication-post-roleassignmentschedulerequests * Fix trailing pipe formatting in security-collaborationroot-list-analyzedemails * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in send-device-command * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in team-sendactivitynotification * Fix trailing pipe formatting in termstore-relation-post * Fix trailing pipe formatting in user-list-devices * Fix trailing pipe formatting in user-sendmail * Fix trailing pipe formatting in webpart-delete --------- Co-authored-by: Jarbas Horst * Fix missing closing codeblock 1.0 (#9920) * Fix missing closing http fence in security-auditlogquery-list-records * Fix missing closing http fence in userprotectionscopecontainer-compute * Fix missing closing http fence in usersettings-list-windows --------- Co-authored-by: Jarbas Horst * Update date range (#9931) When requesting a date over 28 days the API returns: "Invalid date value specified: 2026-04-06. Only support data for the past 28 days." * Correct date range for email activity report (#9932) https://github.com/microsoftgraph/microsoft-graph-docs-contrib/pull/9931/changes * Change user ID to placeholder in processContent API (#9921) * Change user ID to placeholder in processContent API Updated user ID placeholder in processContent API calls. * Update userdatasecurityandgovernance-processcontent.md Updated example user ID in processContent API calls. * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identit… * Resolve merge conflicts from main into repo_sync_working_branch --------- Co-authored-by: Jarbas Horst <26866873+JarbasHorst@users.noreply.github.com> Co-authored-by: learn-build-service-prod[bot] <113403604+learn-build-service-prod[bot]@users.noreply.github.com> Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Learn Build Service GitHub App Co-authored-by: Vipul <84970543+VipulMSFT@users.noreply.github.com> Co-authored-by: Shlomo Sagir <51323195+shsagir@users.noreply.github.com> Co-authored-by: Nick Robinson Co-authored-by: Matthew M. Co-authored-by: Yuvalabiri <154335961+Yuvalabiri@users.noreply.github.com> Co-authored-by: Ruth Waithera Co-authored-by: Jarbas Horst Co-authored-by: Jarbas Horst Co-authored-by: Ryutaro Koma Co-authored-by: Micah Warren <26724012+MicahWW@users.noreply.github.com> Co-authored-by: masonw1211 <31712004+masonw1211@users.noreply.github.com> Co-authored-by: Mason Wolff Co-authored-by: srinivaspadala-msft Co-authored-by: Anton Vanco <254866915+antonvano@users.noreply.github.com> Co-authored-by: Copilot Co-authored-by: Samuel Mwangi Co-authored-by: Samuel Mwangi (from Dev Box) Co-authored-by: Kimani Mwangi Co-authored-by: Hiro7 <75809971+garchiro7@users.noreply.github.com> Co-authored-by: Simran Moolchandaney <66736756+simoolchandaney@users.noreply.github.com> Co-authored-by: Simran Moolchandaney (from Dev Box) Co-authored-by: Jason Johnston Co-authored-by: myra-ramdenbourg <108485108+myra-ramdenbourg@users.noreply.github.com> Co-authored-by: Alexander Filipin Co-authored-by: Alexander Filipin Co-authored-by: Eunice Waweru <73849846+msewaweru@users.noreply.github.com> Co-authored-by: Ortagus Winfrey <85191667+OWinfreyATL@users.noreply.github.com> Co-authored-by: prasadpatil111 <284865846+prasadpatil111@users.noreply.github.com> Co-authored-by: Prasad Patil Co-authored-by: VISHNU VARDHAN PACHVA <67050501+Vishnu369@users.noreply.github.com> Co-authored-by: Vishnu Vardhan Pachva Co-authored-by: Reeza Ali <223746809+ReezaAli149@users.noreply.github.com> Co-authored-by: Yossi Bruss <287477490+yossibruss-ms@users.noreply.github.com> Co-authored-by: Yossi Bruss Co-authored-by: Yossi Bruss Co-authored-by: aditiijj Co-authored-by: Aditi Jain Co-authored-by: aditiijj <232662544+aditiijj@users.noreply.github.com> --- .../beta/api/crosstenantmigrationjob-migrate.md | 2 -- .../beta/api/crosstenantmigrationjob-validate.md | 2 -- .../beta/api/plannerplan-list-historyitems.md | 6 +++++- .../beta/api/security-detectionrule-get.md | 8 +++++--- .../beta/api/security-detectionrule-update.md | 8 +++++--- .../security-rulesroot-delete-detectionrules.md | 8 +++++--- .../api/security-rulesroot-list-detectionrules.md | 8 +++++--- .../api/security-rulesroot-post-detectionrules.md | 8 +++++--- .../security-detectionrule-delete-permissions.md | 12 ++++++++++++ .../security-detectionrule-list-permissions.md | 12 ++++++++++++ ...etectionrule-post-detectionrules-permissions.md | 12 ++++++++++++ ...-rulesroot-delete-detectionrules-permissions.md | 1 - ...ty-rulesroot-list-detectionrules-permissions.md | 1 - ...ty-rulesroot-post-detectionrules-permissions.md | 1 - api-reference/beta/toc/security/toc.yml | 14 ++++++++++++++ 15 files changed, 80 insertions(+), 23 deletions(-) create mode 100644 api-reference/beta/includes/permissions/security-detectionrule-delete-permissions.md create mode 100644 api-reference/beta/includes/permissions/security-detectionrule-list-permissions.md create mode 100644 api-reference/beta/includes/permissions/security-detectionrule-post-detectionrules-permissions.md diff --git a/api-reference/beta/api/crosstenantmigrationjob-migrate.md b/api-reference/beta/api/crosstenantmigrationjob-migrate.md index 48817b4fcdb..b89ee2980e9 100644 --- a/api-reference/beta/api/crosstenantmigrationjob-migrate.md +++ b/api-reference/beta/api/crosstenantmigrationjob-migrate.md @@ -18,8 +18,6 @@ Migrate a [cross-tenant migration job](../resources/crosstenantmigrationjob.md) This action is asynchronous. After you call the **migrate** API, poll the [Get crossTenantMigrationJob](../api/crosstenantmigrationjob-get.md) endpoint to check for a terminal status of `completed`, `completedWithErrors`, or `failed`. -[!INCLUDE [national-cloud-support](../../includes/global-only.md)] - ## Permissions Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). diff --git a/api-reference/beta/api/crosstenantmigrationjob-validate.md b/api-reference/beta/api/crosstenantmigrationjob-validate.md index d66e89c1e29..ebf5aa2d4d6 100644 --- a/api-reference/beta/api/crosstenantmigrationjob-validate.md +++ b/api-reference/beta/api/crosstenantmigrationjob-validate.md @@ -18,8 +18,6 @@ Validate the configuration of a [cross-tenant migration job](../resources/crosst This action is asynchronous. After you call the **validate** API, poll the [Get crossTenantMigrationJob](../api/crosstenantmigrationjob-get.md) endpoint to check for a terminal status of `validatePassed` or `validateFailed`. -[!INCLUDE [national-cloud-support](../../includes/global-only.md)] - ## Permissions Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). diff --git a/api-reference/beta/api/plannerplan-list-historyitems.md b/api-reference/beta/api/plannerplan-list-historyitems.md index c62086f9377..3bb11ce6b7d 100644 --- a/api-reference/beta/api/plannerplan-list-historyitems.md +++ b/api-reference/beta/api/plannerplan-list-historyitems.md @@ -20,7 +20,11 @@ Get the [history](../resources/plannerhistoryitem.md) of changes made to tasks w Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/plannerplan-list-historyitems-permissions.md)] ## HTTP request diff --git a/api-reference/beta/api/security-detectionrule-get.md b/api-reference/beta/api/security-detectionrule-get.md index 571f12ab519..2b2684dd05e 100644 --- a/api-reference/beta/api/security-detectionrule-get.md +++ b/api-reference/beta/api/security-detectionrule-get.md @@ -18,13 +18,15 @@ Read the properties and relationships of a [detectionRule](../resources/security With custom detections, you can proactively monitor for and respond to various events and system states, including suspected breach activity and misconfigured assets in your organization's network. Custom detection rules, which are written in [Kusto query language (KQL)](/azure/data-explorer/kusto/query/), automatically trigger [alerts](../resources/security-alert.md) and automated actions when events occur that match a KQL query. -[!INCLUDE [national-cloud-support](../../includes/global-only.md)] - ## Permissions Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-detectionrule-get-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-read](../includes/rbac-for-apis/rbac-security-detection-rules-apis-read.md)] diff --git a/api-reference/beta/api/security-detectionrule-update.md b/api-reference/beta/api/security-detectionrule-update.md index 943bf485323..b1df4ce144d 100644 --- a/api-reference/beta/api/security-detectionrule-update.md +++ b/api-reference/beta/api/security-detectionrule-update.md @@ -16,13 +16,15 @@ Namespace: microsoft.graph.security Update the properties of a [detectionRule](../resources/security-detectionrule.md) object. -[!INCLUDE [national-cloud-support](../../includes/global-only.md)] - ## Permissions Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-detectionrule-update-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-write](../includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md)] diff --git a/api-reference/beta/api/security-rulesroot-delete-detectionrules.md b/api-reference/beta/api/security-rulesroot-delete-detectionrules.md index 0647a4d2acb..b81a463287a 100644 --- a/api-reference/beta/api/security-rulesroot-delete-detectionrules.md +++ b/api-reference/beta/api/security-rulesroot-delete-detectionrules.md @@ -16,13 +16,15 @@ Namespace: microsoft.graph.security Delete a [detectionRule](../resources/security-detectionrule.md) object. -[!INCLUDE [national-cloud-support](../../includes/global-only.md)] - ## Permissions Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-rulesroot-delete-detectionrules-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-write](../includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md)] diff --git a/api-reference/beta/api/security-rulesroot-list-detectionrules.md b/api-reference/beta/api/security-rulesroot-list-detectionrules.md index e11fc9821d4..b0e2c7a96f1 100644 --- a/api-reference/beta/api/security-rulesroot-list-detectionrules.md +++ b/api-reference/beta/api/security-rulesroot-list-detectionrules.md @@ -16,13 +16,15 @@ Namespace: microsoft.graph.security Get a list of [detectionRule](../resources/security-detectionrule.md) objects and their properties. -[!INCLUDE [national-cloud-support](../../includes/global-only.md)] - ## Permissions Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-rulesroot-list-detectionrules-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-read](../includes/rbac-for-apis/rbac-security-detection-rules-apis-read.md)] diff --git a/api-reference/beta/api/security-rulesroot-post-detectionrules.md b/api-reference/beta/api/security-rulesroot-post-detectionrules.md index 5f81a4bb610..a245f6861e1 100644 --- a/api-reference/beta/api/security-rulesroot-post-detectionrules.md +++ b/api-reference/beta/api/security-rulesroot-post-detectionrules.md @@ -16,13 +16,15 @@ Namespace: microsoft.graph.security Create a new [detectionRule](../resources/security-detectionrule.md) object. -[!INCLUDE [national-cloud-support](../../includes/global-only.md)] - ## Permissions Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-rulesroot-post-detectionrules-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-write](../includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md)] diff --git a/api-reference/beta/includes/permissions/security-detectionrule-delete-permissions.md b/api-reference/beta/includes/permissions/security-detectionrule-delete-permissions.md new file mode 100644 index 00000000000..9a1a69542be --- /dev/null +++ b/api-reference/beta/includes/permissions/security-detectionrule-delete-permissions.md @@ -0,0 +1,12 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|CustomDetection.ReadWrite.All|Not available.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|CustomDetection.ReadWrite.All|Not available.| + diff --git a/api-reference/beta/includes/permissions/security-detectionrule-list-permissions.md b/api-reference/beta/includes/permissions/security-detectionrule-list-permissions.md new file mode 100644 index 00000000000..7e882632185 --- /dev/null +++ b/api-reference/beta/includes/permissions/security-detectionrule-list-permissions.md @@ -0,0 +1,12 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|CustomDetection.Read.All|CustomDetection.ReadWrite.All| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|CustomDetection.Read.All|CustomDetection.ReadWrite.All| + diff --git a/api-reference/beta/includes/permissions/security-detectionrule-post-detectionrules-permissions.md b/api-reference/beta/includes/permissions/security-detectionrule-post-detectionrules-permissions.md new file mode 100644 index 00000000000..9a1a69542be --- /dev/null +++ b/api-reference/beta/includes/permissions/security-detectionrule-post-detectionrules-permissions.md @@ -0,0 +1,12 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|CustomDetection.ReadWrite.All|Not available.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|CustomDetection.ReadWrite.All|Not available.| + diff --git a/api-reference/beta/includes/permissions/security-rulesroot-delete-detectionrules-permissions.md b/api-reference/beta/includes/permissions/security-rulesroot-delete-detectionrules-permissions.md index 9a1a69542be..09905b20ce8 100644 --- a/api-reference/beta/includes/permissions/security-rulesroot-delete-detectionrules-permissions.md +++ b/api-reference/beta/includes/permissions/security-rulesroot-delete-detectionrules-permissions.md @@ -9,4 +9,3 @@ ms.localizationpriority: medium |Delegated (work or school account)|CustomDetection.ReadWrite.All|Not available.| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|CustomDetection.ReadWrite.All|Not available.| - diff --git a/api-reference/beta/includes/permissions/security-rulesroot-list-detectionrules-permissions.md b/api-reference/beta/includes/permissions/security-rulesroot-list-detectionrules-permissions.md index 7e882632185..ce584032b88 100644 --- a/api-reference/beta/includes/permissions/security-rulesroot-list-detectionrules-permissions.md +++ b/api-reference/beta/includes/permissions/security-rulesroot-list-detectionrules-permissions.md @@ -9,4 +9,3 @@ ms.localizationpriority: medium |Delegated (work or school account)|CustomDetection.Read.All|CustomDetection.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|CustomDetection.Read.All|CustomDetection.ReadWrite.All| - diff --git a/api-reference/beta/includes/permissions/security-rulesroot-post-detectionrules-permissions.md b/api-reference/beta/includes/permissions/security-rulesroot-post-detectionrules-permissions.md index 9a1a69542be..09905b20ce8 100644 --- a/api-reference/beta/includes/permissions/security-rulesroot-post-detectionrules-permissions.md +++ b/api-reference/beta/includes/permissions/security-rulesroot-post-detectionrules-permissions.md @@ -9,4 +9,3 @@ ms.localizationpriority: medium |Delegated (work or school account)|CustomDetection.ReadWrite.All|Not available.| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|CustomDetection.ReadWrite.All|Not available.| - diff --git a/api-reference/beta/toc/security/toc.yml b/api-reference/beta/toc/security/toc.yml index 525b71ea4f0..e3bdfacb7b0 100644 --- a/api-reference/beta/toc/security/toc.yml +++ b/api-reference/beta/toc/security/toc.yml @@ -292,6 +292,20 @@ items: href: ../../resources/security-auditinfo.md - name: Custom detection rules items: + - name: Rules root + items: + - name: Rules root + href: ../../resources/security-rulesroot.md + - name: List + href: ../../api/security-rulesroot-list-detectionrules.md + - name: Create + href: ../../api/security-rulesroot-post-detectionrules.md + - name: Get + href: ../../api/security-detectionrule-get.md + - name: Update + href: ../../api/security-detectionrule-update.md + - name: Delete + href: ../../api/security-rulesroot-delete-detectionrules.md - name: Detection rule items: - name: Detection rule From 90f49202b9edc28732c8d33c1c14e884107a279e Mon Sep 17 00:00:00 2001 From: "snippet-gen-pull-automation[bot]" <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Date: Tue, 23 Jun 2026 07:57:45 +0000 Subject: [PATCH 30/52] Update generated permissions tables with build 224227 (#29143) Co-authored-by: Microsoft Graph DevX Tooling --- .../api/windowsupdates-deploymentaudience-list-exclusions.md | 2 +- .../accesspackage-filterbycurrentuser-permissions.md | 2 +- ...esspackage-getapplicablepolicyrequirements-permissions.md | 2 +- ...ccesspackageassignment-filterbycurrentuser-permissions.md | 2 +- .../accesspackageassignmentrequest-cancel-permissions.md | 2 +- ...ckageassignmentrequest-filterbycurrentuser-permissions.md | 2 +- ...cesspackagesuggestions-filterbycurrentuser-permissions.md | 3 ++- ...lableaccesspackage-list-resourcerolescopes-permissions.md | 5 +++-- ...ement-post-accesspackageassignmentrequests-permissions.md | 2 +- ...itlementmanagement-post-assignmentrequests-permissions.md | 2 +- .../accesspackage-filterbycurrentuser-permissions.md | 2 +- ...esspackage-getapplicablepolicyrequirements-permissions.md | 2 +- ...ccesspackageassignment-filterbycurrentuser-permissions.md | 2 +- .../accesspackageassignmentrequest-cancel-permissions.md | 2 +- ...ckageassignmentrequest-filterbycurrentuser-permissions.md | 2 +- ...cesspackagesuggestions-filterbycurrentuser-permissions.md | 3 ++- ...lableaccesspackage-list-resourcerolescopes-permissions.md | 3 ++- ...itlementmanagement-post-assignmentrequests-permissions.md | 2 +- 18 files changed, 23 insertions(+), 19 deletions(-) diff --git a/api-reference/beta/api/windowsupdates-deploymentaudience-list-exclusions.md b/api-reference/beta/api/windowsupdates-deploymentaudience-list-exclusions.md index 06b52453d62..0264e634337 100644 --- a/api-reference/beta/api/windowsupdates-deploymentaudience-list-exclusions.md +++ b/api-reference/beta/api/windowsupdates-deploymentaudience-list-exclusions.md @@ -127,4 +127,4 @@ Content-Type: application/json } ] } -``` \ No newline at end of file +``` diff --git a/api-reference/beta/includes/permissions/accesspackage-filterbycurrentuser-permissions.md b/api-reference/beta/includes/permissions/accesspackage-filterbycurrentuser-permissions.md index f0e3cbfe177..d22738396a4 100644 --- a/api-reference/beta/includes/permissions/accesspackage-filterbycurrentuser-permissions.md +++ b/api-reference/beta/includes/permissions/accesspackage-filterbycurrentuser-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|Not supported.|Not supported.| diff --git a/api-reference/beta/includes/permissions/accesspackage-getapplicablepolicyrequirements-permissions.md b/api-reference/beta/includes/permissions/accesspackage-getapplicablepolicyrequirements-permissions.md index f0e3cbfe177..d22738396a4 100644 --- a/api-reference/beta/includes/permissions/accesspackage-getapplicablepolicyrequirements-permissions.md +++ b/api-reference/beta/includes/permissions/accesspackage-getapplicablepolicyrequirements-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|Not supported.|Not supported.| diff --git a/api-reference/beta/includes/permissions/accesspackageassignment-filterbycurrentuser-permissions.md b/api-reference/beta/includes/permissions/accesspackageassignment-filterbycurrentuser-permissions.md index f0e3cbfe177..d22738396a4 100644 --- a/api-reference/beta/includes/permissions/accesspackageassignment-filterbycurrentuser-permissions.md +++ b/api-reference/beta/includes/permissions/accesspackageassignment-filterbycurrentuser-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|Not supported.|Not supported.| diff --git a/api-reference/beta/includes/permissions/accesspackageassignmentrequest-cancel-permissions.md b/api-reference/beta/includes/permissions/accesspackageassignmentrequest-cancel-permissions.md index 6a67754258a..6a68941027d 100644 --- a/api-reference/beta/includes/permissions/accesspackageassignmentrequest-cancel-permissions.md +++ b/api-reference/beta/includes/permissions/accesspackageassignmentrequest-cancel-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.ReadWrite.All|Not available.| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|Not supported.|Not supported.| diff --git a/api-reference/beta/includes/permissions/accesspackageassignmentrequest-filterbycurrentuser-permissions.md b/api-reference/beta/includes/permissions/accesspackageassignmentrequest-filterbycurrentuser-permissions.md index f0e3cbfe177..d22738396a4 100644 --- a/api-reference/beta/includes/permissions/accesspackageassignmentrequest-filterbycurrentuser-permissions.md +++ b/api-reference/beta/includes/permissions/accesspackageassignmentrequest-filterbycurrentuser-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|Not supported.|Not supported.| diff --git a/api-reference/beta/includes/permissions/accesspackagesuggestions-filterbycurrentuser-permissions.md b/api-reference/beta/includes/permissions/accesspackagesuggestions-filterbycurrentuser-permissions.md index dcc22a68490..63d88919e01 100644 --- a/api-reference/beta/includes/permissions/accesspackagesuggestions-filterbycurrentuser-permissions.md +++ b/api-reference/beta/includes/permissions/accesspackagesuggestions-filterbycurrentuser-permissions.md @@ -6,6 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| + diff --git a/api-reference/beta/includes/permissions/availableaccesspackage-list-resourcerolescopes-permissions.md b/api-reference/beta/includes/permissions/availableaccesspackage-list-resourcerolescopes-permissions.md index 011e8b79d8e..63d88919e01 100644 --- a/api-reference/beta/includes/permissions/availableaccesspackage-list-resourcerolescopes-permissions.md +++ b/api-reference/beta/includes/permissions/availableaccesspackage-list-resourcerolescopes-permissions.md @@ -6,6 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| -|Application|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| \ No newline at end of file +|Application|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| + diff --git a/api-reference/beta/includes/permissions/entitlementmanagement-post-accesspackageassignmentrequests-permissions.md b/api-reference/beta/includes/permissions/entitlementmanagement-post-accesspackageassignmentrequests-permissions.md index 606bd07c2fb..98fc3d9ed71 100644 --- a/api-reference/beta/includes/permissions/entitlementmanagement-post-accesspackageassignmentrequests-permissions.md +++ b/api-reference/beta/includes/permissions/entitlementmanagement-post-accesspackageassignmentrequests-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.ReadWrite.All|Not available.| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|EntitlementManagement.ReadWrite.All|Not available.| diff --git a/api-reference/beta/includes/permissions/entitlementmanagement-post-assignmentrequests-permissions.md b/api-reference/beta/includes/permissions/entitlementmanagement-post-assignmentrequests-permissions.md index 606bd07c2fb..98fc3d9ed71 100644 --- a/api-reference/beta/includes/permissions/entitlementmanagement-post-assignmentrequests-permissions.md +++ b/api-reference/beta/includes/permissions/entitlementmanagement-post-assignmentrequests-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.ReadWrite.All|Not available.| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|EntitlementManagement.ReadWrite.All|Not available.| diff --git a/api-reference/v1.0/includes/permissions/accesspackage-filterbycurrentuser-permissions.md b/api-reference/v1.0/includes/permissions/accesspackage-filterbycurrentuser-permissions.md index f0e3cbfe177..d22738396a4 100644 --- a/api-reference/v1.0/includes/permissions/accesspackage-filterbycurrentuser-permissions.md +++ b/api-reference/v1.0/includes/permissions/accesspackage-filterbycurrentuser-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|Not supported.|Not supported.| diff --git a/api-reference/v1.0/includes/permissions/accesspackage-getapplicablepolicyrequirements-permissions.md b/api-reference/v1.0/includes/permissions/accesspackage-getapplicablepolicyrequirements-permissions.md index f0e3cbfe177..d22738396a4 100644 --- a/api-reference/v1.0/includes/permissions/accesspackage-getapplicablepolicyrequirements-permissions.md +++ b/api-reference/v1.0/includes/permissions/accesspackage-getapplicablepolicyrequirements-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|Not supported.|Not supported.| diff --git a/api-reference/v1.0/includes/permissions/accesspackageassignment-filterbycurrentuser-permissions.md b/api-reference/v1.0/includes/permissions/accesspackageassignment-filterbycurrentuser-permissions.md index f0e3cbfe177..d22738396a4 100644 --- a/api-reference/v1.0/includes/permissions/accesspackageassignment-filterbycurrentuser-permissions.md +++ b/api-reference/v1.0/includes/permissions/accesspackageassignment-filterbycurrentuser-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|Not supported.|Not supported.| diff --git a/api-reference/v1.0/includes/permissions/accesspackageassignmentrequest-cancel-permissions.md b/api-reference/v1.0/includes/permissions/accesspackageassignmentrequest-cancel-permissions.md index 6a67754258a..6a68941027d 100644 --- a/api-reference/v1.0/includes/permissions/accesspackageassignmentrequest-cancel-permissions.md +++ b/api-reference/v1.0/includes/permissions/accesspackageassignmentrequest-cancel-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.ReadWrite.All|Not available.| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|Not supported.|Not supported.| diff --git a/api-reference/v1.0/includes/permissions/accesspackageassignmentrequest-filterbycurrentuser-permissions.md b/api-reference/v1.0/includes/permissions/accesspackageassignmentrequest-filterbycurrentuser-permissions.md index f0e3cbfe177..d22738396a4 100644 --- a/api-reference/v1.0/includes/permissions/accesspackageassignmentrequest-filterbycurrentuser-permissions.md +++ b/api-reference/v1.0/includes/permissions/accesspackageassignmentrequest-filterbycurrentuser-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|Not supported.|Not supported.| diff --git a/api-reference/v1.0/includes/permissions/accesspackagesuggestions-filterbycurrentuser-permissions.md b/api-reference/v1.0/includes/permissions/accesspackagesuggestions-filterbycurrentuser-permissions.md index dcc22a68490..63d88919e01 100644 --- a/api-reference/v1.0/includes/permissions/accesspackagesuggestions-filterbycurrentuser-permissions.md +++ b/api-reference/v1.0/includes/permissions/accesspackagesuggestions-filterbycurrentuser-permissions.md @@ -6,6 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| + diff --git a/api-reference/v1.0/includes/permissions/availableaccesspackage-list-resourcerolescopes-permissions.md b/api-reference/v1.0/includes/permissions/availableaccesspackage-list-resourcerolescopes-permissions.md index dcc22a68490..63d88919e01 100644 --- a/api-reference/v1.0/includes/permissions/availableaccesspackage-list-resourcerolescopes-permissions.md +++ b/api-reference/v1.0/includes/permissions/availableaccesspackage-list-resourcerolescopes-permissions.md @@ -6,6 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| + diff --git a/api-reference/v1.0/includes/permissions/entitlementmanagement-post-assignmentrequests-permissions.md b/api-reference/v1.0/includes/permissions/entitlementmanagement-post-assignmentrequests-permissions.md index 606bd07c2fb..98fc3d9ed71 100644 --- a/api-reference/v1.0/includes/permissions/entitlementmanagement-post-assignmentrequests-permissions.md +++ b/api-reference/v1.0/includes/permissions/entitlementmanagement-post-assignmentrequests-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.ReadWrite.All|Not available.| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|EntitlementManagement.ReadWrite.All|Not available.| From eb0030858bee8caa8ce4c829e09aa68870a3a4ff Mon Sep 17 00:00:00 2001 From: "snippet-gen-pull-automation[bot]" <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Date: Tue, 23 Jun 2026 15:06:25 +0300 Subject: [PATCH 31/52] Update generated files with build 224254 (#29144) Co-authored-by: Microsoft Graph DevX Tooling --- ...ccessreviewinstance-filterbycurrentuser.md | 2 - ...nstancedecisionitem-filterbycurrentuser.md | 1 - .../api/cloudpcprovisioningpolicy-apply.md | 27 ++++ .../api/crosstenantmigrationjob-migrate.md | 31 ++++ .../api/crosstenantmigrationjob-validate.md | 31 ++++ .../beta/api/distributionlist-addmembers.md | 7 + .../beta/api/distributionlist-delete.md | 7 + .../api/distributionlist-deletemembers.md | 7 + ...ributionlist-get-distributionlistmember.md | 7 + .../beta/api/distributionlist-get.md | 7 + ...butionlist-list-distributionlistmembers.md | 7 + .../beta/api/distributionlist-update.md | 7 + .../beta/api/security-detectionrule-get.md | 31 ++++ .../beta/api/security-detectionrule-update.md | 31 ++++ ...ecurity-rulesroot-delete-detectionrules.md | 31 ++++ .../security-rulesroot-list-detectionrules.md | 31 ++++ .../security-rulesroot-post-detectionrules.md | 27 ++++ .../beta/api/teamworksection-post-items.md | 27 ++++ .../beta/api/user-list-distributionlists.md | 7 + .../beta/api/user-post-distributionlists.md | 7 + .../api/virtualeventsroot-post-townhalls.md | 7 + .../api/virtualeventsroot-post-webinars.md | 7 + ...rksectionitem-community-csharp-snippets.md | 24 +++ ...sioningpolicy-frontline-csharp-snippets.md | 6 + ...y-frontline-forcelogoff-csharp-snippets.md | 27 ++++ .../create-detectionrule-csharp-snippets.md | 134 ++++++++++++++++ ...-or-get-onlinemeeting-2-csharp-snippets.md | 6 + ...migrationjobthismigrate-csharp-snippets.md | 13 ++ ...igrationjobthisvalidate-csharp-snippets.md | 28 +--- .../get-req-for-given-user-csharp-snippets.md | 32 ---- ...=> list-detectionrules-csharp-snippets.md} | 5 +- .../update-detectionrule-csharp-snippets.md | 30 ++++ ...nantappmanagementpolicy-csharp-snippets.md | 148 ++++++++++++++++++ ...amworksectionitem-community-go-snippets.md | 34 ++++ ...olicy-frontline-forcelogoff-go-snippets.md | 31 ++++ ...rovisioningpolicy-frontline-go-snippets.md | 5 + ...eate-or-get-onlinemeeting-2-go-snippets.md | 4 + ...nantmigrationjobthismigrate-go-snippets.md | 22 +++ ...antmigrationjobthisvalidate-go-snippets.md | 28 +--- .../go/get-req-for-given-user-go-snippets.md | 31 ---- ....md => list-detectionrules-go-snippets.md} | 12 +- .../go/update-detectionrule-go-snippets.md | 32 ++++ ...e-tenantappmanagementpolicy-go-snippets.md | 135 ++++++++++++++++ ...worksectionitem-community-java-snippets.md | 18 +++ ...icy-frontline-forcelogoff-java-snippets.md | 19 +++ ...visioningpolicy-frontline-java-snippets.md | 3 + .../create-detectionrule-java-snippets.md | 72 +++++++++ ...te-or-get-onlinemeeting-2-java-snippets.md | 3 + ...ntmigrationjobthismigrate-java-snippets.md | 14 ++ ...tmigrationjobthisvalidate-java-snippets.md | 18 +-- .../get-req-for-given-user-java-snippets.md | 20 --- ...d => list-detectionrules-java-snippets.md} | 4 +- .../update-detectionrule-java-snippets.md | 21 +++ ...tenantappmanagementpolicy-java-snippets.md | 109 +++++++++++++ ...ctionitem-community-javascript-snippets.md | 21 +++ ...ontline-forcelogoff-javascript-snippets.md | 22 +++ ...ingpolicy-frontline-javascript-snippets.md | 1 + ...ackage-subscription-javascript-snippets.md | 8 +- ...reate-detectionrule-javascript-snippets.md | 71 +++++++++ ...te-distributionlist-javascript-snippets.md | 33 ++++ ...get-onlinemeeting-2-javascript-snippets.md | 3 +- ...irtualeventtownhall-javascript-snippets.md | 3 +- ...virtualeventwebinar-javascript-snippets.md | 3 +- ...ationjobthismigrate-javascript-snippets.md | 17 ++ ...tionjobthisvalidate-javascript-snippets.md | 20 +-- ...elete-detectionrule-javascript-snippets.md | 2 +- ...te-distributionlist-javascript-snippets.md | 17 ++ ...tionlist-addmembers-javascript-snippets.md | 28 ++++ ...nlist-deletemembers-javascript-snippets.md | 27 ++++ .../get-detectionrule-javascript-snippets.md | 2 +- ...et-distributionlist-javascript-snippets.md | 17 ++ ...tributionlistmember-javascript-snippets.md | 17 ++ ...-req-for-given-user-javascript-snippets.md | 23 --- ...ist-detectionrules-javascript-snippets.md} | 1 - ...ributionlistmembers-javascript-snippets.md | 17 ++ ...t-distributionlists-javascript-snippets.md | 17 ++ .../post-chatmessage-5-javascript-snippets.md | 22 +-- ...pdate-detectionrule-javascript-snippets.md | 24 +++ ...te-distributionlist-javascript-snippets.md | 21 +++ ...appmanagementpolicy-javascript-snippets.md | 109 +++++++++++++ ...mworksectionitem-community-php-snippets.md | 26 +++ ...licy-frontline-forcelogoff-php-snippets.md | 23 +++ ...ovisioningpolicy-frontline-php-snippets.md | 4 + .../php/create-detectionrule-php-snippets.md | 83 ++++++++++ ...ate-or-get-onlinemeeting-2-php-snippets.md | 4 + ...antmigrationjobthismigrate-php-snippets.md | 16 ++ ...ntmigrationjobthisvalidate-php-snippets.md | 15 +- .../get-req-for-given-user-php-snippets.md | 24 --- .../php/list-detectionrule-php-snippets.md | 22 --- .../php/list-detectionrules-php-snippets.md | 16 ++ .../php/update-detectionrule-php-snippets.md | 26 +++ ...-tenantappmanagementpolicy-php-snippets.md | 76 +++++++++ ...reate-detectionrule-powershell-snippets.md | 65 ++++++++ ...ationjobthismigrate-powershell-snippets.md | 11 ++ ...tionjobthisvalidate-powershell-snippets.md | 11 ++ ...-req-for-given-user-powershell-snippets.md | 17 -- ...ist-detectionrules-powershell-snippets.md} | 2 +- ...pdate-detectionrule-powershell-snippets.md | 18 +++ ...appmanagementpolicy-powershell-snippets.md | 109 +++++++++++++ ...rksectionitem-community-python-snippets.md | 24 +++ ...y-frontline-forcelogoff-python-snippets.md | 21 +++ ...sioningpolicy-frontline-python-snippets.md | 3 + .../create-detectionrule-python-snippets.md | 79 ++++++++++ ...-or-get-onlinemeeting-2-python-snippets.md | 3 + ...migrationjobthismigrate-python-snippets.md | 14 ++ ...igrationjobthisvalidate-python-snippets.md | 21 +-- .../get-req-for-given-user-python-snippets.md | 22 --- .../list-detectionrule-python-snippets.md | 23 --- .../list-detectionrules-python-snippets.md | 14 ++ .../update-detectionrule-python-snippets.md | 24 +++ ...nantappmanagementpolicy-python-snippets.md | 121 ++++++++++++++ .../accesspackage-post-resourcerolescopes.md | 93 +++++++++++ ...tlementmanagement-post-resourcerequests.md | 62 ++++++++ ...quests-management-group-csharp-snippets.md | 38 +++++ ...s-subscription-resource-csharp-snippets.md | 38 +++++ ...esspackage-subscription-csharp-snippets.md | 56 +++++++ ...ption-management-active-csharp-snippets.md | 56 +++++++ ...iption-management-group-csharp-snippets.md | 57 +++++++ ...cerequests-management-group-go-snippets.md | 44 ++++++ ...uests-subscription-resource-go-snippets.md | 44 ++++++ ...-accesspackage-subscription-go-snippets.md | 68 ++++++++ ...scription-management-active-go-snippets.md | 68 ++++++++ ...bscription-management-group-go-snippets.md | 70 +++++++++ ...requests-management-group-java-snippets.md | 28 ++++ ...sts-subscription-resource-java-snippets.md | 28 ++++ ...ccesspackage-subscription-java-snippets.md | 42 +++++ ...ription-management-active-java-snippets.md | 42 +++++ ...cription-management-group-java-snippets.md | 43 +++++ ...ts-management-group-javascript-snippets.md | 30 ++++ ...bscription-resource-javascript-snippets.md | 30 ++++ ...ackage-subscription-javascript-snippets.md | 42 +++++ ...n-management-active-javascript-snippets.md | 42 +++++ ...on-management-group-javascript-snippets.md | 43 +++++ .../post-chatmessage-5-javascript-snippets.md | 22 +-- ...erequests-management-group-php-snippets.md | 35 +++++ ...ests-subscription-resource-php-snippets.md | 35 +++++ ...cription-management-active-php-snippets.md | 50 ++++++ ...scription-management-group-php-snippets.md | 51 ++++++ ...accesspackage-subscription-php-snippets.md | 50 ++++++ ...ts-management-group-powershell-snippets.md | 25 +++ ...bscription-resource-powershell-snippets.md | 25 +++ ...n-management-active-powershell-snippets.md | 37 +++++ ...on-management-group-powershell-snippets.md | 38 +++++ ...ackage-subscription-powershell-snippets.md | 37 +++++ ...quests-management-group-python-snippets.md | 33 ++++ ...s-subscription-resource-python-snippets.md | 33 ++++ ...ption-management-active-python-snippets.md | 47 ++++++ ...iption-management-group-python-snippets.md | 48 ++++++ ...esspackage-subscription-python-snippets.md | 47 ++++++ 149 files changed, 4204 insertions(+), 391 deletions(-) create mode 100644 api-reference/beta/includes/snippets/csharp/add-teamworksectionitem-community-csharp-snippets.md create mode 100644 api-reference/beta/includes/snippets/csharp/apply-cloudpcprovisioningpolicy-frontline-forcelogoff-csharp-snippets.md create mode 100644 api-reference/beta/includes/snippets/csharp/create-detectionrule-csharp-snippets.md create mode 100644 api-reference/beta/includes/snippets/csharp/crosstenantmigrationjobthismigrate-csharp-snippets.md delete mode 100644 api-reference/beta/includes/snippets/csharp/get-req-for-given-user-csharp-snippets.md rename api-reference/beta/includes/snippets/csharp/{list-detectionrule-csharp-snippets.md => list-detectionrules-csharp-snippets.md} (80%) create mode 100644 api-reference/beta/includes/snippets/csharp/update-detectionrule-csharp-snippets.md create mode 100644 api-reference/beta/includes/snippets/go/add-teamworksectionitem-community-go-snippets.md create mode 100644 api-reference/beta/includes/snippets/go/apply-cloudpcprovisioningpolicy-frontline-forcelogoff-go-snippets.md create mode 100644 api-reference/beta/includes/snippets/go/crosstenantmigrationjobthismigrate-go-snippets.md delete mode 100644 api-reference/beta/includes/snippets/go/get-req-for-given-user-go-snippets.md rename api-reference/beta/includes/snippets/go/{list-detectionrule-go-snippets.md => list-detectionrules-go-snippets.md} (55%) create mode 100644 api-reference/beta/includes/snippets/go/update-detectionrule-go-snippets.md create mode 100644 api-reference/beta/includes/snippets/java/add-teamworksectionitem-community-java-snippets.md create mode 100644 api-reference/beta/includes/snippets/java/apply-cloudpcprovisioningpolicy-frontline-forcelogoff-java-snippets.md create mode 100644 api-reference/beta/includes/snippets/java/create-detectionrule-java-snippets.md create mode 100644 api-reference/beta/includes/snippets/java/crosstenantmigrationjobthismigrate-java-snippets.md delete mode 100644 api-reference/beta/includes/snippets/java/get-req-for-given-user-java-snippets.md rename api-reference/beta/includes/snippets/java/{list-detectionrule-java-snippets.md => list-detectionrules-java-snippets.md} (82%) create mode 100644 api-reference/beta/includes/snippets/java/update-detectionrule-java-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/add-teamworksectionitem-community-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/apply-cloudpcprovisioningpolicy-frontline-forcelogoff-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/create-detectionrule-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/create-distributionlist-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/crosstenantmigrationjobthismigrate-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/delete-distributionlist-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/distributionlist-addmembers-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/distributionlist-deletemembers-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/get-distributionlist-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/get-distributionlistmember-javascript-snippets.md delete mode 100644 api-reference/beta/includes/snippets/javascript/get-req-for-given-user-javascript-snippets.md rename api-reference/beta/includes/snippets/javascript/{list-detectionrule-javascript-snippets.md => list-detectionrules-javascript-snippets.md} (96%) create mode 100644 api-reference/beta/includes/snippets/javascript/list-distributionlistmembers-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/list-distributionlists-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/update-detectionrule-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/update-distributionlist-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/php/add-teamworksectionitem-community-php-snippets.md create mode 100644 api-reference/beta/includes/snippets/php/apply-cloudpcprovisioningpolicy-frontline-forcelogoff-php-snippets.md create mode 100644 api-reference/beta/includes/snippets/php/create-detectionrule-php-snippets.md create mode 100644 api-reference/beta/includes/snippets/php/crosstenantmigrationjobthismigrate-php-snippets.md delete mode 100644 api-reference/beta/includes/snippets/php/get-req-for-given-user-php-snippets.md delete mode 100644 api-reference/beta/includes/snippets/php/list-detectionrule-php-snippets.md create mode 100644 api-reference/beta/includes/snippets/php/list-detectionrules-php-snippets.md create mode 100644 api-reference/beta/includes/snippets/php/update-detectionrule-php-snippets.md create mode 100644 api-reference/beta/includes/snippets/powershell/create-detectionrule-powershell-snippets.md create mode 100644 api-reference/beta/includes/snippets/powershell/crosstenantmigrationjobthismigrate-powershell-snippets.md create mode 100644 api-reference/beta/includes/snippets/powershell/crosstenantmigrationjobthisvalidate-powershell-snippets.md delete mode 100644 api-reference/beta/includes/snippets/powershell/get-req-for-given-user-powershell-snippets.md rename api-reference/beta/includes/snippets/powershell/{list-detectionrule-powershell-snippets.md => list-detectionrules-powershell-snippets.md} (75%) create mode 100644 api-reference/beta/includes/snippets/powershell/update-detectionrule-powershell-snippets.md create mode 100644 api-reference/beta/includes/snippets/python/add-teamworksectionitem-community-python-snippets.md create mode 100644 api-reference/beta/includes/snippets/python/apply-cloudpcprovisioningpolicy-frontline-forcelogoff-python-snippets.md create mode 100644 api-reference/beta/includes/snippets/python/create-detectionrule-python-snippets.md create mode 100644 api-reference/beta/includes/snippets/python/crosstenantmigrationjobthismigrate-python-snippets.md delete mode 100644 api-reference/beta/includes/snippets/python/get-req-for-given-user-python-snippets.md delete mode 100644 api-reference/beta/includes/snippets/python/list-detectionrule-python-snippets.md create mode 100644 api-reference/beta/includes/snippets/python/list-detectionrules-python-snippets.md create mode 100644 api-reference/beta/includes/snippets/python/update-detectionrule-python-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-csharp-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-csharp-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerolescope-from-accesspackage-subscription-csharp-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-csharp-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-csharp-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-go-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-go-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerolescope-from-accesspackage-subscription-go-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-go-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-go-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-java-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-java-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerolescope-from-accesspackage-subscription-java-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-java-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-java-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-javascript-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-javascript-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerolescope-from-accesspackage-subscription-javascript-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-javascript-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-javascript-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-php-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-php-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-php-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-php-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerolescope-from-accesspackage-subscription-php-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-powershell-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-powershell-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-powershell-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-powershell-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerolescope-from-accesspackage-subscription-powershell-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-python-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-python-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-python-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-python-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerolescope-from-accesspackage-subscription-python-snippets.md diff --git a/api-reference/beta/api/accessreviewinstance-filterbycurrentuser.md b/api-reference/beta/api/accessreviewinstance-filterbycurrentuser.md index 12b8741703e..0346bd79b02 100644 --- a/api-reference/beta/api/accessreviewinstance-filterbycurrentuser.md +++ b/api-reference/beta/api/accessreviewinstance-filterbycurrentuser.md @@ -197,7 +197,6 @@ GET https://graph.microsoft.com/beta/identityGovernance/accessReviews/definition --- - #### Response >**Note:** The response object shown here might be shortened for readability. -[!INCLUDE [permissions-table](../includes/permissions/plannerplan-list-historyitems-permissions.md)] - -## HTTP request - - -``` http -GET /planner/plans/{plan-id}/historyItems -``` - -## Optional query parameters - -This method supports the `$filter` OData query parameter to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). - -Use `$filter` on the **occurredDateTime** property to retrieve history items within a specific time range. - -## Request headers - -|Name|Description| -|:---|:---| -|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| - -## Request body - -Don't supply a request body for this method. - -## Response - -If successful, this method returns a `200 OK` response code and a collection of [plannerHistoryItem](../resources/plannerhistoryitem.md) objects in the response body. - -## Examples - -### Request - -The following example shows how to get task [history items](../resources/plannerhistoryitem.md) for a plan with a date filter. - - -``` http -GET https://graph.microsoft.com/beta/planner/plans/nETqF5FS2LkCp935s-FIFm2QAFkHM/historyItems?$filter=occurredDateTime gt 2025-11-01T00:00:00Z and occurredDateTime lt 2025-12-01T00:00:00Z -``` - -### Response - -The following example shows the response. - ->**Note:** The response object shown here might be shortened for readability. - - -``` http -HTTP/1.1 200 OK -Content-Type: application/json - -{ - "@odata.context": "https://graph.microsoft.com/beta/$metadata#planner/plans('nETqF5FS2LkCp935s-FIFm2QAFkHM')/historyItems", - "value": [ - { - "@odata.type": "#microsoft.graph.taskHistoryItem", - "id": "historyItem-id-1", - "planId": "nETqF5FS2LkCp935s-FIFm2QAFkHM", - "entityId": "dYsWHy7-WEGMQsMaPBv_9ZUAOzQz", - "entityType": "task", - "eventType": "created", - "occurredDateTime": "2026-01-12T14:16:26.5896957Z", - "actor": { - "user": { - "displayName": null, - "id": "6699294c-9300-4ad8-a768-af3407b5e0fe" - }, - "application": { - "displayName": null, - "id": "09abbdfd-ed23-44ee-a2d9-a627a41c90f3" - } - }, - "oldData": null, - "newData": { - "createdBy": { - "user": { - "displayName": null, - "id": "6699294c-9300-4ad8-a768-af3407b5e0fe" - }, - "application": { - "displayName": null, - "id": "09abbdfd-ed23-44ee-a2d9-a627a41c90f3" - } - }, - "bucketId": "0LHuWF3PrUqKYzq-TcR3oJUADFn8", - "isArchived": false, - "title": "Initial Task Title", - "orderHint": "8584333795589189673P,", - "percentComplete": 0, - "priority": 5 - } - }, - { - "@odata.type": "#microsoft.graph.taskHistoryItem", - "id": "historyItem-id-2", - "planId": "nETqF5FS2LkCp935s-FIFm2QAFkHM", - "entityId": "dYsWHy7-WEGMQsMaPBv_9ZUAOzQz", - "entityType": "task", - "eventType": "updated", - "occurredDateTime": "2026-01-12T15:16:26.5896957Z", - "actor": { - "user": { - "displayName": null, - "id": "6699294c-9300-4ad8-a768-af3407b5e0fe" - }, - "application": { - "displayName": null, - "id": "09abbdfd-ed23-44ee-a2d9-a627a41c90f3" - } - }, - "oldData": { - "title": "Initial Task Title", - "percentComplete": 0 - }, - "newData": { - "title": "Updated Task Title", - "percentComplete": 50 - } - } - ] -} -``` diff --git a/api-reference/beta/includes/permissions/plannerplan-list-historyitems-permissions.md b/api-reference/beta/includes/permissions/plannerplan-list-historyitems-permissions.md deleted file mode 100644 index e6f029cd184..00000000000 --- a/api-reference/beta/includes/permissions/plannerplan-list-historyitems-permissions.md +++ /dev/null @@ -1,12 +0,0 @@ ---- -description: "Automatically generated file. DO NOT MODIFY" -ms.topic: include -ms.localizationpriority: medium ---- - -|Permission type|Least privileged permissions|Higher privileged permissions| -|:---|:---|:---| -|Delegated (work or school account)|Tasks.Read|Tasks.ReadWrite| -|Delegated (personal Microsoft account)|Not supported.|Not supported.| -|Application|Tasks.Read.All|Tasks.ReadWrite.All| - diff --git a/api-reference/beta/resources/enums.md b/api-reference/beta/resources/enums.md index dba291b6991..1da368f367f 100644 --- a/api-reference/beta/resources/enums.md +++ b/api-reference/beta/resources/enums.md @@ -282,24 +282,6 @@ Namespace: microsoft.graph |failedActivation| |unknownFutureValue| -### historyEntityType values - -|Member| -|:---| -|task| -|unknownFutureValue| - -### historyEventType values - -|Member| -|:---| -|created| -|updated| -|deleted| -|undeleted| -|moved| -|unknownFutureValue| - ### provisionState values | Member | @@ -539,7 +521,6 @@ Namespace: microsoft.graph | unknownFutureValue | | formCompletion | | approvalCompletion | -| completionInHostedApp | ### plannerApprovalStatus values diff --git a/api-reference/beta/resources/planner-overview.md b/api-reference/beta/resources/planner-overview.md index ab9ba52f0bd..918d91919df 100644 --- a/api-reference/beta/resources/planner-overview.md +++ b/api-reference/beta/resources/planner-overview.md @@ -179,11 +179,6 @@ The delta payload objects that the Planner delta query can currently return are Use the corresponding `GET` methods on the resource to obtain the initial state of objects to be populated into the local cache. - -### Looking at history for the plan - -Planner supports an [API](../api/plannerplan-list-historyitems.md) to get the [history](plannerhistoryitem.md) of changes made to [tasks](plannertask.md) within a [plan](plannerplan.md). - ### Differentiating between object creation and object modification In certain scenarios, the caller might want to distinguish between object creation and object modification within Planner's delta query feed. diff --git a/api-reference/beta/resources/plannerdelta.md b/api-reference/beta/resources/plannerdelta.md deleted file mode 100644 index 406024733f5..00000000000 --- a/api-reference/beta/resources/plannerdelta.md +++ /dev/null @@ -1,46 +0,0 @@ ---- -title: "plannerDelta resource type" -description: "An abstract type that represents the base type for planner entities such as a plan or a task." -author: "praspati" -ms.date: 05/15/2026 -ms.localizationpriority: medium -ms.subservice: "planner" -doc_type: resourcePageType ---- - -# plannerDelta resource type - -Namespace: microsoft.graph - -[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] - -An abstract type that represents the base type for planner entities such as a plan or a task. - -Base type of [plannerHistoryItem](plannerhistoryitem.md), [plannerTask](plannertask.md), [plannerPlan](plannerplan.md), and [plannerBucket](plannerbucket.md). - -## Methods -None. - -## Properties -|Property|Type|Description| -|:---|:---|:---| -|id|String|The unique identifier for the entity. | - -## Relationships -None. - -## JSON representation -The following JSON representation shows the resource type. - -``` json -{ - "@odata.type": "#microsoft.graph.plannerDelta", - "id": "String (identifier)" -} -``` diff --git a/api-reference/beta/resources/plannerhistoryitem.md b/api-reference/beta/resources/plannerhistoryitem.md deleted file mode 100644 index a59ed101d4e..00000000000 --- a/api-reference/beta/resources/plannerhistoryitem.md +++ /dev/null @@ -1,63 +0,0 @@ ---- -title: "plannerHistoryItem resource type" -description: "An abstract type that represents a record of a change made to an entity within a planner plan." -author: "praspati" -ms.date: 05/15/2026 -ms.localizationpriority: medium -ms.subservice: "planner" -doc_type: resourcePageType ---- - -# plannerHistoryItem resource type - -Namespace: microsoft.graph - -[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] - -An abstract type that represents a record of a change made to an entity within a [planner plan](../resources/plannerplan.md). This resource serves as the base for specific history item types. - -Inherits from [plannerDelta](../resources/plannerdelta.md). - -## Methods -|Method|Return type|Description| -|:---|:---|:---| -|[List](../api/plannerplan-list-historyitems.md)|[plannerHistoryItem](../resources/plannerhistoryitem.md) collection|Get the [history](../resources/plannerhistoryitem.md) of changes made to tasks within a [plan](../resources/plannerplan.md).| - -## Properties -|Property|Type|Description| -|:---|:---|:---| -|actor|[identitySet](../resources/identityset.md)|The identity of the user or application that performed the change.| -|entityId|String|The ID of the entity that was changed.| -|entityType|historyEntityType|The type of entity that was changed. The possible values are: `task`, `unknownFutureValue`.| -|eventType|historyEventType|The type of change event that occurred. The possible values are: `created`, `updated`, `deleted`, `undeleted`, `moved`, `unknownFutureValue`.| -|id|String|The unique identifier for the history item. Inherited from [plannerDelta](../resources/plannerdelta.md).| -|occurredDateTime|DateTimeOffset|The date and time when the change occurred. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2024, is `2024-01-01T00:00:00Z`.| -|planId|String|The ID of the plan that contains the changed entity.| - -## Relationships -None. - -## JSON representation -The following JSON representation shows the resource type. - -``` json -{ - "@odata.type": "#microsoft.graph.plannerHistoryItem", - "id": "String (identifier)", - "planId": "String", - "entityId": "String", - "entityType": "String", - "eventType": "String", - "occurredDateTime": "String (timestamp)", - "actor": { - "@odata.type": "microsoft.graph.identitySet" - } -} -``` diff --git a/api-reference/beta/resources/plannerplan.md b/api-reference/beta/resources/plannerplan.md index f13c3a1ab94..39bb0f3532f 100644 --- a/api-reference/beta/resources/plannerplan.md +++ b/api-reference/beta/resources/plannerplan.md @@ -31,7 +31,6 @@ Represents a plan in Microsoft 365. Either a [group](group.md) or a [user](user. |[List plan tasks](../api/plannerplan-list-tasks.md) |[plannerTask](plannertask.md) collection| Get a **plannerTask** object collection.| |[Get delta](../api/plannerplan-delta.md) | [plannerPlan](../resources/plannerplan.md) collection | Get newly created, updated, or deleted **plannerPlan** objects in either a **group** or a [plannerRoster](plannerroster.md) type container without having to perform a full read of the entire resource collection. | |[Get usage rights](../api/plannerplan-getusagerights.md)|[planUsageRight](../resources/planusageright.md)|Get the usage rights for a specific [plan](../resources/plannerplan.md) based on its sensitivity label assignment and the requesting user's permissions.| -|[List history items](../api/plannerplan-list-historyitems.md)|[plannerHistoryItem](plannerhistoryitem.md) collection|Get the [history](../resources/plannerhistoryitem.md) of changes made to tasks within a [plan](../resources/plannerplan.md).| ## Properties | Property | Type |Description| @@ -54,7 +53,6 @@ Represents a plan in Microsoft 365. Either a [group](group.md) or a [user](user. |:---------------|:--------|:----------| |buckets|[plannerBucket](plannerbucket.md) collection| Collection of buckets in the plan. Read-only. Nullable.| |details|[plannerPlanDetails](plannerplandetails.md)| Extra details about the plan. Read-only. Nullable. | -|historyItems|[plannerHistoryItem](plannerhistoryitem.md) collection| Collection of history items for entities in the plan. Read-only. Nullable. | |tasks|[plannerTask](plannertask.md) collection| Collection of tasks in the plan. Read-only. Nullable. | ## JSON representation diff --git a/api-reference/beta/resources/plannertaskdata.md b/api-reference/beta/resources/plannertaskdata.md deleted file mode 100644 index dce32908a3e..00000000000 --- a/api-reference/beta/resources/plannertaskdata.md +++ /dev/null @@ -1,105 +0,0 @@ ---- -title: "plannerTaskData resource type" -description: "Represents a snapshot of a planner task at a specific point in time." -author: "praspati" -ms.date: 05/15/2026 -ms.localizationpriority: medium -ms.subservice: "planner" -doc_type: resourcePageType ---- - -# plannerTaskData resource type - -Namespace: microsoft.graph - -[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] - -Represents a snapshot of a [planner task](../resources/plannertask.md) at a specific point in time. This resource is used in [taskHistoryItem](../resources/taskhistoryitem.md) to capture the state of a task before and after changes. - -## Properties -|Property|Type|Description| -|:---|:---|:---| -|activeChecklistItemCount|Int32|The number of incomplete checklist items whose value is set to `false`.| -|appliedCategories|[plannerAppliedCategories](../resources/plannerappliedcategories.md)|The categories to which the task is applied.| -|archivalInfo|[plannerArchivalInfo](../resources/plannerarchivalinfo.md)|Information about who archived or unarchived the task and why.| -|assignments|[plannerAssignments](../resources/plannerassignments.md)|The set of assignees the task is assigned to.| -|bucketId|String|Bucket ID to which the task belongs. The bucket needs to be in the same plan as the task.| -|checklistItemCount|Int32|The number of checklist items that are present on the task.| -|completedBy|[identitySet](../resources/identityset.md)|The identity of the user that completed the task.| -|completedDateTime|DateTimeOffset|The date and time at which the **percentComplete** of the task is set to `100`. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2024, is `2024-01-01T00:00:00Z`.| -|conversationThreadId|String|The thread ID of the conversation on the task that corresponds to the ID of the conversation thread object created in the group.| -|createdBy|[identitySet](../resources/identityset.md)|The identity of the user who created the task.| -|createdDateTime|DateTimeOffset|The date and time at which the task was created. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2024, is `2024-01-01T00:00:00Z`.| -|creationSource|[plannerTaskCreation](../resources/plannertaskcreation.md)|Information about the origin of the task.| -|details|[plannerTaskDetailsData](../resources/plannertaskdetailsdata.md)|Additional details about the task.| -|dueDateTime|DateTimeOffset|The date and time at which the task is due. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2024, is `2024-01-01T00:00:00Z`.| -|hasChat|Boolean|Set to `true` if the task has a chat associated with it; otherwise, `false`.| -|hasDescription|Boolean|Set to `true` if the details object of the task has a nonempty description; otherwise, `false`.| -|isArchived|Boolean|Set to `true` if the task is archived; otherwise, `false`.| -|orderHint|String|Hint used to order items of this type in a list view.| -|percentComplete|Int32|Percentage of task completion. When set to `100`, the task is considered completed.| -|previewType|plannerPreviewType|The type of preview that shows up on the task. The possible values are: `automatic`, `noPreview`, `checklist`, `description`, `reference`.| -|priority|Int32|The priority of the task. Valid values are between `0` and `10`, inclusive. Larger values indicate lower priority. For example, `0` has the highest priority and `10` has the lowest priority.| -|recurrence|[plannerTaskRecurrence](../resources/plannertaskrecurrence.md)|Defines active or inactive recurrence for the task. A `null` value indicates that the recurrence was never defined for the task.| -|referenceCount|Int32|Number of external references that exist on the task.| -|specifiedCompletionRequirements|plannerTaskCompletionRequirements|Indicates all the requirements specified on the task. The possible values are: `none`, `checklistCompletion`, `unknownFutureValue`, `formCompletion`, `approvalCompletion`, `completionInHostedApp`. Use the `Prefer: include-unknown-enum-members` request header to get the following values from this [evolvable enum](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations): `formCompletion` , `approvalCompletion` , `completionInHostedApp`.| -|startDateTime|DateTimeOffset|The date and time at which the task starts. The date and time information uses ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2021 is `2021-01-01T00:00:00Z`.| -|title|String|Title of the task.| - -## Relationships -None. - -## JSON representation -The following JSON representation shows the resource type. - -``` json -{ - "@odata.type": "#microsoft.graph.plannerTaskData", - "createdBy": { - "@odata.type": "microsoft.graph.identitySet" - }, - "bucketId": "String", - "isArchived": "Boolean", - "title": "String", - "orderHint": "String", - "percentComplete": "Int32", - "specifiedCompletionRequirements": "String", - "priority": "Int32", - "startDateTime": "String (timestamp)", - "createdDateTime": "String (timestamp)", - "dueDateTime": "String (timestamp)", - "hasDescription": "Boolean", - "hasChat": "Boolean", - "previewType": "String", - "completedDateTime": "String (timestamp)", - "completedBy": { - "@odata.type": "microsoft.graph.identitySet" - }, - "referenceCount": "Int32", - "checklistItemCount": "Int32", - "activeChecklistItemCount": "Int32", - "appliedCategories": { - "@odata.type": "microsoft.graph.plannerAppliedCategories" - }, - "assignments": { - "@odata.type": "microsoft.graph.plannerAssignments" - }, - "conversationThreadId": "String", - "creationSource": { - "@odata.type": "microsoft.graph.plannerTaskCreation" - }, - "recurrence": { - "@odata.type": "microsoft.graph.plannerTaskRecurrence" - }, - "archivalInfo": { - "@odata.type": "microsoft.graph.plannerArchivalInfo" - }, - "details": { - "@odata.type": "microsoft.graph.plannerTaskDetailsData" - } -} -``` diff --git a/api-reference/beta/resources/plannertaskdetailsdata.md b/api-reference/beta/resources/plannertaskdetailsdata.md deleted file mode 100644 index e82a3f44a66..00000000000 --- a/api-reference/beta/resources/plannertaskdetailsdata.md +++ /dev/null @@ -1,65 +0,0 @@ ---- -title: "plannerTaskDetailsData resource type" -description: "Represents a snapshot of additional details about a planner task at a specific point in time." -author: "praspati" -ms.date: 05/15/2026 -ms.localizationpriority: medium -ms.subservice: "planner" -doc_type: resourcePageType ---- - -# plannerTaskDetailsData resource type - -Namespace: microsoft.graph - -[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] - -Represents a snapshot of additional [details](../resources/plannertaskdetails.md) about a [planner task](../resources/plannertask.md) at a specific point in time. This resource is used in [plannerTaskData](../resources/plannertaskdata.md) to capture extended task information before and after changes. - -## Properties -|Property|Type|Description| -|:---|:---|:---| -|approvalAttachment|[plannerBaseApprovalAttachment](../resources/plannerbaseapprovalattachment.md)|Detailed information about the approval that is attached to the task.| -|checklist|[plannerChecklistItems](../resources/plannerchecklistitems.md)|The collection of checklist items on the task.| -|completionRequirements|[plannerTaskCompletionRequirementDetails](../resources/plannertaskcompletionrequirementdetails.md)|Contains detailed information about requirements on the task.| -|description|String|Description of the task.| -|forms|[plannerFormsDictionary](../resources/plannerformsdictionary.md)|The collection of forms associated with the task.| -|notes|[itemBody](../resources/itembody.md)|Rich text description of the task for use by applications that support HTML content.| -|previewType|plannerPreviewType|The type of preview that shows up on the task. The possible values are: `automatic`, `noPreview`, `checklist`, `description`, `reference`.| -|references|[plannerExternalReferences](../resources/plannerexternalreferences.md)|The collection of references on the task.| - -## Relationships -None. - -## JSON representation -The following JSON representation shows the resource type. - -``` json -{ - "@odata.type": "#microsoft.graph.plannerTaskDetailsData", - "description": "String", - "notes": { - "@odata.type": "microsoft.graph.itemBody" - }, - "previewType": "String", - "references": { - "@odata.type": "microsoft.graph.plannerExternalReferences" - }, - "checklist": { - "@odata.type": "microsoft.graph.plannerChecklistItems" - }, - "forms": { - "@odata.type": "microsoft.graph.plannerFormsDictionary" - }, - "completionRequirements": { - "@odata.type": "microsoft.graph.plannerTaskCompletionRequirementDetails" - }, - "approvalAttachment": { - "@odata.type": "microsoft.graph.plannerBaseApprovalAttachment" - } -} -``` diff --git a/api-reference/beta/resources/taskhistoryitem.md b/api-reference/beta/resources/taskhistoryitem.md deleted file mode 100644 index e0fc45566e3..00000000000 --- a/api-reference/beta/resources/taskhistoryitem.md +++ /dev/null @@ -1,70 +0,0 @@ ---- -title: "taskHistoryItem resource type" -description: "Represents a record of a change made to a task within a planner plan." -author: "praspati" -ms.date: 05/15/2026 -ms.localizationpriority: medium -ms.subservice: "planner" -doc_type: resourcePageType ---- - -# taskHistoryItem resource type - -Namespace: microsoft.graph - -[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] - -Represents a record of a change made to a task within a [planner plan](../resources/plannerplan.md). Use this resource to track the history of task modifications, including creation, updates, deletions, and moves. - -Inherits from [plannerHistoryItem](../resources/plannerhistoryitem.md). - -## Methods - -For the list of supported methods, see [plannerHistoryItem](../resources/plannerhistoryitem.md). - -## Properties -|Property|Type|Description| -|:---|:---|:---| -|actor|[identitySet](../resources/identityset.md)|The identity of the user or application that performed the change. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md).| -|entityId|String|The ID of the task that was changed. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md).| -|entityType|historyEntityType|The type of entity that was changed. The possible values are: `task`, `unknownFutureValue`. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md). | -|eventType|historyEventType|The type of change event that occurred. The possible values are: `created`, `updated`, `deleted`, `undeleted`, `moved`, `unknownFutureValue`. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md).| -|id|String|The unique identifier for the history item. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md).| -|newData|[plannerTaskData](../resources/plannertaskdata.md)|A snapshot of the task state after the change. This property is `null` for deletion events.| -|occurredDateTime|DateTimeOffset|The date and time when the change occurred. The date and time information uses ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2021 is `2021-01-01T00:00:00Z`. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md).| -|oldData|[plannerTaskData](../resources/plannertaskdata.md)|A snapshot of the task state before the change. This property is `null` for creation and undeletion events.| -|planId|String|The ID of the plan that contains the task. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md).| - -## Relationships -None. - -## JSON representation -The following JSON representation shows the resource type. - -``` json -{ - "@odata.type": "#microsoft.graph.taskHistoryItem", - "id": "String (identifier)", - "planId": "String", - "entityId": "String", - "entityType": "String", - "eventType": "String", - "occurredDateTime": "String (timestamp)", - "actor": { - "@odata.type": "microsoft.graph.identitySet" - }, - "oldData": { - "@odata.type": "microsoft.graph.plannerTaskData" - }, - "newData": { - "@odata.type": "microsoft.graph.plannerTaskData" - } -} -``` diff --git a/api-reference/beta/toc/tasks-and-plans/toc.yml b/api-reference/beta/toc/tasks-and-plans/toc.yml index 73b4c72c4e2..100c969e97a 100644 --- a/api-reference/beta/toc/tasks-and-plans/toc.yml +++ b/api-reference/beta/toc/tasks-and-plans/toc.yml @@ -30,8 +30,6 @@ items: href: ../../api/plannerplan-delta.md - name: Get usage rights href: ../../api/plannerplan-getusagerights.md - - name: List history items - href: ../../api/plannerplan-list-historyitems.md - name: Planner task items: - name: Planner task @@ -66,14 +64,6 @@ items: href: ../../api/plannerbucket-delete.md - name: Get delta href: ../../api/plannerbucket-delta.md -- name: Planner history item - items: - - name: Planner history item - href: ../../resources/plannerhistoryitem.md - - name: List - href: ../../api/plannerplan-list-historyitems.md - - name: Task history item - href: ../../resources/taskhistoryitem.md - name: Planner plan details items: - name: Planner plan details @@ -344,10 +334,6 @@ items: href: ../../resources/plannertaskcompletionrequirementdetails.md - name: Planner task creation href: ../../resources/plannertaskcreation.md - - name: Planner task data - href: ../../resources/plannertaskdata.md - - name: Planner task details data - href: ../../resources/plannertaskdetailsdata.md - name: Planner task property rule href: ../../resources/plannertaskpropertyrule.md - name: Planner task recurrence diff --git a/api-reference/beta/toc/toc.mapping.json b/api-reference/beta/toc/toc.mapping.json index c89ca4f3714..e3a8aabe50a 100644 --- a/api-reference/beta/toc/toc.mapping.json +++ b/api-reference/beta/toc/toc.mapping.json @@ -3362,7 +3362,6 @@ "plannerPlan", "plannerTask", "plannerBucket", - "plannerHistoryItem", "plannerPlanDetails", "plannerRoster", "plannerUser", @@ -3415,8 +3414,6 @@ "plannerTaskChatReaction", "plannerTaskChatReactionEvent", "plannerTaskCreation", - "plannerTaskData", - "plannerTaskDetailsData", "plannerTaskPropertyRule", "plannerTaskRecurrence", "plannerTeamsPublicationInfo", @@ -3447,12 +3444,6 @@ } ] }, - { - "name": "Planner history item", - "resources": [ - "taskHistoryItem" - ] - }, { "name": "Task formats", "resources": [ diff --git a/changelog/Microsoft.Office.Tasks.json b/changelog/Microsoft.Office.Tasks.json index 8761bced70d..aa96e4d836c 100644 --- a/changelog/Microsoft.Office.Tasks.json +++ b/changelog/Microsoft.Office.Tasks.json @@ -1,79 +1,5 @@ { "changelog": [ - { - "ChangeList": [ - { - "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", - "ApiChange": "Enumeration", - "ChangedApiName": "historyEntityType", - "ChangeType": "Addition", - "Description": "Added the **historyEntityType** enumeration type.", - "Target": "historyEntityType" - }, - { - "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", - "ApiChange": "Enumeration", - "ChangedApiName": "historyEventType", - "ChangeType": "Addition", - "Description": "Added the **historyEventType** enumeration type.", - "Target": "historyEventType" - }, - { - "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", - "ApiChange": "Member", - "ChangedApiName": "completionInHostedApp", - "ChangeType": "Addition", - "Description": "Added the `completionInHostedApp` member to the **plannerTaskCompletionRequirements** enumeration.", - "Target": "plannerTaskCompletionRequirements" - }, - { - "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", - "ApiChange": "Resource", - "ChangedApiName": "plannerTaskData", - "ChangeType": "Addition", - "Description": "Added the [plannerTaskData](https://learn.microsoft.com/en-us/graph/api/resources/plannerTaskData?view=graph-rest-beta) resource.", - "Target": "plannerTaskData" - }, - { - "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", - "ApiChange": "Resource", - "ChangedApiName": "plannerTaskDetailsData", - "ChangeType": "Addition", - "Description": "Added the [plannerTaskDetailsData](https://learn.microsoft.com/en-us/graph/api/resources/plannerTaskDetailsData?view=graph-rest-beta) resource.", - "Target": "plannerTaskDetailsData" - }, - { - "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", - "ApiChange": "Resource", - "ChangedApiName": "plannerHistoryItem", - "ChangeType": "Addition", - "Description": "Added the [plannerHistoryItem](https://learn.microsoft.com/en-us/graph/api/resources/plannerHistoryItem?view=graph-rest-beta) resource and an associated method.", - "Target": "plannerHistoryItem" - }, - { - "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", - "ApiChange": "Relationship", - "ChangedApiName": "historyItems", - "ChangeType": "Addition", - "Description": "Added the **historyItems** relationship to the [plannerPlan](https://learn.microsoft.com/en-us/graph/api/resources/plannerPlan?view=graph-rest-beta) resource.", - "Target": "plannerPlan" - }, - { - "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", - "ApiChange": "Resource", - "ChangedApiName": "taskHistoryItem", - "ChangeType": "Addition", - "Description": "Added the [taskHistoryItem](https://learn.microsoft.com/en-us/graph/api/resources/taskHistoryItem?view=graph-rest-beta) resource.", - "Target": "taskHistoryItem" - } - ], - "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", - "Cloud": "Prod", - "Version": "beta", - "CreatedDateTime": "2026-06-19T07:35:12.7210574Z", - "WorkloadArea": "Tasks and plans", - "SubArea": "" - }, { "ChangeList": [ { diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index a258a234e15..6b41d242b29 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -115,10 +115,6 @@ Added the [policyTipAction](/graph/api/resources/policytipaction?view=graph-rest Added the [sharePointReportSettings](/graph/api/resources/sharepointreportsettings?view=graph-rest-beta&preserve-view=true) resource type and related methods for managing SharePoint API usage report metrics. Use the [enableApiUsageReport](/graph/api/sharepointreportsettings-enableapiusagereport?view=graph-rest-beta&preserve-view=true) and [disableApiUsageReport](/graph/api/sharepointreportsettings-disableapiusagereport?view=graph-rest-beta&preserve-view=true) methods to control which metrics are collected and reported for your tenant. -### Tasks and plans - -Added support for tracking task history in Planner. Use the [plannerHistoryItem](/graph/api/resources/plannerhistoryitem?view=graph-rest-beta&preserve-view=true) resource and [List historyItems](/graph/api/plannerplan-list-historyitems?view=graph-rest-beta&preserve-view=true) method to retrieve the history of changes made to tasks within a plan. The [taskHistoryItem](/graph/api/resources/taskhistoryitem?view=graph-rest-beta&preserve-view=true) resource provides snapshots of task states before and after each change through [plannerTaskData](/graph/api/resources/plannertaskdata?view=graph-rest-beta&preserve-view=true) and [plannerTaskDetailsData](/graph/api/resources/plannertaskdetailsdata?view=graph-rest-beta&preserve-view=true). - ### Teamwork and communications | Calls and online meetings - Use the **isRegistrationRequired** property on the [virtualEventTownhall](/graph/api/resources/virtualeventtownhall?view=graph-rest-beta&preserve-view=true) and [virtualEventWebinar](/graph/api/resources/virtualeventwebinar?view=graph-rest-beta&preserve-view=true) resources to specify if attendees must complete the registration flow before they can attend. From 0883562d169722df947e6a2d25ecc69214e3d0f7 Mon Sep 17 00:00:00 2001 From: "Ch@ps" <61343268+Subham-RKB@users.noreply.github.com> Date: Tue, 23 Jun 2026 22:11:01 +0530 Subject: [PATCH 34/52] Enhanced Restore- Structured Artifact Query Document changes (#29018) * Enhanced Restore- Structured Artifact Query Document changes * Adding example * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Resolving copilot comments * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix enum JSON code block formatting * Fixed changelog issue. * Update restorepoint-search.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fix TOC complex type ordering * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: schapagain Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> --- api-reference/beta/api/restorepoint-search.md | 124 ++++++++++-------- api-reference/beta/resources/artifactquery.md | 8 +- .../beta/resources/granularrestoreitems.md | 46 +++++++ .../restoresearchartifactqueryexpression.md | 57 ++++++++ api-reference/beta/toc/toc.mapping.json | 3 +- changelog/Microsoft.EnhancedRestore.json | 42 ++++++ concepts/whats-new-overview.md | 3 +- 7 files changed, 225 insertions(+), 58 deletions(-) create mode 100644 api-reference/beta/resources/granularrestoreitems.md create mode 100644 api-reference/beta/resources/restoresearchartifactqueryexpression.md diff --git a/api-reference/beta/api/restorepoint-search.md b/api-reference/beta/api/restorepoint-search.md index 2432c846f86..f9b5937656f 100644 --- a/api-reference/beta/api/restorepoint-search.md +++ b/api-reference/beta/api/restorepoint-search.md @@ -80,7 +80,7 @@ For a list of possible error responses, see [Backup Storage API error responses] #### Request The following example shows a request. -# [HTTP](#tab/http) + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.context": "/solutions/backupRestore/$metadata#restorePoints", + "searchResponseId": "M2UyZDAwMDAwMDMxMzkzYTMyNj", + "searchResults": [ + { + "artifactHitCount": 26, + "restorePoint": { + "@odata.type": "#microsoft.graph.restorePoint", + "id": "1f1fccc3-a642-4f61-bf49-f37b9a888279", + "protectionDateTime": "2023-01-04T00:00:00Z", + "expirationDateTime": "2024-01-04T00:00:00Z", + "protectionUnit": { + "@odata.type": "#microsoft.graph.siteProtectionUnit", + "id": "23014d8c-71fe-4d00-a01a-31850bc5b42a", + "siteId": "344d9337-d8f0-456e-92cd-00a3abdd2093", + "policyId": "9fec8e78-bce4-4aaf-ab1b-5451cc387264" + }, + "tags": "fastRestore" + } + } + ] +} +``` -# [Java](#tab/java) -[!INCLUDE [sample-code](../includes/snippets/java/restorepoint-search-artifactquery-java-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] +### Example 3: Search with structuredQueryExpression -# [JavaScript](#tab/javascript) -[!INCLUDE [sample-code](../includes/snippets/javascript/restorepoint-search-artifactquery-javascript-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] +#### Request -# [PHP](#tab/php) -[!INCLUDE [sample-code](../includes/snippets/php/restorepoint-search-artifactquery-php-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] +The following example shows a request using the new structured query expression. -# [PowerShell](#tab/powershell) -[!INCLUDE [sample-code](../includes/snippets/powershell/restorepoint-search-artifactquery-powershell-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] + +```http +POST https://graph.microsoft.com/beta/solutions/backupRestore/restorePoints/search +Content-Type: application/json -# [Python](#tab/python) -[!INCLUDE [sample-code](../includes/snippets/python/restorepoint-search-artifactquery-python-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] +{ + "artifactQuery": { + "structuredQueryExpression": { + "senders": ["abc@contoso.com"], + "subjects": ["Check email", "Important"], + "hasAttachment": true, + "items": ["email"] + } + }, + "protectionUnitIds": ["23014d8c-71fe-4d00-a01a-31850bc5b42a"], + "protectionTimePeriod": { + "startDateTime": "2021-01-01T00:00:00Z", + "endDateTime": "2021-01-30T00:00:00Z" + }, + "restorePointPreference": "oldest" +} +``` --- @@ -285,9 +301,9 @@ Content-Type: application/json "protectionDateTime": "2023-01-04T00:00:00Z", "expirationDateTime": "2024-01-04T00:00:00Z", "protectionUnit": { - "@odata.type": "#microsoft.graph.siteProtectionUnit", + "@odata.type": "#microsoft.graph.mailboxProtectionUnit", "id": "23014d8c-71fe-4d00-a01a-31850bc5b42a", - "siteId": "344d9337-d8f0-456e-92cd-00a3abdd2093", + "userId": "344d9337-d8f0-456e-92cd-00a3abdd2093", "policyId": "9fec8e78-bce4-4aaf-ab1b-5451cc387264" }, "tags": "fastRestore" diff --git a/api-reference/beta/resources/artifactquery.md b/api-reference/beta/resources/artifactquery.md index 410ebe4ac7b..5d187475905 100644 --- a/api-reference/beta/resources/artifactquery.md +++ b/api-reference/beta/resources/artifactquery.md @@ -20,7 +20,8 @@ Contains an expression that specifies the criteria for search. For more informat |Property|Type|Description| |:---|:---|:---| |artifactType|[restorableArtifact](../resources/artifactquery.md#restorableartifact-values)|The type of artifact to search. The possible values are: `message`, `unknownFutureValue`.| -|queryExpression|String|Specifies criteria to retrieve artifacts.| +|structuredQueryExpression|[restoreSearchArtifactQueryExpression](../resources/restoresearchartifactqueryexpression.md)|Contains a structured query expression for searching artifacts.| +|queryExpression (deprecated)|String|Deprecated. Going forward, use the **structuredQueryExpression** property instead. Specifies criteria to retrieve artifacts.| ### restorableArtifact values @@ -43,7 +44,10 @@ The following JSON representation shows the resource type. { "@odata.type": "#microsoft.graph.artifactQuery", "queryExpression": "String", - "artifactType": "String" + "artifactType": "String", + "structuredQueryExpression": { + "@odata.type": "#microsoft.graph.restoreSearchArtifactQueryExpression" + } } ``` diff --git a/api-reference/beta/resources/granularrestoreitems.md b/api-reference/beta/resources/granularrestoreitems.md new file mode 100644 index 00000000000..b9a22a6c485 --- /dev/null +++ b/api-reference/beta/resources/granularrestoreitems.md @@ -0,0 +1,46 @@ +--- +title: "granularRestoreItems enum type" +description: "Indicates the type of granular restore items that can be searched and restored." +author: "schapagain" +ms.date: 06/05/2026 +ms.localizationpriority: medium +ms.subservice: "m365-backup-storage" +doc_type: enumPageType +--- + +# granularRestoreItems enum type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Indicates the type of granular restore items that can be searched and restored from backup. + +## Members + +The following table lists the members of an [evolvable enumeration](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations). + +| Member | Description | +|:---|:---| +| email | Email message item. | +| note | Note item. | +| contact | Contact item. | +| task | Task item. | +| calendar | Calendar item. | +| unknownFutureValue | Evolvable enumeration sentinel value. Don't use. | + +## JSON representation + +The following JSON representation shows the resource type. + + + +```json +{ + "@odata.type": "#microsoft.graph.granularRestoreItems" +} +``` diff --git a/api-reference/beta/resources/restoresearchartifactqueryexpression.md b/api-reference/beta/resources/restoresearchartifactqueryexpression.md new file mode 100644 index 00000000000..a23a731f0e6 --- /dev/null +++ b/api-reference/beta/resources/restoresearchartifactqueryexpression.md @@ -0,0 +1,57 @@ +--- +title: "restoreSearchArtifactQueryExpression resource type" +description: "Represents a structured query expression for searching artifacts in restore operations." +author: "schapagain" +ms.date: 06/05/2026 +ms.localizationpriority: medium +ms.subservice: "m365-backup-storage" +doc_type: resourcePageType +--- + +# restoreSearchArtifactQueryExpression resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a structured query expression for searching artifacts in restore operations. This resource provides a type-safe way to construct search queries for backup artifacts. + +All properties are optional and can be combined to create more specific search queries. + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|hasAttachment|Boolean|Indicates whether the artifact has an attachment. Optional.| +|items|[granularRestoreItems](../resources/granularrestoreitems.md) collection|The types of items to include in the search. Optional.| +|recipients|String collection|The recipient email addresses to filter by. Optional.| +|senders|String collection|The sender email addresses to filter by. Optional.| +|subjects|String collection|The subject lines to filter by. Optional.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.restoreSearchArtifactQueryExpression", + "recipients": [ + "String" + ], + "senders": [ + "String" + ], + "subjects": [ + "String" + ], + "items": [ + "String" + ], + "hasAttachment": "Boolean" +} +``` diff --git a/api-reference/beta/toc/toc.mapping.json b/api-reference/beta/toc/toc.mapping.json index e3a8aabe50a..962a0472610 100644 --- a/api-reference/beta/toc/toc.mapping.json +++ b/api-reference/beta/toc/toc.mapping.json @@ -306,9 +306,10 @@ "browseQueryResponseItem", "notificationRecipients", "protectionPolicyArtifactCount", + "retentionSetting", "restorePointSearchResponse", "restorePointSearchResult", - "retentionSetting", + "restoreSearchArtifactQueryExpression", "serviceStatus", "timePeriod" ] diff --git a/changelog/Microsoft.EnhancedRestore.json b/changelog/Microsoft.EnhancedRestore.json index a9aecf4095a..64c60090c2f 100644 --- a/changelog/Microsoft.EnhancedRestore.json +++ b/changelog/Microsoft.EnhancedRestore.json @@ -1,6 +1,48 @@ { "changelog": [ { + "ChangeList": [ + { + "Id": "42f3dd5e-5a3f-4a28-8b51-f8f49e9018d6", + "ApiChange": "Enumeration", + "ChangedApiName": "granularRestoreItems", + "ChangeType": "Addition", + "Description": "Added the **granularRestoreItems** enumeration type.", + "Target": "granularRestoreItems" + }, + { + "Id": "42f3dd5e-5a3f-4a28-8b51-f8f49e9018d6", + "ApiChange": "Property", + "ChangedApiName": "queryExpression", + "ChangeType": "Deprecation", + "Description": "Deprecated the **queryExpression** property of the [artifactQuery](https://learn.microsoft.com/en-us/graph/api/resources/artifactquery?view=graph-rest-beta) resource. Use the **structuredQueryExpression** property instead.", + "Target": "artifactQuery" + }, + { + "Id": "42f3dd5e-5a3f-4a28-8b51-f8f49e9018d6", + "ApiChange": "Property", + "ChangedApiName": "structuredQueryExpression", + "ChangeType": "Addition", + "Description": "Added the **structuredQueryExpression** property to the [artifactQuery](https://learn.microsoft.com/en-us/graph/api/resources/artifactquery?view=graph-rest-beta) resource.", + "Target": "artifactQuery" + }, + { + "Id": "42f3dd5e-5a3f-4a28-8b51-f8f49e9018d6", + "ApiChange": "Resource", + "ChangedApiName": "restoreSearchArtifactQueryExpression", + "ChangeType": "Addition", + "Description": "Added the [restoreSearchArtifactQueryExpression](https://learn.microsoft.com/en-us/graph/api/resources/restoresearchartifactqueryexpression?view=graph-rest-beta) resource.", + "Target": "restoreSearchArtifactQueryExpression" + } + ], + "Id": "42f3dd5e-5a3f-4a28-8b51-f8f49e9018d6", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-23T09:52:03.5646538Z", + "WorkloadArea": "Backup and recovery", + "SubArea": "Microsoft 365 backup and storage" + }, + { "ChangeList": [ { "Id": "d3dee94f-3c8b-475f-9aaf-b1a94b873b46", diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index 6b41d242b29..9ddb7cdea24 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -65,7 +65,8 @@ Added the **appRoleAssignmentRequired** property to the [agentIdentity](/graph/a ### Backup storage -Use the new full workload backup APIs to protect entire Microsoft 365 workloads (SharePoint Online, OneDrive for work or school, and Exchange Online) with minimal administrative overhead. Instead of manually selecting each item to protect, you can create a protection policy that backs up all data in a workload and then specify only the items to exclude from backup. For more information, see [exclusionUnitBase](/graph/api/resources/exclusionunitbase?view=graph-rest-beta&preserve-view=true) and [exclusionUnitBulkAdditionJob](/graph/api/resources/exclusionunitbulkadditionjob?view=graph-rest-beta&preserve-view=true). +- Added support for full workload backup APIs to protect entire Microsoft 365 workloads (SharePoint Online, OneDrive for work or school, and Exchange Online) with minimal administrative overhead. Create a protection policy that backs up all data in a workload and specify only the items to exclude from backup. For more information, see [exclusionUnitBase](/graph/api/resources/exclusionunitbase?view=graph-rest-beta&preserve-view=true). +- Deprecated the **queryExpression** property on the [artifactQuery](/graph/api/resources/artifactquery?view=graph-rest-beta&preserve-view=true) resource. Use the **structuredQueryExpression** property instead to create structured search queries. ### Device and app management | Cloud PC From 77ecbc10b43d4aba99964f9208e880e010c45ff4 Mon Sep 17 00:00:00 2001 From: ireneren0123 Date: Tue, 23 Jun 2026 18:03:16 -0700 Subject: [PATCH 35/52] reportRoot: getSharePointApiUsage API documentation (#28658) * Add SharePoint API usage report to beta getSharePointApiUsage doc Fix API Doctor validation in examples: set truncated:true on JSON examples 4-5 (strict @odata.type requirement) and use a single appId in the filter example (comma-separated values break the function-param parser). * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update changelog/Microsoft.FileServices.json Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update getSharePointApiUsage doc and whats-new entries Fix request/response metadata blocks, refresh sample dates, reorganize whats-new sections, and correct changelog CreatedDateTime. * fix comment Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update getSharePointApiUsage doc and FileServices changelog * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * address comments * address comments * fix invalid links Updated the description of the getSharePointApiUsage method in the changelog. * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Irene Ren Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --- .../api/reportroot-getsharepointapiusage.md | 525 ++++++++++++++++++ ...troot-getsharepointapiusage-permissions.md | 11 + api-reference/beta/resources/reportroot.md | 6 + .../resources/sharepointapiusagedatapoint.md | 61 ++ .../resources/sharepointapiusagereport.md | 52 ++ api-reference/beta/toc/toc.mapping.json | 4 +- changelog/Microsoft.FileServices.json | 34 ++ concepts/whats-new-overview.md | 4 + 8 files changed, 696 insertions(+), 1 deletion(-) create mode 100644 api-reference/beta/api/reportroot-getsharepointapiusage.md create mode 100644 api-reference/beta/includes/permissions/reportroot-getsharepointapiusage-permissions.md create mode 100644 api-reference/beta/resources/sharepointapiusagedatapoint.md create mode 100644 api-reference/beta/resources/sharepointapiusagereport.md diff --git a/api-reference/beta/api/reportroot-getsharepointapiusage.md b/api-reference/beta/api/reportroot-getsharepointapiusage.md new file mode 100644 index 00000000000..786d9b903be --- /dev/null +++ b/api-reference/beta/api/reportroot-getsharepointapiusage.md @@ -0,0 +1,525 @@ +--- +title: "reportRoot: getSharePointApiUsage" +description: "Retrieve OneDrive and SharePoint API usage metrics for a tenant." +author: "ireneren" +ms.localizationpriority: medium +ms.subservice: "reports" +doc_type: apiPageType +ms.date: 06/19/2026 +--- + +# reportRoot: getSharePointApiUsage + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Get aggregated usage data for all applications in a tenant. This API retrieves usage data by predefined period or by specific date (you may specify a period or a date, but not both). The response format differs by content type: JSON returns a structured format with separate `summary` and `details` properties, while CSV returns a flat structure with the summary as the first data row. + +The API supports two query patterns: + +- **Period-based**: Get usage for the last N days (`D1`, `D7`, or `D30`). +- **Date-based**: Get usage for a specific date. + +Results can be optionally filtered by application ID(s). Data is returned in CSV format by default, or JSON format when explicitly requested via the `$format` query parameter. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/reportroot-getsharepointapiusage-permissions.md)] + +## HTTP request + + +``` http +GET /reports/getSharePointApiUsage(period='{period_value}') +GET /reports/getSharePointApiUsage(date={date_value}) +GET /reports/getSharePointApiUsage(period='{period_value}',appId='{appId_value}') +GET /reports/getSharePointApiUsage(date={date_value},appId='{appId_value}') +GET /reports/getSharePointApiUsage(period='{period_value}')?$format={format} +``` + +## Function parameters + +In the request URL, provide the following parameters with values. + +| Parameter | Type | Description | +|:----------|:-----------------|:----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| +| appId | String | Optional. A comma-separated list of application GUIDs to filter results. When specified, only detail rows for the specified applications are returned and the summary row is excluded. | +| date | Date | Required if **period** isn't specified. Specifies the date for the report. Accepts `YYYY-MM-DD` format (for example, `2026-02-05`). Can't be used with **period**. Can't be a future date. | +| period | String | Required if **date** isn't specified. Specifies the length of time over which the report is aggregated. The supported values are: `D1`, `D7`, `D30`. Can't be used with **date**. | + +## Optional query parameters + +This method supports the `$format`, `$skip`, and `$top` [OData query parameters](/graph/query-parameters) to customize the response. + +| Parameter | Type | Description | +|:-----------|:-------|:---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| +| `$format` | String | The response format. Supported values: `csv`, `text/csv`, `json`, `application/json`. Default: `text/csv`. | +| `$skip` | Int32 | JSON only. The number of items to skip for pagination. Not supported with CSV format. | +| `$top` | Int32 | JSON only. The number of items to return per page. Not supported with CSV format. | + +## Request headers + +| Name | Description | +|:--------------|:------------------------------------------------------------------------------------------------------| +| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts). | + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and usage data in the requested format. + +If no usage data is available for the specified period or date, this method returns a `204 No Content` response with an empty response body. + +### CSV format + +If successful with CSV format, this method returns a `200 OK` response with content type `text/csv`. The CSV data is returned directly in the response body. + +> **Note:** Unlike most other Microsoft Graph reports APIs that return a `302 Found` redirect to a preauthenticated download URL, this API returns the CSV data directly in the response body with a `200 OK` response. + +The CSV file has the following column headers: + +`UsageDateTime,ServiceArea,TenantId,AppId,UsageMB,UsageRequests,ActiveApps` + +The first data row is a summary row with **ActiveApps** populated and **AppId** empty. Subsequent rows are per-app, per-date details with **AppId** populated and **ActiveApps** empty. Data points are ordered by **UsageDateTime** descending (most recent first). + +### JSON format + +If successful with JSON format, this method returns a structured object with `summary` and `details` properties. The `summary` contains aggregated totals, and `details` contains an array of per-application, per-date details. The `summary` is `null` when an `appId` filter is specified. The `details` array supports pagination via `$skip` and `$top` query parameters. + +## Examples + +### Example 1: Get usage for last 7 days (CSV format, default) + +#### Request + +The following example shows a request. + + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(period='D7')?$format=text/csv +``` + +#### Response + +The following example shows the response. + + +``` http +HTTP/1.1 200 OK +Content-Type: text/csv + +UsageDateTime,ServiceArea,TenantId,AppId,UsageMB,UsageRequests,ActiveApps +2026-02-04T00:00:00Z,OneDrive and SharePoint,12345678-1234-1234-1234-123456789abc,,128000,15000,5 +2026-02-04T00:00:00Z,OneDrive and SharePoint,12345678-1234-1234-1234-123456789abc,00000003-0000-0ff1-ce00-000000000000,82000,8500, +2026-02-04T00:00:00Z,OneDrive and SharePoint,12345678-1234-1234-1234-123456789abc,ab9b8c07-8f02-4f72-87fa-80105867a763,46000,4500, +2026-02-03T00:00:00Z,OneDrive and SharePoint,12345678-1234-1234-1234-123456789abc,00000003-0000-0ff1-ce00-000000000000,75000,7000, +2026-02-03T00:00:00Z,OneDrive and SharePoint,12345678-1234-1234-1234-123456789abc,ab9b8c07-8f02-4f72-87fa-80105867a763,38000,3500, +``` + +### Example 2: Get usage for a specific date (JSON format) + +#### Request + +The following example shows a request. + + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(date=2026-02-04)?$format=application/json +``` + +#### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "summary": { + "usageDateTime": "2026-02-04T00:00:00Z", + "serviceArea": "OneDrive and SharePoint", + "tenantId": "12345678-1234-1234-1234-123456789abc", + "appId": null, + "usageMB": 128000, + "usageRequests": 15000, + "activeApps": 5 + }, + "details": [ + { + "usageDateTime": "2026-02-04T00:00:00Z", + "serviceArea": "OneDrive and SharePoint", + "tenantId": "12345678-1234-1234-1234-123456789abc", + "appId": "00000003-0000-0ff1-ce00-000000000000", + "usageMB": 82000, + "usageRequests": 8500, + "activeApps": null + }, + { + "usageDateTime": "2026-02-04T00:00:00Z", + "serviceArea": "OneDrive and SharePoint", + "tenantId": "12345678-1234-1234-1234-123456789abc", + "appId": "ab9b8c07-8f02-4f72-87fa-80105867a763", + "usageMB": 46000, + "usageRequests": 4500, + "activeApps": null + } + ] +} +``` + +### Example 3: Filter by application ID + +#### Request + +The following example shows a request. + + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(period='D7',appId='75b613ff-af8b-48bb-b872-e06048ccf8ea')?$format=text/csv +``` + +#### Response + +The following example shows the response. + + +``` http +HTTP/1.1 200 OK +Content-Type: text/csv + +UsageDateTime,ServiceArea,TenantId,AppId,UsageMB,UsageRequests,ActiveApps +2025-08-28T00:00:00Z,OneDrive and SharePoint,12345678-1234-1234-1234-123456789abc,75b613ff-af8b-48bb-b872-e06048ccf8ea,2432,1500, +``` + +### Example 4: Get JSON response + +#### Request + +The following example shows a request. + + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(period='D7')?$format=application/json +``` + +#### Response + +The following example shows the response. + + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "summary": { + "usageDateTime": "2026-02-04T00:00:00Z", + "serviceArea": "OneDrive and SharePoint", + "tenantId": "12345678-1234-1234-1234-123456789abc", + "appId": null, + "usageMB": 128000, + "usageRequests": 15000, + "activeApps": 5 + }, + "details": [ + { + "usageDateTime": "2026-02-04T00:00:00Z", + "serviceArea": "OneDrive and SharePoint", + "tenantId": "12345678-1234-1234-1234-123456789abc", + "appId": "00000003-0000-0ff1-ce00-000000000000", + "usageMB": 82000, + "usageRequests": 8500, + "activeApps": null + }, + { + "usageDateTime": "2026-02-04T00:00:00Z", + "serviceArea": "OneDrive and SharePoint", + "tenantId": "12345678-1234-1234-1234-123456789abc", + "appId": "ab9b8c07-8f02-4f72-87fa-80105867a763", + "usageMB": 46000, + "usageRequests": 4500, + "activeApps": null + } + ] +} +``` + +> **Note:** JSON format returns a structured object with `summary` containing aggregated totals and `details` containing per-application details. The `details` array supports pagination via `$skip` and `$top` query parameters. + +### Example 5: Get JSON response with appId filter + +#### Request + +The following example shows a request. + + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(period='D7',appId='00000003-0000-0ff1-ce00-000000000000')?$format=application/json +``` + +#### Response + +The following example shows the response. + + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "summary": null, + "details": [ + { + "usageDateTime": "2026-02-04T00:00:00Z", + "serviceArea": "OneDrive and SharePoint", + "tenantId": "12345678-1234-1234-1234-123456789abc", + "appId": "00000003-0000-0ff1-ce00-000000000000", + "usageMB": 82000, + "usageRequests": 8500, + "activeApps": null + }, + { + "usageDateTime": "2026-02-03T00:00:00Z", + "serviceArea": "OneDrive and SharePoint", + "tenantId": "12345678-1234-1234-1234-123456789abc", + "appId": "00000003-0000-0ff1-ce00-000000000000", + "usageMB": 75000, + "usageRequests": 7000, + "activeApps": null + } + ] +} +``` + +> **Note:** When an `appId` filter is specified, the `summary` property is `null` and only filtered detail rows appear in the `details` array. + + +### Example 6: No data available + +#### Request + +The following example shows a request. + + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(date=2026-02-01) +``` + +#### Response + +The following example shows the response. + + +``` http +HTTP/1.1 204 No Content +``` + +### Example 7: Error - Missing both parameters + +#### Request + +The following example shows a request. + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage +``` + +#### Response + +The following example shows the response. + +```http +HTTP/1.1 400 Bad Request +Content-Type: application/json + +{ + "error": { + "code": "invalidRequest", + "message": "Either 'period' OR 'date' parameter must be provided." + } +} +``` + +### Example 8: Error - Both parameters provided + +#### Request + +The following example shows a request. + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(period='D7',date=2026-02-01) +``` + +#### Response + +The following example shows the response. + +```http +HTTP/1.1 400 Bad Request +Content-Type: application/json + +{ + "error": { + "code": "invalidRequest", + "message": "Cannot specify both 'period' and 'date' parameters. Provide only one." + } +} +``` + +### Example 9: Error - Invalid period + +#### Request + +The following example shows a request. + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(period='D90') +``` + +#### Response + +The following example shows the response. + +```http +HTTP/1.1 400 Bad Request +Content-Type: application/json + +{ + "error": { + "code": "invalidRequest", + "message": "Invalid period 'D90'. Allowed values: D1, D7, D30." + } +} +``` + +### Example 10: Error - Tenant not onboarded for preview + +#### Request + +The following example shows a request. + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(period='D7') +``` + +#### Response + +The following example shows the response. + +```http +HTTP/1.1 403 Forbidden +Content-Type: application/json + +{ + "error": { + "code": "accessDenied", + "message": "Tenant {tenantId} is not enabled for this preview feature." + } +} +``` diff --git a/api-reference/beta/includes/permissions/reportroot-getsharepointapiusage-permissions.md b/api-reference/beta/includes/permissions/reportroot-getsharepointapiusage-permissions.md new file mode 100644 index 00000000000..4d37c8e2bf4 --- /dev/null +++ b/api-reference/beta/includes/permissions/reportroot-getsharepointapiusage-permissions.md @@ -0,0 +1,11 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|Reports.Read.All|Not available.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|Not supported.|Not supported.| diff --git a/api-reference/beta/resources/reportroot.md b/api-reference/beta/resources/reportroot.md index d381c800310..5733a7260f6 100644 --- a/api-reference/beta/resources/reportroot.md +++ b/api-reference/beta/resources/reportroot.md @@ -214,6 +214,12 @@ For details about report views and names, see [Microsoft 365 reports - SharePoin | [Get storage](../api/reportroot-getsharepointsiteusagestorage.md) | Stream | Get the trend of storage allocated and consumed during the reporting period. | | [Get pages](../api/reportroot-getsharepointsiteusagepages.md) | Stream | Get the number of pages viewed across all sites. | +### SharePoint API usage + +| Method | Return type | Description | +| :----------------------------------------------------------------------------------------- | :---------- | :------------------------------------------------------------------------------------ | +| [Get SharePoint API usage](../api/reportroot-getsharepointapiusage.md) | Stream | Get aggregated OneDrive and SharePoint API usage metrics for a tenant. | + ### Skype for Business activity For details about report views and names, see [Skype for Business activity](/skypeforbusiness/skype-for-business-online-reporting/activity-report). diff --git a/api-reference/beta/resources/sharepointapiusagedatapoint.md b/api-reference/beta/resources/sharepointapiusagedatapoint.md new file mode 100644 index 00000000000..03a36ab6edd --- /dev/null +++ b/api-reference/beta/resources/sharepointapiusagedatapoint.md @@ -0,0 +1,61 @@ +--- +title: "sharePointApiUsageDataPoint resource type" +description: "Represents a single data point in a SharePoint Online API usage report." +author: "ireneren" +ms.localizationpriority: medium +ms.subservice: "reports" +doc_type: resourcePageType +ms.date: 03/16/2026 +--- + +# sharePointApiUsageDataPoint resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a single data point in a OneDrive and SharePoint API usage report. Each data point can be either a summary row or a detail row: + +- **Summary row**: Aggregated usage across all applications for a date or period. The **appId** is `null` and **activeApps** is populated. +- **Detail row**: Usage for a specific application on a specific date. The **appId** is populated and **activeApps** is `null`. + +Data points in detail rows are ordered by **usageDateTime** descending (most recent first). + +## Properties + +| Property | Type | Description | +|:--------------|:---------------|:-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| +| activeApps | Int32 | The number of distinct applications with usage during the reporting period. Summary rows: populated with the count of active applications. Detail rows: `null`. Read-only. | +| appId | String | The unique identifier (GUID) for the application. Summary rows: `null`. Detail rows: the application GUID. Read-only. | +| serviceArea | String | The service area name. Always `OneDrive and SharePoint` for SharePoint API usage reports. Read-only. | +| tenantId | String | The unique identifier (GUID) for the tenant. Read-only. | +| usageDateTime | DateTimeOffset | The date and time for this data point in ISO 8601 format. For summary rows, this is the most recent date in the reporting period. For detail rows, this is the specific date for the usage data. Read-only. | +| usageMB | Int64 | Total usage in megabytes (MB) for this data point. Summary rows: total aggregated usage across all applications for the reporting period. Detail rows: usage for the specific application on the specific date. Read-only. | +| usageRequests | Int64 | The number of API requests. Summary rows: total requests across all applications. Detail rows: requests for the specific application on the specific date. Read-only. | + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.sharePointApiUsageDataPoint", + "activeApps": "Int32", + "appId": "String", + "serviceArea": "String", + "tenantId": "String", + "usageDateTime": "String (timestamp)", + "usageMB": "Int64", + "usageRequests": "Int64" +} +``` diff --git a/api-reference/beta/resources/sharepointapiusagereport.md b/api-reference/beta/resources/sharepointapiusagereport.md new file mode 100644 index 00000000000..a6118e0a08c --- /dev/null +++ b/api-reference/beta/resources/sharepointapiusagereport.md @@ -0,0 +1,52 @@ +--- +title: "sharePointApiUsageReport resource type" +description: "Represents aggregated SharePoint Online tenant usage data containing a collection of usage data points." +author: "ireneren" +ms.localizationpriority: medium +ms.subservice: "reports" +doc_type: resourcePageType +ms.date: 03/16/2026 +--- + +# sharePointApiUsageReport resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents aggregated OneDrive and SharePoint API usage data for a tenant. The report contains a summary aggregating usage across all applications and details showing per-application usage. + +## Properties + +| Property | Type | Description | +|:---------|:----------------------------------------------------------------------------------------|:---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| +| details | [sharePointApiUsageDataPoint](../resources/sharepointapiusagedatapoint.md) collection | The collection of per-application, per-date usage data points. Each item represents usage for a specific application on a specific date. | +| summary | [sharePointApiUsageDataPoint](../resources/sharepointapiusagedatapoint.md) | The aggregated summary of usage across all applications for the specified period or date. The **appId** is `null` and **activeApps** contains the count of distinct applications. | + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.sharePointApiUsageReport", + "summary": { + "@odata.type": "microsoft.graph.sharePointApiUsageDataPoint" + }, + "details": [ + { + "@odata.type": "microsoft.graph.sharePointApiUsageDataPoint" + } + ] +} +``` diff --git a/api-reference/beta/toc/toc.mapping.json b/api-reference/beta/toc/toc.mapping.json index 962a0472610..05269afd8c7 100644 --- a/api-reference/beta/toc/toc.mapping.json +++ b/api-reference/beta/toc/toc.mapping.json @@ -2816,7 +2816,9 @@ "office365GroupsActivityFileCounts", "office365GroupsActivityGroupCounts", "office365GroupsActivityStorage", - "office365ServicesUserCounts" + "office365ServicesUserCounts", + "sharePointApiUsageDataPoint", + "sharePointApiUsageReport" ] }, { diff --git a/changelog/Microsoft.FileServices.json b/changelog/Microsoft.FileServices.json index 10a041e6ebe..f402db0aaf3 100644 --- a/changelog/Microsoft.FileServices.json +++ b/changelog/Microsoft.FileServices.json @@ -1,5 +1,39 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "37d03d43-f372-4979-9a1d-6a56e2d28f84", + "ApiChange": "Resource", + "ChangedApiName": "sharePointApiUsageDataPoint", + "ChangeType": "Addition", + "Description": "Added the [sharePointApiUsageDataPoint](https://learn.microsoft.com/en-us/graph/api/resources/sharepointapiusagedatapoint?view=graph-rest-beta) resource.", + "Target": "sharePointApiUsageDataPoint" + }, + { + "Id": "37d03d43-f372-4979-9a1d-6a56e2d28f84", + "ApiChange": "Resource", + "ChangedApiName": "sharePointApiUsageReport", + "ChangeType": "Addition", + "Description": "Added the [sharePointApiUsageReport](https://learn.microsoft.com/en-us/graph/api/resources/sharepointapiusagereport?view=graph-rest-beta) resource.", + "Target": "sharePointApiUsageReport" + }, + { + "Id": "37d03d43-f372-4979-9a1d-6a56e2d28f84", + "ApiChange": "Method", + "ChangedApiName": "getSharePointApiUsage", + "ChangeType": "Addition", + "Description": "Added the [getSharePointApiUsage](https://learn.microsoft.com/en-us/graph/api/reportroot-getsharepointapiusage?view=graph-rest-beta) method to the **reportRoot** resource.", + "Target": "reportRoot" + } + ], + "Id": "37d03d43-f372-4979-9a1d-6a56e2d28f84", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-23T01:49:53.4116791Z", + "WorkloadArea": "Files", + "SubArea": "" + }, { "ChangeList": [ { diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index 9ddb7cdea24..cd681a5e5f0 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -28,6 +28,10 @@ Evaluate applications in the Microsoft Entra application gallery by using the [a [Upsert](/graph/api/filestoragecontainer-patch-permissions) (create or update) up to 40 permissions on a [fileStorageContainer](/graph/api/resources/filestoragecontainer) in a single request. The limit increased from 10 to 40 [permission](/graph/api/resources/permission) objects per request. +### Files | Reports + +Added the [getSharePointApiUsage](/graph/api/reportroot-getsharepointapiusage?view=graph-rest-beta&preserve-view=true) method to the [reportRoot](/graph/api/resources/reportroot?view=graph-rest-beta&preserve-view=true) resource to retrieve aggregated OneDrive and SharePoint API usage metrics for a tenant. + ### Identity and access | Governance - Added the **type** property to the [accessPackageResourceRole](/graph/api/resources/accesspackageresourcerole) resource to indicate whether an Azure resource role is active or eligible, enabling PIM-based role assignments for Azure resources in access packages. From e072cb1900bc4e674b701ce2636c3d0e75984c28 Mon Sep 17 00:00:00 2001 From: "snippet-gen-pull-automation[bot]" <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Date: Wed, 24 Jun 2026 12:46:37 +0300 Subject: [PATCH 36/52] Update generated permissions tables with build 224438 (#29151) Co-authored-by: Microsoft Graph DevX Tooling --- .../beta/api/reportroot-getsharepointapiusage.md | 6 +----- api-reference/beta/api/security-detectionrule-get.md | 6 +----- .../beta/api/security-detectionrule-update.md | 6 +----- .../api/security-rulesroot-delete-detectionrules.md | 6 +----- .../api/security-rulesroot-list-detectionrules.md | 6 +----- .../api/security-rulesroot-post-detectionrules.md | 6 +----- .../reportroot-getsharepointapiusage-permissions.md | 1 + .../security-detectionrule-delete-permissions.md | 12 ------------ .../security-detectionrule-list-permissions.md | 12 ------------ ...-detectionrule-post-detectionrules-permissions.md | 12 ------------ ...ty-rulesroot-delete-detectionrules-permissions.md | 1 + ...rity-rulesroot-list-detectionrules-permissions.md | 1 + ...rity-rulesroot-post-detectionrules-permissions.md | 1 + 13 files changed, 10 insertions(+), 66 deletions(-) delete mode 100644 api-reference/beta/includes/permissions/security-detectionrule-delete-permissions.md delete mode 100644 api-reference/beta/includes/permissions/security-detectionrule-list-permissions.md delete mode 100644 api-reference/beta/includes/permissions/security-detectionrule-post-detectionrules-permissions.md diff --git a/api-reference/beta/api/reportroot-getsharepointapiusage.md b/api-reference/beta/api/reportroot-getsharepointapiusage.md index 786d9b903be..5a34d78b83b 100644 --- a/api-reference/beta/api/reportroot-getsharepointapiusage.md +++ b/api-reference/beta/api/reportroot-getsharepointapiusage.md @@ -27,11 +27,7 @@ Results can be optionally filtered by application ID(s). Data is returned in CSV Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/reportroot-getsharepointapiusage-permissions.md)] ## HTTP request diff --git a/api-reference/beta/api/security-detectionrule-get.md b/api-reference/beta/api/security-detectionrule-get.md index 2a57d96d620..f5d53805ba1 100644 --- a/api-reference/beta/api/security-detectionrule-get.md +++ b/api-reference/beta/api/security-detectionrule-get.md @@ -22,11 +22,7 @@ With custom detections, you can proactively monitor for and respond to various e Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-detectionrule-get-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-read](../includes/rbac-for-apis/rbac-security-detection-rules-apis-read.md)] diff --git a/api-reference/beta/api/security-detectionrule-update.md b/api-reference/beta/api/security-detectionrule-update.md index 708a2a79747..600cbcd4c0c 100644 --- a/api-reference/beta/api/security-detectionrule-update.md +++ b/api-reference/beta/api/security-detectionrule-update.md @@ -20,11 +20,7 @@ Update the properties of a [detectionRule](../resources/security-detectionrule.m Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-detectionrule-update-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-write](../includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md)] diff --git a/api-reference/beta/api/security-rulesroot-delete-detectionrules.md b/api-reference/beta/api/security-rulesroot-delete-detectionrules.md index 4eeaa0ce221..4810f77f064 100644 --- a/api-reference/beta/api/security-rulesroot-delete-detectionrules.md +++ b/api-reference/beta/api/security-rulesroot-delete-detectionrules.md @@ -20,11 +20,7 @@ Delete a [detectionRule](../resources/security-detectionrule.md) object. Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-rulesroot-delete-detectionrules-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-write](../includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md)] diff --git a/api-reference/beta/api/security-rulesroot-list-detectionrules.md b/api-reference/beta/api/security-rulesroot-list-detectionrules.md index 1fe31893bbc..9f0844735ca 100644 --- a/api-reference/beta/api/security-rulesroot-list-detectionrules.md +++ b/api-reference/beta/api/security-rulesroot-list-detectionrules.md @@ -20,11 +20,7 @@ Get a list of [detectionRule](../resources/security-detectionrule.md) objects an Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-rulesroot-list-detectionrules-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-read](../includes/rbac-for-apis/rbac-security-detection-rules-apis-read.md)] diff --git a/api-reference/beta/api/security-rulesroot-post-detectionrules.md b/api-reference/beta/api/security-rulesroot-post-detectionrules.md index 594de081b76..007e7e953ef 100644 --- a/api-reference/beta/api/security-rulesroot-post-detectionrules.md +++ b/api-reference/beta/api/security-rulesroot-post-detectionrules.md @@ -20,11 +20,7 @@ Create a new [detectionRule](../resources/security-detectionrule.md) object. Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-rulesroot-post-detectionrules-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-write](../includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md)] diff --git a/api-reference/beta/includes/permissions/reportroot-getsharepointapiusage-permissions.md b/api-reference/beta/includes/permissions/reportroot-getsharepointapiusage-permissions.md index 4d37c8e2bf4..109a1ca3f64 100644 --- a/api-reference/beta/includes/permissions/reportroot-getsharepointapiusage-permissions.md +++ b/api-reference/beta/includes/permissions/reportroot-getsharepointapiusage-permissions.md @@ -9,3 +9,4 @@ ms.localizationpriority: medium |Delegated (work or school account)|Reports.Read.All|Not available.| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|Not supported.|Not supported.| + diff --git a/api-reference/beta/includes/permissions/security-detectionrule-delete-permissions.md b/api-reference/beta/includes/permissions/security-detectionrule-delete-permissions.md deleted file mode 100644 index 9a1a69542be..00000000000 --- a/api-reference/beta/includes/permissions/security-detectionrule-delete-permissions.md +++ /dev/null @@ -1,12 +0,0 @@ ---- -description: "Automatically generated file. DO NOT MODIFY" -ms.topic: include -ms.localizationpriority: medium ---- - -|Permission type|Least privileged permissions|Higher privileged permissions| -|:---|:---|:---| -|Delegated (work or school account)|CustomDetection.ReadWrite.All|Not available.| -|Delegated (personal Microsoft account)|Not supported.|Not supported.| -|Application|CustomDetection.ReadWrite.All|Not available.| - diff --git a/api-reference/beta/includes/permissions/security-detectionrule-list-permissions.md b/api-reference/beta/includes/permissions/security-detectionrule-list-permissions.md deleted file mode 100644 index 7e882632185..00000000000 --- a/api-reference/beta/includes/permissions/security-detectionrule-list-permissions.md +++ /dev/null @@ -1,12 +0,0 @@ ---- -description: "Automatically generated file. DO NOT MODIFY" -ms.topic: include -ms.localizationpriority: medium ---- - -|Permission type|Least privileged permissions|Higher privileged permissions| -|:---|:---|:---| -|Delegated (work or school account)|CustomDetection.Read.All|CustomDetection.ReadWrite.All| -|Delegated (personal Microsoft account)|Not supported.|Not supported.| -|Application|CustomDetection.Read.All|CustomDetection.ReadWrite.All| - diff --git a/api-reference/beta/includes/permissions/security-detectionrule-post-detectionrules-permissions.md b/api-reference/beta/includes/permissions/security-detectionrule-post-detectionrules-permissions.md deleted file mode 100644 index 9a1a69542be..00000000000 --- a/api-reference/beta/includes/permissions/security-detectionrule-post-detectionrules-permissions.md +++ /dev/null @@ -1,12 +0,0 @@ ---- -description: "Automatically generated file. DO NOT MODIFY" -ms.topic: include -ms.localizationpriority: medium ---- - -|Permission type|Least privileged permissions|Higher privileged permissions| -|:---|:---|:---| -|Delegated (work or school account)|CustomDetection.ReadWrite.All|Not available.| -|Delegated (personal Microsoft account)|Not supported.|Not supported.| -|Application|CustomDetection.ReadWrite.All|Not available.| - diff --git a/api-reference/beta/includes/permissions/security-rulesroot-delete-detectionrules-permissions.md b/api-reference/beta/includes/permissions/security-rulesroot-delete-detectionrules-permissions.md index 09905b20ce8..9a1a69542be 100644 --- a/api-reference/beta/includes/permissions/security-rulesroot-delete-detectionrules-permissions.md +++ b/api-reference/beta/includes/permissions/security-rulesroot-delete-detectionrules-permissions.md @@ -9,3 +9,4 @@ ms.localizationpriority: medium |Delegated (work or school account)|CustomDetection.ReadWrite.All|Not available.| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|CustomDetection.ReadWrite.All|Not available.| + diff --git a/api-reference/beta/includes/permissions/security-rulesroot-list-detectionrules-permissions.md b/api-reference/beta/includes/permissions/security-rulesroot-list-detectionrules-permissions.md index ce584032b88..7e882632185 100644 --- a/api-reference/beta/includes/permissions/security-rulesroot-list-detectionrules-permissions.md +++ b/api-reference/beta/includes/permissions/security-rulesroot-list-detectionrules-permissions.md @@ -9,3 +9,4 @@ ms.localizationpriority: medium |Delegated (work or school account)|CustomDetection.Read.All|CustomDetection.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|CustomDetection.Read.All|CustomDetection.ReadWrite.All| + diff --git a/api-reference/beta/includes/permissions/security-rulesroot-post-detectionrules-permissions.md b/api-reference/beta/includes/permissions/security-rulesroot-post-detectionrules-permissions.md index 09905b20ce8..9a1a69542be 100644 --- a/api-reference/beta/includes/permissions/security-rulesroot-post-detectionrules-permissions.md +++ b/api-reference/beta/includes/permissions/security-rulesroot-post-detectionrules-permissions.md @@ -9,3 +9,4 @@ ms.localizationpriority: medium |Delegated (work or school account)|CustomDetection.ReadWrite.All|Not available.| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|CustomDetection.ReadWrite.All|Not available.| + From 4fa73ff115e5f3abe6a0f05771b85fd2c3864aab Mon Sep 17 00:00:00 2001 From: Nnachtomy Date: Wed, 24 Jun 2026 13:52:12 +0300 Subject: [PATCH 37/52] Add getHuntingSchema API documentation (beta) (#28923) * Add getHuntingSchema API documentation for beta Add API reference and resource type documentation for the new security.getHuntingSchema function in Microsoft Defender XDR. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * fix: reorder Properties table alphabetically in security-huntingschemasavedfunction.md Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/5bd4707a-884e-4377-a34b-56c5319d654b Co-authored-by: Nnachtomy <258772109+Nnachtomy@users.noreply.github.com> * fix: reorder huntingschematable properties alphabetically Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/57c19e12-c979-4821-a78c-d32e9773a9d6 Co-authored-by: Nnachtomy <258772109+Nnachtomy@users.noreply.github.com> * Reorder huntingSchemaFunctionParameter properties alphabetically Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/28913e21-1ea7-4ad0-89cf-59ab7cefb07c Co-authored-by: Nnachtomy <258772109+Nnachtomy@users.noreply.github.com> * fix: reorder huntingSchemaResult properties alphabetically Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/4928ddfa-2026-4d75-9389-ff06df60a757 Co-authored-by: Nnachtomy <258772109+Nnachtomy@users.noreply.github.com> * Fix: inline permissions table to resolve include-not-found build error Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add May 2026 preview What's New entry for getHuntingSchema Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/10112a86-a3ed-44f0-88d4-ce15b09d5ca2 Co-authored-by: Nnachtomy <258772109+Nnachtomy@users.noreply.github.com> * Fix huntingSchemaBuiltInFunction property ordering Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/65d811d2-e53d-4d6a-928e-7883e65d016f Co-authored-by: Nnachtomy <258772109+Nnachtomy@users.noreply.github.com> * Address review feedback from FaithOmbongi - Surface getHuntingSchema in security resource Methods table - Add admin roles requirement after permissions block - Add Function parameters section (no OData params supported) - Restore schema-style JSON representation in resource topics - Reorder properties alphabetically (TableColumn, BuiltInFunction) - Reset changelog file (don't edit existing records) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Fix: remove duplicate opening brace in huntingSchemaBuiltInFunction JSON Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Add autogenerated changelog entry; link parent security resource in whats-new * Restore permissions table to standard format * Add autogenerated permissions include file * Fix permissions include link + Upgrade RBAC note * Apply suggestion from @FaithOmbongi * Normalize lowercase changelog URL paths --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Nnachtomy <258772109+Nnachtomy@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi --- .../api/security-security-gethuntingschema.md | 183 ++++++++++++++++++ ...y-security-gethuntingschema-permissions.md | 12 ++ .../security-huntingschemabuiltinfunction.md | 51 +++++ ...security-huntingschemafunctionparameter.md | 45 +++++ .../security-huntingschemafunctions.md | 43 ++++ .../resources/security-huntingschemaresult.md | 43 ++++ .../security-huntingschemasavedfunction.md | 57 ++++++ .../resources/security-huntingschematable.md | 45 +++++ .../security-huntingschematablecolumn.md | 45 +++++ api-reference/beta/resources/security.md | 1 + changelog/Microsoft.M365.Defender.json | 108 +++++++++-- concepts/whats-new-overview.md | 4 + 12 files changed, 620 insertions(+), 17 deletions(-) create mode 100644 api-reference/beta/api/security-security-gethuntingschema.md create mode 100644 api-reference/beta/includes/permissions/security-security-gethuntingschema-permissions.md create mode 100644 api-reference/beta/resources/security-huntingschemabuiltinfunction.md create mode 100644 api-reference/beta/resources/security-huntingschemafunctionparameter.md create mode 100644 api-reference/beta/resources/security-huntingschemafunctions.md create mode 100644 api-reference/beta/resources/security-huntingschemaresult.md create mode 100644 api-reference/beta/resources/security-huntingschemasavedfunction.md create mode 100644 api-reference/beta/resources/security-huntingschematable.md create mode 100644 api-reference/beta/resources/security-huntingschematablecolumn.md diff --git a/api-reference/beta/api/security-security-gethuntingschema.md b/api-reference/beta/api/security-security-gethuntingschema.md new file mode 100644 index 00000000000..2f6d737e889 --- /dev/null +++ b/api-reference/beta/api/security-security-gethuntingschema.md @@ -0,0 +1,183 @@ +--- +title: "security: getHuntingSchema" +description: "Retrieve the advanced hunting schema accessible to the signed-in user." +author: "nitzanfrogel" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: apiPageType +ms.date: 05/13/2026 +--- + +# security: getHuntingSchema + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Retrieve the advanced hunting schema accessible to the signed-in user, including the tables and functions the user is authorized to query and invoke in [advanced hunting](/microsoft-365/security/defender/advanced-hunting-overview?view=o365-worldwide&preserve-view=true) with Microsoft Defender XDR. + +The returned schema reflects the user's effective permissions. Each user within a tenant may have a different effective schema depending on their role and access level. + +Common use cases include: + +- **Preventing unauthorized queries**: Determine which tables and functions a user can access before executing Kusto queries, reducing the risk of authorization failures. +- **Permission-aware query generation**: Enable applications and tools to construct queries dynamically based on the user's effective schema. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/security-security-gethuntingschema-permissions.md)] + +>[!IMPORTANT] +> The signed-in user must also be assigned a [Microsoft Defender XDR Unified RBAC role](/microsoft-365/security/defender/manage-rbac) that grants permission to run advanced hunting queries, or one of the following Microsoft Entra ID roles which provide only the least privilege necessary: **Security Reader**, **Security Operator**, **Security Administrator**. + +## HTTP request + + +```http +GET /security/getHuntingSchema +``` + +## Function parameters + +This method doesn't support any OData query parameters to customize the response. + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this function returns a `200 OK` response code and a [huntingSchemaResult](../resources/security-huntingschemaresult.md) in the response body. + +## Examples + +### Request + + +```http +GET https://graph.microsoft.com/beta/security/getHuntingSchema +``` + +### Response + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "tables": [ + { + "name": "DeviceProcessEvents", + "description": "Process creation and related events", + "columns": [ + { + "name": "Timestamp", + "dataType": "DateTime", + "description": "Date and time when the record was generated" + }, + { + "name": "DeviceId", + "dataType": "String", + "description": "Unique identifier for the device in the service" + }, + { + "name": "DeviceName", + "dataType": "String", + "description": "Fully qualified domain name (FQDN) of the device" + } + ] + }, + { + "name": "DeviceNetworkEvents", + "description": "Network connection and related events", + "columns": [ + { + "name": "Timestamp", + "dataType": "DateTime", + "description": "Date and time when the record was generated" + }, + { + "name": "DeviceId", + "dataType": "String", + "description": "Unique identifier for the device in the service" + } + ] + } + ], + "functions": { + "builtInFunctions": [ + { + "huntingFunctionId": 1, + "name": "FileProfile", + "path": "Built-in", + "documentation": "Enriches query results with file information such as file name, size, and hash.", + "inputParameters": [ + { + "name": "SHA1", + "cslType": "string", + "defaultValue": null + } + ], + "outputColumns": [ + { + "name": "SHA1", + "dataType": "String", + "description": "SHA-1 hash of the file" + }, + { + "name": "SHA256", + "dataType": "String", + "description": "SHA-256 hash of the file" + } + ] + } + ], + "savedFunctions": [ + { + "huntingFunctionId": 100, + "name": "MyCustomQuery", + "path": "Shared", + "description": "A custom query that filters device events by severity.", + "createdBy": "user@contoso.com", + "lastModifiedBy": "user@contoso.com", + "lastModifiedDateTime": "2026-04-15T10:30:00Z", + "inputParameters": [], + "outputColumns": [ + { + "name": "DeviceId", + "dataType": "String", + "description": "Unique identifier for the device" + } + ] + } + ] + } +} +``` + diff --git a/api-reference/beta/includes/permissions/security-security-gethuntingschema-permissions.md b/api-reference/beta/includes/permissions/security-security-gethuntingschema-permissions.md new file mode 100644 index 00000000000..3d624b2ee2d --- /dev/null +++ b/api-reference/beta/includes/permissions/security-security-gethuntingschema-permissions.md @@ -0,0 +1,12 @@ +--- +description: Automatically generated file. DO NOT MODIFY +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permission|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|Not supported.|Not supported.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|Not supported.|Not supported.| + diff --git a/api-reference/beta/resources/security-huntingschemabuiltinfunction.md b/api-reference/beta/resources/security-huntingschemabuiltinfunction.md new file mode 100644 index 00000000000..4d6b1639374 --- /dev/null +++ b/api-reference/beta/resources/security-huntingschemabuiltinfunction.md @@ -0,0 +1,51 @@ +--- +title: "huntingSchemaBuiltInFunction resource type" +description: "Represents a prebuilt function included with Microsoft Defender XDR advanced hunting." +author: "nitzanfrogel" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/13/2026 +--- + +# huntingSchemaBuiltInFunction resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a prebuilt function included with Microsoft Defender XDR advanced hunting. Built-in functions are available to all advanced hunting instances and can't be modified by users. Part of the [huntingSchemaFunctions](../resources/security-huntingschemafunctions.md) returned by the [getHuntingSchema](../api/security-security-gethuntingschema.md) function. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|documentation|String|Description of the function and its usage.| +|huntingFunctionId|Int64|Unique identifier for the function. Required.| +|inputParameters|[microsoft.graph.security.huntingSchemaFunctionParameter](../resources/security-huntingschemafunctionparameter.md) collection|Collection of input parameters accepted by the function.| +|name|String|Name of the function. Required.| +|outputColumns|[microsoft.graph.security.huntingSchemaTableColumn](../resources/security-huntingschematablecolumn.md) collection|Collection of columns returned by the function.| +|path|String|Folder path of the function.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "documentation": "String", + "huntingFunctionId": "Int64", + "inputParameters": [{"@odata.type": "microsoft.graph.security.huntingSchemaFunctionParameter"}], + "name": "String", + "outputColumns": [{"@odata.type": "microsoft.graph.security.huntingSchemaTableColumn"}], + "path": "String" +} +``` diff --git a/api-reference/beta/resources/security-huntingschemafunctionparameter.md b/api-reference/beta/resources/security-huntingschemafunctionparameter.md new file mode 100644 index 00000000000..ec647632414 --- /dev/null +++ b/api-reference/beta/resources/security-huntingschemafunctionparameter.md @@ -0,0 +1,45 @@ +--- +title: "huntingSchemaFunctionParameter resource type" +description: "Represents an input parameter for an advanced hunting function." +author: "nitzanfrogel" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/13/2026 +--- + +# huntingSchemaFunctionParameter resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents an input parameter for an advanced hunting function. Parameters allow callers to provide arguments when invoking a function. Used by both [huntingSchemaBuiltInFunction](../resources/security-huntingschemabuiltinfunction.md) and [huntingSchemaSavedFunction](../resources/security-huntingschemasavedfunction.md) resource types. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|cslType|String|Data type of the parameter in Kusto Query Language (KQL) CSL format. Required.| +|defaultValue|String|Default value used when the caller doesn't provide a value for this parameter.| +|name|String|Name of the parameter. Required.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "cslType": "String", + "defaultValue": "String", + "name": "String" +} +``` diff --git a/api-reference/beta/resources/security-huntingschemafunctions.md b/api-reference/beta/resources/security-huntingschemafunctions.md new file mode 100644 index 00000000000..c85c694c193 --- /dev/null +++ b/api-reference/beta/resources/security-huntingschemafunctions.md @@ -0,0 +1,43 @@ +--- +title: "huntingSchemaFunctions resource type" +description: "Contains the two categories of advanced hunting functions accessible to the user: built-in functions and saved functions." +author: "nitzanfrogel" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/13/2026 +--- + +# huntingSchemaFunctions resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Contains the two categories of advanced hunting functions accessible to the user: built-in functions and saved functions. Part of the [huntingSchemaResult](../resources/security-huntingschemaresult.md) returned by the [getHuntingSchema](../api/security-security-gethuntingschema.md) function. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|builtInFunctions|[microsoft.graph.security.huntingSchemaBuiltInFunction](../resources/security-huntingschemabuiltinfunction.md) collection|Prebuilt functions included with Microsoft Defender XDR advanced hunting.| +|savedFunctions|[microsoft.graph.security.huntingSchemaSavedFunction](../resources/security-huntingschemasavedfunction.md) collection|Custom functions created by users, including shared functions accessible to all tenant users and personal functions visible only to their creator.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "builtInFunctions": [{"@odata.type": "microsoft.graph.security.huntingSchemaBuiltInFunction"}], + "savedFunctions": [{"@odata.type": "microsoft.graph.security.huntingSchemaSavedFunction"}] +} +``` diff --git a/api-reference/beta/resources/security-huntingschemaresult.md b/api-reference/beta/resources/security-huntingschemaresult.md new file mode 100644 index 00000000000..3cb4ebd00fc --- /dev/null +++ b/api-reference/beta/resources/security-huntingschemaresult.md @@ -0,0 +1,43 @@ +--- +title: "huntingSchemaResult resource type" +description: "Contains the advanced hunting schema accessible to the signed-in user, including tables and functions." +author: "nitzanfrogel" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/13/2026 +--- + +# huntingSchemaResult resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Contains the advanced hunting schema accessible to the signed-in user, including tables and functions. Returned by the [getHuntingSchema](../api/security-security-gethuntingschema.md) function. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|functions|[microsoft.graph.security.huntingSchemaFunctions](../resources/security-huntingschemafunctions.md)|Object containing the built-in functions and saved functions available to the user.| +|tables|[microsoft.graph.security.huntingSchemaTable](../resources/security-huntingschematable.md) collection|Collection of advanced hunting tables the user is authorized to query.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "tables": [{"@odata.type": "microsoft.graph.security.huntingSchemaTable"}], + "functions": {"@odata.type": "microsoft.graph.security.huntingSchemaFunctions"} +} +``` diff --git a/api-reference/beta/resources/security-huntingschemasavedfunction.md b/api-reference/beta/resources/security-huntingschemasavedfunction.md new file mode 100644 index 00000000000..592715a394d --- /dev/null +++ b/api-reference/beta/resources/security-huntingschemasavedfunction.md @@ -0,0 +1,57 @@ +--- +title: "huntingSchemaSavedFunction resource type" +description: "Represents a custom function created by a user in advanced hunting." +author: "nitzanfrogel" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/13/2026 +--- + +# huntingSchemaSavedFunction resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a custom function created by a user in advanced hunting. Custom functions allow users to save reusable query logic that can be invoked in other queries. Includes both shared functions accessible to all tenant users and personal functions visible only to their creator. Part of the [huntingSchemaFunctions](../resources/security-huntingschemafunctions.md) returned by the [getHuntingSchema](../api/security-security-gethuntingschema.md) function. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|createdBy|String|Identity of the user who created the function.| +|description|String|Description of the function purpose and usage.| +|huntingFunctionId|Int64|Unique identifier for the function. Required.| +|inputParameters|[microsoft.graph.security.huntingSchemaFunctionParameter](../resources/security-huntingschemafunctionparameter.md) collection|Collection of input parameters accepted by the function.| +|lastModifiedBy|String|Identity of the user who last modified the function.| +|lastModifiedDateTime|DateTimeOffset|Date and time when the function was last modified.| +|name|String|Name of the function. Required.| +|outputColumns|[microsoft.graph.security.huntingSchemaTableColumn](../resources/security-huntingschematablecolumn.md) collection|Collection of columns returned by the function.| +|path|String|Folder path where the function is saved.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "createdBy": "String", + "description": "String", + "huntingFunctionId": "Int64", + "inputParameters": [{"@odata.type": "microsoft.graph.security.huntingSchemaFunctionParameter"}], + "lastModifiedBy": "String", + "lastModifiedDateTime": "String (timestamp)", + "name": "String", + "outputColumns": [{"@odata.type": "microsoft.graph.security.huntingSchemaTableColumn"}], + "path": "String" +} +``` diff --git a/api-reference/beta/resources/security-huntingschematable.md b/api-reference/beta/resources/security-huntingschematable.md new file mode 100644 index 00000000000..a6a09188ece --- /dev/null +++ b/api-reference/beta/resources/security-huntingschematable.md @@ -0,0 +1,45 @@ +--- +title: "huntingSchemaTable resource type" +description: "Represents an advanced hunting table accessible to the user." +author: "nitzanfrogel" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/13/2026 +--- + +# huntingSchemaTable resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents an advanced hunting table accessible to the user. Part of the [huntingSchemaResult](../resources/security-huntingschemaresult.md) returned by the [getHuntingSchema](../api/security-security-gethuntingschema.md) function. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|columns|[microsoft.graph.security.huntingSchemaTableColumn](../resources/security-huntingschematablecolumn.md) collection|Collection of columns in the table with their data types.| +|description|String|Description of what data the table contains.| +|name|String|Name of the table. Required.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "name": "String", + "description": "String", + "columns": [{"@odata.type": "microsoft.graph.security.huntingSchemaTableColumn"}] +} +``` diff --git a/api-reference/beta/resources/security-huntingschematablecolumn.md b/api-reference/beta/resources/security-huntingschematablecolumn.md new file mode 100644 index 00000000000..fec535a9794 --- /dev/null +++ b/api-reference/beta/resources/security-huntingschematablecolumn.md @@ -0,0 +1,45 @@ +--- +title: "huntingSchemaTableColumn resource type" +description: "Represents a column in an advanced hunting table." +author: "nitzanfrogel" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/13/2026 +--- + +# huntingSchemaTableColumn resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a column in an advanced hunting table. Part of the [huntingSchemaTable](../resources/security-huntingschematable.md) returned by the [getHuntingSchema](../api/security-security-gethuntingschema.md) function. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|dataType|String|Data type of the column (for example, `DateTime`, `String`). Required.| +|description|String|Description of the column.| +|name|String|Name of the column. Required.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "dataType": "String", + "description": "String", + "name": "String" +} +``` diff --git a/api-reference/beta/resources/security.md b/api-reference/beta/resources/security.md index dcfe88765c9..f3838755992 100644 --- a/api-reference/beta/resources/security.md +++ b/api-reference/beta/resources/security.md @@ -20,6 +20,7 @@ Connects Microsoft security products, services, and partners to streamline secur |Method|Return type|Description| |:---|:---|:---| |[Run hunting query](../api/security-security-runhuntingquery.md)|[microsoft.graph.security.huntingQueryResults](../resources/security-huntingqueryresults.md)|Queries a specified set of event, activity, or entity data supported by Microsoft 365 Defender to proactively look for specific threats in your environment.| +|[Get hunting schema](../api/security-security-gethuntingschema.md)|[microsoft.graph.security.huntingSchemaResult](../resources/security-huntingschemaresult.md)|Retrieves the advanced hunting schema accessible to the signed-in user, including the tables and functions the user is authorized to query and invoke.| ## Properties None. diff --git a/changelog/Microsoft.M365.Defender.json b/changelog/Microsoft.M365.Defender.json index d1a9b3fffe7..53a34d631eb 100644 --- a/changelog/Microsoft.M365.Defender.json +++ b/changelog/Microsoft.M365.Defender.json @@ -750,6 +750,80 @@ "WorkloadArea": "Security", "SubArea": "Alerts and incidents" }, + { + "ChangeList": [ + { + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "ApiChange": "Method", + "ChangedApiName": "getHuntingSchema", + "ChangeType": "Addition", + "Description": "Added the [getHuntingSchema](https://learn.microsoft.com/en-us/graph/api/security-security-gethuntingschema?view=graph-rest-beta) method to the [security](https://learn.microsoft.com/en-us/graph/api/resources/security?view=graph-rest-beta) resource.", + "Target": "security" + }, + { + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "ApiChange": "Resource", + "ChangedApiName": "huntingSchemaResult", + "ChangeType": "Addition", + "Description": "Added the [huntingSchemaResult](https://learn.microsoft.com/en-us/graph/api/resources/security-huntingschemaresult?view=graph-rest-beta) resource.", + "Target": "huntingSchemaResult" + }, + { + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "ApiChange": "Resource", + "ChangedApiName": "huntingSchemaTable", + "ChangeType": "Addition", + "Description": "Added the [huntingSchemaTable](https://learn.microsoft.com/en-us/graph/api/resources/security-huntingschematable?view=graph-rest-beta) resource.", + "Target": "huntingSchemaTable" + }, + { + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "ApiChange": "Resource", + "ChangedApiName": "huntingSchemaTableColumn", + "ChangeType": "Addition", + "Description": "Added the [huntingSchemaTableColumn](https://learn.microsoft.com/en-us/graph/api/resources/security-huntingschematablecolumn?view=graph-rest-beta) resource.", + "Target": "huntingSchemaTableColumn" + }, + { + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "ApiChange": "Resource", + "ChangedApiName": "huntingSchemaFunctions", + "ChangeType": "Addition", + "Description": "Added the [huntingSchemaFunctions](https://learn.microsoft.com/en-us/graph/api/resources/security-huntingschemafunctions?view=graph-rest-beta) resource.", + "Target": "huntingSchemaFunctions" + }, + { + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "ApiChange": "Resource", + "ChangedApiName": "huntingSchemaBuiltInFunction", + "ChangeType": "Addition", + "Description": "Added the [huntingSchemaBuiltInFunction](https://learn.microsoft.com/en-us/graph/api/resources/security-huntingschemabuiltinfunction?view=graph-rest-beta) resource.", + "Target": "huntingSchemaBuiltInFunction" + }, + { + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "ApiChange": "Resource", + "ChangedApiName": "huntingSchemaSavedFunction", + "ChangeType": "Addition", + "Description": "Added the [huntingSchemaSavedFunction](https://learn.microsoft.com/en-us/graph/api/resources/security-huntingschemasavedfunction?view=graph-rest-beta) resource.", + "Target": "huntingSchemaSavedFunction" + }, + { + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "ApiChange": "Resource", + "ChangedApiName": "huntingSchemaFunctionParameter", + "ChangeType": "Addition", + "Description": "Added the [huntingSchemaFunctionParameter](https://learn.microsoft.com/en-us/graph/api/resources/security-huntingschemafunctionparameter?view=graph-rest-beta) resource.", + "Target": "huntingSchemaFunctionParameter" + } + ], + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-24T11:05:11.5465777Z", + "WorkloadArea": "Security", + "SubArea": "Advanced hunting" + }, { "ChangeList": [ { @@ -4353,7 +4427,7 @@ "ApiChange": "Resource", "ChangedApiName": "sensorCandidate", "ChangeType": "Addition", - "Description": "Added the [sensorCandidate](https://learn.microsoft.com/en-us/graph/api/resources/security-sensorCandidate?view=graph-rest-beta) resource.", + "Description": "Added the [sensorCandidate](https://learn.microsoft.com/en-us/graph/api/resources/security-sensorcandidate?view=graph-rest-beta) resource.", "Target": "sensorCandidate" }, { @@ -4361,7 +4435,7 @@ "ApiChange": "Resource", "ChangedApiName": "sensorCandidateActivationConfiguration", "ChangeType": "Addition", - "Description": "Added the [sensorCandidateActivationConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/security-sensorCandidateActivationConfiguration?view=graph-rest-beta) resource.", + "Description": "Added the [sensorCandidateActivationConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/security-sensorcandidateactivationconfiguration?view=graph-rest-beta) resource.", "Target": "sensorCandidateActivationConfiguration" }, { @@ -4369,7 +4443,7 @@ "ApiChange": "Method", "ChangedApiName": "activate", "ChangeType": "Addition", - "Description": "Added the [activate](https://learn.microsoft.com/en-us/graph/api/security-sensorCandidate-activate?view=graph-rest-beta) method to the [sensorCandidate](https://learn.microsoft.com/en-us/graph/api/resources/security-sensorCandidate?view=graph-rest-beta) resource.", + "Description": "Added the [activate](https://learn.microsoft.com/en-us/graph/api/security-sensorcandidate-activate?view=graph-rest-beta) method to the [sensorCandidate](https://learn.microsoft.com/en-us/graph/api/resources/security-sensorcandidate?view=graph-rest-beta) resource.", "Target": "sensorCandidate" } ], @@ -4447,7 +4521,7 @@ "ApiChange": "Resource", "ChangedApiName": "aiAgentEvidence", "ChangeType": "Addition", - "Description": "Added the [aiAgentEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-aiAgentEvidence?view=graph-rest-beta) resource type.", + "Description": "Added the [aiAgentEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-aiagentevidence?view=graph-rest-beta) resource type.", "Target": "aiAgentEvidence" } ], @@ -4473,7 +4547,7 @@ "ApiChange": "Resource", "ChangedApiName": "aiAgentEvidence", "ChangeType": "Addition", - "Description": "Added the [aiAgentEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-aiAgentEvidence?view=graph-rest-1.0) resource type.", + "Description": "Added the [aiAgentEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-aiagentevidence?view=graph-rest-1.0) resource type.", "Target": "aiAgentEvidence" } ], @@ -4491,7 +4565,7 @@ "ApiChange": "Resource", "ChangedApiName": "activeDirectoryDomainEvidence", "ChangeType": "Addition", - "Description": "Added the [activeDirectoryDomainEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-activeDirectoryDomainEvidence?view=graph-rest-1.0) resource.", + "Description": "Added the [activeDirectoryDomainEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-activedirectorydomainevidence?view=graph-rest-1.0) resource.", "Target": "activeDirectoryDomainEvidence" }, { @@ -4499,7 +4573,7 @@ "ApiChange": "Property", "ChangedApiName": "resourceAccessEvents", "ChangeType": "Addition", - "Description": "Added the **resourceAccessEvents** property to the [deviceEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-deviceEvidence?view=graph-rest-1.0) resource.", + "Description": "Added the **resourceAccessEvents** property to the [deviceEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-deviceevidence?view=graph-rest-1.0) resource.", "Target": "deviceEvidence" }, { @@ -4507,7 +4581,7 @@ "ApiChange": "Resource", "ChangedApiName": "mailboxConfigurationEvidence", "ChangeType": "Addition", - "Description": "Added the [mailboxConfigurationEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-mailboxConfigurationEvidence?view=graph-rest-1.0) resource.", + "Description": "Added the [mailboxConfigurationEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-mailboxconfigurationevidence?view=graph-rest-1.0) resource.", "Target": "mailboxConfigurationEvidence" }, { @@ -4533,7 +4607,7 @@ "ApiChange": "Property", "ChangedApiName": "resourceAccessEvents", "ChangeType": "Addition", - "Description": "Added the **resourceAccessEvents** property to the [deviceEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-deviceEvidence?view=graph-rest-beta) resource.", + "Description": "Added the **resourceAccessEvents** property to the [deviceEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-deviceevidence?view=graph-rest-beta) resource.", "Target": "deviceEvidence" }, { @@ -4541,7 +4615,7 @@ "ApiChange": "Resource", "ChangedApiName": "mailboxConfigurationEvidence", "ChangeType": "Addition", - "Description": "Added the [mailboxConfigurationEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-mailboxConfigurationEvidence?view=graph-rest-beta) resource.", + "Description": "Added the [mailboxConfigurationEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-mailboxconfigurationevidence?view=graph-rest-beta) resource.", "Target": "mailboxConfigurationEvidence" }, { @@ -4549,7 +4623,7 @@ "ApiChange": "Resource", "ChangedApiName": "activeDirectoryDomainEvidence", "ChangeType": "Addition", - "Description": "Added the [activeDirectoryDomainEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-activeDirectoryDomainEvidence?view=graph-rest-beta) resource.", + "Description": "Added the [activeDirectoryDomainEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-activedirectorydomainevidence?view=graph-rest-beta) resource.", "Target": "activeDirectoryDomainEvidence" }, { @@ -4611,7 +4685,7 @@ "ApiChange": "Resource", "ChangedApiName": "autoAuditingConfiguration", "ChangeType": "Addition", - "Description": "Added the [autoAuditingConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/security-autoAuditingConfiguration?view=graph-rest-beta) resource.", + "Description": "Added the [autoAuditingConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/security-autoauditingconfiguration?view=graph-rest-beta) resource.", "Target": "autoAuditingConfiguration" }, { @@ -4619,7 +4693,7 @@ "ApiChange": "Relationship", "ChangedApiName": "autoAuditingConfiguration", "ChangeType": "Addition", - "Description": "Added the **autoAuditingConfiguration** relationship to the [settingsContainer](https://learn.microsoft.com/en-us/graph/api/resources/security-settingsContainer?view=graph-rest-beta) resource.", + "Description": "Added the **autoAuditingConfiguration** relationship to the [settingsContainer](https://learn.microsoft.com/en-us/graph/api/resources/security-settingscontainer?view=graph-rest-beta) resource.", "Target": "settingsContainer" } ], @@ -4637,7 +4711,7 @@ "ApiChange": "Resource", "ChangedApiName": "autoAuditingConfiguration", "ChangeType": "Addition", - "Description": "Added the [autoAuditingConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/security-autoAuditingConfiguration?view=graph-rest-1.0) resource.", + "Description": "Added the [autoAuditingConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/security-autoauditingconfiguration?view=graph-rest-1.0) resource.", "Target": "autoAuditingConfiguration" }, { @@ -4645,7 +4719,7 @@ "ApiChange": "Relationship", "ChangedApiName": "autoAuditingConfiguration", "ChangeType": "Addition", - "Description": "Added the **autoAuditingConfiguration** relationship to the [settingsContainer](https://learn.microsoft.com/en-us/graph/api/resources/security-settingsContainer?view=graph-rest-1.0) resource.", + "Description": "Added the **autoAuditingConfiguration** relationship to the [settingsContainer](https://learn.microsoft.com/en-us/graph/api/resources/security-settingscontainer?view=graph-rest-1.0) resource.", "Target": "settingsContainer" }, { @@ -4653,7 +4727,7 @@ "ApiChange": "Relationship", "ChangedApiName": "settings", "ChangeType": "Addition", - "Description": "Added the **settings** relationship to the [identityContainer](https://learn.microsoft.com/en-us/graph/api/resources/security-identityContainer?view=graph-rest-1.0) resource.", + "Description": "Added the **settings** relationship to the [identityContainer](https://learn.microsoft.com/en-us/graph/api/resources/security-identitycontainer?view=graph-rest-1.0) resource.", "Target": "identityContainer" }, { @@ -4661,7 +4735,7 @@ "ApiChange": "Resource", "ChangedApiName": "settingsContainer", "ChangeType": "Addition", - "Description": "Added the [settingsContainer](https://learn.microsoft.com/en-us/graph/api/resources/security-settingsContainer?view=graph-rest-1.0) resource.", + "Description": "Added the [settingsContainer](https://learn.microsoft.com/en-us/graph/api/resources/security-settingscontainer?view=graph-rest-1.0) resource.", "Target": "settingsContainer" } ], diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index cd681a5e5f0..2dffb0ef82b 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -254,6 +254,10 @@ Use the [List](/graph/api/peopleadminsettings-list-photoupdatesettings?view=grap - Added the [identityCorrelation](/graph/api/resources/identitycorrelation?view=graph-rest-beta&preserve-view=true) resource type and related methods for viewing identity correlation reports between on-premises directories and Microsoft Entra ID. - Added the `passwordSubmit` member to the [authenticationEventType](/graph/api/resources/enums?view=graph-rest-beta&preserve-view=true#authenticationeventtype-values) enumeration, surfaced through [appliedAuthenticationEventListener](/graph/api/resources/appliedauthenticationeventlistener?view=graph-rest-beta&preserve-view=true), to identify password-submission events in sign-in flows. +### Security | Advanced hunting + +Added the [getHuntingSchema](/graph/api/security-security-gethuntingschema?view=graph-rest-beta&preserve-view=true) method to the [security](/graph/api/resources/security?view=graph-rest-beta&preserve-view=true) resource to retrieve the available tables, columns, and functions for Microsoft Defender XDR advanced hunting queries. + ### Security | Alerts and incidents - Use the following new resources that extend the [alertEvidence](/graph/api/resources/security-alertevidence?view=graph-rest-beta&preserve-view=true) base type to provide detailed context about various artifacts involved in security alerts: From bf49e03165c2fa9b72107d15b955f371feab2f37 Mon Sep 17 00:00:00 2001 From: Copilot <198982749+Copilot@users.noreply.github.com> Date: Wed, 24 Jun 2026 11:12:23 +0000 Subject: [PATCH 38/52] Clean up ODSP acronym in cross-tenant migration docs (#29153) * Clean up ODSP mentions in cross-tenant migration docs * Apply suggestion from @FaithOmbongi --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi --- api-reference/beta/resources/crosstenant-migration-overview.md | 2 +- api-reference/beta/resources/crosstenantmigrationjob.md | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/api-reference/beta/resources/crosstenant-migration-overview.md b/api-reference/beta/resources/crosstenant-migration-overview.md index 242a64f6720..763e7529269 100644 --- a/api-reference/beta/resources/crosstenant-migration-overview.md +++ b/api-reference/beta/resources/crosstenant-migration-overview.md @@ -25,7 +25,7 @@ Organizations often need to consolidate or reorganize Microsoft 365 environments ## Key features -- **Create migration jobs**: Define workloads (Teams, Exchange, ODSP) and resources to migrate. +- **Create migration jobs**: Define workloads (Teams, Exchange, OneDrive and SharePoint) and resources to migrate. - **Retrieve migration jobs**: Get details for all jobs or a specific job. - **Update migration jobs**: Modify the `completeAfterDateTime` property. - **Cancel migration jobs or specific users**: Stop migrations in progress. diff --git a/api-reference/beta/resources/crosstenantmigrationjob.md b/api-reference/beta/resources/crosstenantmigrationjob.md index 66b8eb025f5..af2d9c18b1d 100644 --- a/api-reference/beta/resources/crosstenantmigrationjob.md +++ b/api-reference/beta/resources/crosstenantmigrationjob.md @@ -49,7 +49,7 @@ Inherits from [entity](../resources/entity.md). |sourceTenantId|String|ID (GUID) of the tenant that content is migrated from.| |status|crossTenantMigrationJobStatus|Most recent status of the migration job. Read-only. The possible values are: `submitted`, `approved`, `processing`, `cuttingOver`, `inProgress`, `completed`, `completedWithErrors`, `failed`, `cancelled`, `pendingCancel`, `adminActionRequired`, `validateSubmitted`, `validateProcessing`, `validateInProgress`, `validatePassed`, `validateFailed`, `pendingDelete`, and `deleted`.| |targetTenantId|String|ID of the tenant that content is migrated to. Read-only.| -|workloads|String collection|Workloads to migrate. Supported workloads are `Teams`, `Exchange`, and `ODSP` (OneDrive/SharePoint).| +|workloads|String collection|Workloads to migrate. Supported workloads are `Teams`, `Exchange`, and `ODSP` (OneDrive and SharePoint).| ## Relationships |Relationship|Type|Description| From 8b2eb9e529175840a9ce294ff2dfde8dfaed9757 Mon Sep 17 00:00:00 2001 From: Amar Koni <160498064+akgraph@users.noreply.github.com> Date: Wed, 24 Jun 2026 17:40:55 +0530 Subject: [PATCH 39/52] promote analyzedemail docs to v1.0 (#28963) * promote analyzedemail docs to v1.0 * address comments * Address PR review #6: startTime/endTime are optional; fix /analyzedEmails URL casing - Reframe Query parameters section: startTime/endTime are optional (workload confirmed), not required. - Fix /analyzedemails -> /analyzedEmails (camelCase) in 3 example URLs to match the CSDL navigation property and the HTTP request on line 35. - Fix &filter= -> &$filter= in 2 example URLs (OData query options require the $ prefix; the prose above explicitly references $filter). Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update Microsoft.MDO.AnalyzedMessages.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Address PR review: fix deprecated property placement and add complex type backlinks Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Fix typo: analzed email -> analyzed email Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Address Acrolinx issues in security-compromiseindicator.md Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Address Acrolinx clarity issues in security-detonationobservables.md Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi * Move analyzedEmail What's New entry to June 2026 preview section * fix link --------- Co-authored-by: Amar Koni (from Dev Box) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> --- .../v1.0/api/security-analyzedemail-get.md | 259 ++++++++++++++++++ .../api/security-analyzedemail-remediate.md | 114 ++++++++ ...y-collaborationroot-list-analyzedemails.md | 192 +++++++++++++ .../security-analyzedemail-get-permissions.md | 12 + ...ity-analyzedemail-remediate-permissions.md | 12 + ...ionroot-list-analyzedemails-permissions.md | 12 + .../v1.0/resources/enums-security.md | 108 ++++++++ .../v1.0/resources/security-analyzedemail.md | 165 +++++++++++ .../security-analyzedemailattachment.md | 57 ++++ ...urity-analyzedemailauthenticationdetail.md | 46 ++++ .../security-analyzedemaildeliverydetail.md | 71 +++++ .../security-analyzedemaildlpruleinfo.md | 42 +++ ...-analyzedemailexchangetransportruleinfo.md | 41 +++ .../security-analyzedemailrecipientdetail.md | 43 +++ .../security-analyzedemailsenderdetail.md | 55 ++++ .../resources/security-analyzedemailurl.md | 49 ++++ .../resources/security-collaborationroot.md | 43 +++ .../resources/security-compromiseindicator.md | 56 ++++ .../security-detonationbehaviourdetails.md | 57 ++++ .../resources/security-detonationchain.md | 45 +++ .../resources/security-detonationdetails.md | 73 +++++ .../security-detonationobservables.md | 49 ++++ .../security-threatdetectiondetail.md | 44 +++ .../v1.0/resources/security-timelineevent.md | 76 +++++ api-reference/v1.0/toc/toc.mapping.json | 6 + changelog/Microsoft.MDO.AnalyzedMessages.json | 238 +++++++++++++++- concepts/whats-new-overview.md | 8 + 27 files changed, 1971 insertions(+), 2 deletions(-) create mode 100644 api-reference/v1.0/api/security-analyzedemail-get.md create mode 100644 api-reference/v1.0/api/security-analyzedemail-remediate.md create mode 100644 api-reference/v1.0/api/security-collaborationroot-list-analyzedemails.md create mode 100644 api-reference/v1.0/includes/permissions/security-analyzedemail-get-permissions.md create mode 100644 api-reference/v1.0/includes/permissions/security-analyzedemail-remediate-permissions.md create mode 100644 api-reference/v1.0/includes/permissions/security-collaborationroot-list-analyzedemails-permissions.md create mode 100644 api-reference/v1.0/resources/security-analyzedemail.md create mode 100644 api-reference/v1.0/resources/security-analyzedemailattachment.md create mode 100644 api-reference/v1.0/resources/security-analyzedemailauthenticationdetail.md create mode 100644 api-reference/v1.0/resources/security-analyzedemaildeliverydetail.md create mode 100644 api-reference/v1.0/resources/security-analyzedemaildlpruleinfo.md create mode 100644 api-reference/v1.0/resources/security-analyzedemailexchangetransportruleinfo.md create mode 100644 api-reference/v1.0/resources/security-analyzedemailrecipientdetail.md create mode 100644 api-reference/v1.0/resources/security-analyzedemailsenderdetail.md create mode 100644 api-reference/v1.0/resources/security-analyzedemailurl.md create mode 100644 api-reference/v1.0/resources/security-collaborationroot.md create mode 100644 api-reference/v1.0/resources/security-compromiseindicator.md create mode 100644 api-reference/v1.0/resources/security-detonationbehaviourdetails.md create mode 100644 api-reference/v1.0/resources/security-detonationchain.md create mode 100644 api-reference/v1.0/resources/security-detonationdetails.md create mode 100644 api-reference/v1.0/resources/security-detonationobservables.md create mode 100644 api-reference/v1.0/resources/security-threatdetectiondetail.md create mode 100644 api-reference/v1.0/resources/security-timelineevent.md diff --git a/api-reference/v1.0/api/security-analyzedemail-get.md b/api-reference/v1.0/api/security-analyzedemail-get.md new file mode 100644 index 00000000000..c6de5622a45 --- /dev/null +++ b/api-reference/v1.0/api/security-analyzedemail-get.md @@ -0,0 +1,259 @@ +--- +title: "Get analyzedEmail" +description: "Read the properties and relationships of an analyzedEmail object." +author: "malvika-balaraj" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: apiPageType +ms.date: 05/27/2026 +--- + +# Get analyzedEmail + +Namespace: microsoft.graph.security + + +Read the properties and relationships of an [analyzedEmail](../resources/security-analyzedemail.md) object. + + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/security-analyzedemail-get-permissions.md)] + +## HTTP request + + +```http +GET /security/collaboration/analyzedEmails/{analyzedEmailId} +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a [microsoft.graph.security.analyzedEmail](../resources/security-analyzedemail.md) object in the response body. + +## Examples + +### Example 1: Get an analyzedEmail + +#### Request + + + +```msgraph-interactive +GET https://graph.microsoft.com/v1.0/security/collaboration/analyzedEmails/{analyzedEmailId} +``` + + +#### Response + +The following example shows the response. +>**Note:** The response object shown here might be shortened for readability. + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.type": "#microsoft.graph.security.analyzedEmail", + "id": "String", + "loggedDateTime": "Datetime", + "networkMessageId": "String", + "internetMessageId": "String", + "senderDetail": { + "@odata.type": "microsoft.graph.security.analyzedEmailSenderDetail" + }, + "recipientEmailAddress": "String", + "distributionList": "String", + "subject": "String", + "returnPath": "String", + "directionality": "microsoft.graph.security.antispamDirectionality", + "originalDelivery": { + "@odata.type": "microsoft.graph.security.analyzedEmailDeliveryDetail" + }, + "latestDelivery": { + "@odata.type": "microsoft.graph.security.analyzedEmailDeliveryDetail" + }, + "attachments": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailAttachment" + } + ], + "urls": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailUrl" + } + ], + "language": "String", + "sizeInBytes": "Integer", + "alertIds": [ + "String" + ], + "exchangeTransportRules": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailExchangeTransportRuleInfo" + } + ], + "overrideSources": [ + "String" + ], + "threatTypes": [ + "microsoft.graph.security.threatType" + ], + "detectionMethods": [ + "String" + ], + "contexts": [ + "String" + ], + "authenticationDetails": { + "@odata.type": "microsoft.graph.security.analyzedEmailAuthenticationDetail" + }, + "phishConfidenceLevel": "String", + "spamConfidenceLevel": "String", + "bulkComplaintLevel": "String", + "emailClusterId": "String", + "policyAction": "String", + "policy": "String", + "timelineEvents": [ + { + "@odata.type": "microsoft.graph.security.timelineEvent" + } + ], + "threatDetectionDetails": [ + { + "@odata.type": "microsoft.graph.security.threatDetectionDetail" + } + ], + "primaryOverrideSource": "String", + "inboundConnectorFormattedName": "String", + "policyType": "String", + "clientType": "String", + "dlpRules": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailDlpRuleInfo" + } + ], + "forwardingDetail": "String", + "recipientDetail": { + "@odata.type": "microsoft.graph.security.analyzedEmailRecipientDetail" + } +} +``` + +### Example 2: Get the URLs from an analyzedEmail + +#### Request + + +```msgraph-interactive +GET https://graph.microsoft.com/v1.0/security/collaboration/analyzedEmails/{analyzedEmailId}/urls +``` + + +#### Response + +The following example shows the response. +>**Note:** The response object shown here might be shortened for readability. + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value": [ + { + "@odata.type": "#microsoft.graph.security.analyzedEmailUrl", + "url": "String", + "threatType": "String", + "detectionMethod": "String", + "tenantAllowBlockListDetailInfo": "String", + "detonationDetails": { + "@odata.type": "microsoft.graph.security.detonationDetails" + } + } + ] +} +``` + +### Example 3: Get the attachments of an analyzedEmail + +#### Request + + +```msgraph-interactive +GET https://graph.microsoft.com/v1.0/security/collaboration/analyzedEmails/{analyzedEmailId}/attachments +``` +### Response + +The following example shows the response. +>**Note:** The response object shown here might be shortened for readability. + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value": [ + { + "@odata.type": "#microsoft.graph.security.analyzedEmailAttachment", + "fileName": "String", + "fileType": "String", + "fileSize": "Integer", + "fileExtension": "String", + "threatType": "String", + "malwareFamily": "String", + "tenantAllowBlockListDetailInfo": "String", + "sha256": "String", + "detonationDetails": { + "@odata.type": "microsoft.graph.security.detonationDetails" + } + } + ] +} +``` diff --git a/api-reference/v1.0/api/security-analyzedemail-remediate.md b/api-reference/v1.0/api/security-analyzedemail-remediate.md new file mode 100644 index 00000000000..ae3077d4b6b --- /dev/null +++ b/api-reference/v1.0/api/security-analyzedemail-remediate.md @@ -0,0 +1,114 @@ +--- +title: "analyzedEmail: remediate " +description: "Remove a potential threat from end users' mailboxes." +author: MishraSoumyaMS +ms.localizationpriority: medium +ms.subservice: security +doc_type: apiPageType +ms.date: 05/27/2026 +--- + +# analyzedEmail: remediate + +Namespace: microsoft.graph.security + + +Remove a potential threat from end users' mailboxes. + +Remediation means to take prescribed action against a threat. This API can trigger email purge actions like move to junk, move to deleted items, soft delete, hard delete, or move to Inbox. This API enables scenarios and use cases such as SOAR integration, playbooks, and automations. For more information read [email remediation, trigger action and track actions](/microsoft-365/security/office-365-security/remediate-malicious-email-delivered-office-365?view=o365-worldwide&preserve-view=true). If there is false positives admins can take move to inbox action. + + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/security-analyzedemail-remediate-permissions.md)] + +## HTTP request + + +```http +POST /security/collaboration/analyzedEmails/remediate +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| +|Content-Type|application/json. Required.| + +## Request body + +In the request body, supply a JSON representation of the parameters. + +The following table lists the parameters that are required when you call this action. + +|Parameter|Type|Description| +|:---|:---|:---| +|displayName|String| The name of the remediation that is used as a reference in the action center. | +|description|String| The description of the remediation. | +|severity|microsoft.graph.security.remediationSeverity| The severity of the remediation. The possible values are: `low`, `medium`, `high`, `unknownFutureValue`.| +|action|microsoft.graph.security.remediationAction|The types of move and delete actions that are supported. The possible values are: `moveToJunk`, `moveToInbox`, `hardDelete`, `softDelete`, `moveToDeletedItems`, `unknownFutureValue`, `moveToQuarantine`. Use the `Prefer: include-unknown-enum-members` request header to get the following members from this [evolvable enum](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations): `moveToQuarantine`. | +|remediateSendersCopy|Boolean| For internal or outbound email, indicates whether to remediate the sender's copy of an email. | +|analyzedEmails|[microsoft.graph.security.analyzedEmail](../resources/security-analyzedemail.md) collection| Contains the **networkMessageId** and **recipientEmailAddress** values of the analyzed emails. | + +## Response + +If successful, this action returns a `202 Accepted` response code and a `Location` header with a link to the tracking information. + +>**Note:** The response to the action can be tracked in https://security.microsoft.com/action-center/history. To learn more, see [Use the Action center](/microsoft-365/security/defender/m365d-action-center?view=o365-worldwide&preserve-view=true). + +## Examples + +### Request + +The following example shows a request. + +```http +POST https://graph.microsoft.com/v1.0/security/collaboration/analyzedEmails/remediate +Content-Type: application/json + +{ + "displayName": "Clean up Phish email", + "description": "Delete email", + "severity": "medium", + "action": "softDelete", + "remediateSendersCopy": "false", + "analyzedEmails": [ + { + "networkMessageId": "73ca4154-58d8-43d0-a890-08dc18c52e6d", + "recipientEmailAddress": "hannah.jarvis@contoso.com" + }, + { + "networkMessageId": "73ca4154-58d8-43d0-a890-08dc18c52e6d", + "recipientEmailAddress": "preston.morales@contoso.com" + } + ] +} +``` + + +### Response + +The following example shows the response. +>**Note:** The response object shown here might be shortened for readability. + +```http +HTTP/1.1 202 Accepted +Location: https://security.microsoft.com/action-center/history?filters={"bulkId":["{bulkId}"]}&tid={tid} +Content-Type: application/json;text/plain +Content-Length: 0 +``` diff --git a/api-reference/v1.0/api/security-collaborationroot-list-analyzedemails.md b/api-reference/v1.0/api/security-collaborationroot-list-analyzedemails.md new file mode 100644 index 00000000000..4df7a62bd10 --- /dev/null +++ b/api-reference/v1.0/api/security-collaborationroot-list-analyzedemails.md @@ -0,0 +1,192 @@ +--- +title: "List analyzedEmails " +description: "Get a list of analyzedEmail objects and their properties." +author: "ajaj-shaikh" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: apiPageType +ms.date: 05/27/2026 +--- + +# List analyzedEmails + +Namespace: microsoft.graph.security + + +Get a list of [analyzedEmail](../resources/security-analyzedemail.md) objects and their properties. + +This API allows Security Operations teams to have direct access to hunt (query) for threats, IOCs, attack vectors, and evidences for a tenant. It is a powerful, near real-time tool to help Security Operations teams investigate and respond to threats. It consists of email metadata, verdict information, related underlying entities (attachments/URL), filters, and more. + + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/security-collaborationroot-list-analyzedemails-permissions.md)] + +## HTTP request + + +```http +GET /security/collaboration/analyzedEmails +``` + +## Query parameters + +In the request URL, you can optionally provide the following query parameters with values to narrow the search window. + +|Parameter|Type|Description| +|:---|:---|:---| +|startTime|DateTime|Optional. The start time of the email search.| +|endTime|DateTime|Optional. The end time of the email search.| + +### OData query parameters + +This method supports the following OData query parameters to help customize the response: `$count`, `$filter`, `$skiptoken`, `$top`. For general information, see [OData query parameters](/graph/query-parameters). + +The following example shows how to use the `$filter` parameter to customize the response. + +```http +GET /security/collaboration/analyzedEmails?startTime=2024-02-18&endTime=2024-02-20&$filter=networkMessageId eq 'bde1f764-bbf4-5673-fbba-0asdhsgfhf1' +GET /security/collaboration/analyzedEmails?startTime=2024-02-18&endTime=2024-02-20&$filter=networkMessageId eq 'bde1f764-bbf4-5673-fbba-0asdhsgfhf1' and recipientEmailAddress eq 'tomas.richardson@contoso.com' +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a collection of [microsoft.graph.security.analyzedEmail](../resources/security-analyzedemail.md) objects in the response body. + +## Examples + +### Request + +The following example shows a request. + +```http +GET https://graph.microsoft.com/v1.0/security/collaboration/analyzedEmails?startTime=2024-02-18&endTime=2024-02-20 +``` + +### Response + +The following example shows the response. +>**Note:** The response object shown here might be shortened for readability. + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value": [ + { + "@odata.type": "#microsoft.graph.security.analyzedEmail", + "id": "String", + "loggedDateTime": "Datetime", + "networkMessageId": "String", + "internetMessageId": "String", + "senderDetail": { + "@odata.type": "microsoft.graph.security.analyzedEmailSenderDetail" + }, + "recipientEmailAddress": "String", + "distributionList": "String", + "subject": "String", + "returnPath": "String", + "directionality": "microsoft.graph.security.antispamDirectionality", + "originalDelivery": { + "@odata.type": "microsoft.graph.security.analyzedEmailDeliveryDetail" + }, + "latestDelivery": { + "@odata.type": "microsoft.graph.security.analyzedEmailDeliveryDetail" + }, + "attachments": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailAttachment" + } + ], + "urls": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailUrl" + } + ], + "language": "String", + "sizeInBytes": "Integer", + "alertIds": [ + "String" + ], + "exchangeTransportRules": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailExchangeTransportRuleInfo" + } + ], + "overrideSources": [ + "String" + ], + "threatTypes": [ + "microsoft.graph.security.threatType" + ], + "detectionMethods": [ + "String" + ], + "contexts": [ + "String" + ], + "authenticationDetails": { + "@odata.type": "microsoft.graph.security.analyzedEmailAuthenticationDetail" + }, + "phishConfidenceLevel": "String", + "spamConfidenceLevel": "String", + "bulkComplaintLevel": "String", + "emailClusterId": "String", + "policyAction": "String", + "policy": "String", + "timelineEvents": [ + { + "@odata.type": "microsoft.graph.security.timelineEvent" + } + ], + "threatDetectionDetails": [ + { + "@odata.type": "microsoft.graph.security.threatDetectionDetail" + } + ], + "primaryOverrideSource": "String", + "inboundConnectorFormattedName": "String", + "policyType": "String", + "clientType": "String", + "dlpRules": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailDlpRuleInfo" + } + ], + "forwardingDetail": "String", + "recipientDetail": { + "@odata.type": "microsoft.graph.security.analyzedEmailRecipientDetail" + } + } + ] +} +``` diff --git a/api-reference/v1.0/includes/permissions/security-analyzedemail-get-permissions.md b/api-reference/v1.0/includes/permissions/security-analyzedemail-get-permissions.md new file mode 100644 index 00000000000..9232a8e04dc --- /dev/null +++ b/api-reference/v1.0/includes/permissions/security-analyzedemail-get-permissions.md @@ -0,0 +1,12 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|Not supported.|Not supported.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|SecurityAnalyzedMessage.Read.All|SecurityAnalyzedMessage.ReadWrite.All| + diff --git a/api-reference/v1.0/includes/permissions/security-analyzedemail-remediate-permissions.md b/api-reference/v1.0/includes/permissions/security-analyzedemail-remediate-permissions.md new file mode 100644 index 00000000000..e2d0caf161d --- /dev/null +++ b/api-reference/v1.0/includes/permissions/security-analyzedemail-remediate-permissions.md @@ -0,0 +1,12 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|Not supported.|Not supported.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|SecurityAnalyzedMessage.ReadWrite.All|Not available.| + diff --git a/api-reference/v1.0/includes/permissions/security-collaborationroot-list-analyzedemails-permissions.md b/api-reference/v1.0/includes/permissions/security-collaborationroot-list-analyzedemails-permissions.md new file mode 100644 index 00000000000..9232a8e04dc --- /dev/null +++ b/api-reference/v1.0/includes/permissions/security-collaborationroot-list-analyzedemails-permissions.md @@ -0,0 +1,12 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|Not supported.|Not supported.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|SecurityAnalyzedMessage.Read.All|SecurityAnalyzedMessage.ReadWrite.All| + diff --git a/api-reference/v1.0/resources/enums-security.md b/api-reference/v1.0/resources/enums-security.md index 8e4d8ab8c99..bbd050b16d9 100644 --- a/api-reference/v1.0/resources/enums-security.md +++ b/api-reference/v1.0/resources/enums-security.md @@ -828,6 +828,114 @@ Namespace: microsoft.graph.security |unknown| |unknownFutureValue| + +### antispamDirectionality values + +|Member| +|:---| +|unknown| +|inbound| +|outbound| +|intraOrg| +|unknownFutureValue| + +### deliveryAction values + +|Member| +|:---| +|unknown| +|deliveredToJunk| +|delivered| +|blocked| +|replaced| +|unknownFutureValue| + +### deliveryLocation values + +|Member| +|:---| +|unknown| +|inbox_folder| +|junkFolder| +|deletedFolder| +|quarantine| +|onprem_external| +|failed| +|dropped| +|others| +|unknownFutureValue| + +### eventSource values + +|Member| +|:---| +|system| +|admin| +|user| +|unknownFutureValue| + +### remediationAction values + +|Member| +|:---| +|moveToJunk| +|moveToInbox| +|hardDelete| +|softDelete| +|moveToDeletedItems| +|unknownFutureValue| +|moveToQuarantine| + +### remediationSeverity values + +|Member| +|:---| +|low| +|medium| +|high| +|unknownFutureValue| + +### threatType values + +|Member| +|:---| +|unknown| +|spam| +|malware| +|phish| +|none| +|unknownFutureValue| + +### timelineEventType values + +|Member| +|:---| +|originalDelivery| +|systemTimeTravel| +|dynamicDelivery| +|userUrlClick| +|reprocessed| +|zap| +|quarantineRelease| +|air| +|unknown| +|unknownFutureValue| + +### verdictCategory values + +|Member| +|:---| +|none| +|malware| +|phish| +|siteUnavailable| +|spam| +|decryptionFailed| +|unsupportedUriScheme| +|unsupportedFileType| +|undefined| +|unknownFutureValue| + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmail", + "id": "String (identifier)", + "loggedDateTime": "String (timestamp)", + "networkMessageId": "String", + "internetMessageId": "String", + "senderDetail": { + "@odata.type": "microsoft.graph.security.analyzedEmailSenderDetail" + }, + "recipientEmailAddress": "String", + "distributionList": "String", + "subject": "String", + "returnPath": "String", + "directionality": "microsoft.graph.security.antispamDirectionality", + "originalDelivery": { + "@odata.type": "microsoft.graph.security.analyzedEmailDeliveryDetail" + }, + "latestDelivery": { + "@odata.type": "microsoft.graph.security.analyzedEmailDeliveryDetail" + }, + "attachments": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailAttachment" + } + ], + "urls": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailUrl" + } + ], + "language": "String", + "sizeInBytes": "Integer", + "alertIds": [ + "String" + ], + "exchangeTransportRules": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailExchangeTransportRuleInfo" + } + ], + "overrideSources": [ + "String" + ], + "threatTypes": [ + "microsoft.graph.security.threatType" + ], + "detectionMethods": [ + "String" + ], + "contexts": [ + "String" + ], + "authenticationDetails": { + "@odata.type": "microsoft.graph.security.analyzedEmailAuthenticationDetail" + }, + "phishConfidenceLevel": "String", + "spamConfidenceLevel": "String", + "bulkComplaintLevel": "String", + "emailClusterId": "String", + "policyAction": "String", + "policy": "String", + "timelineEvents": [ + { + "@odata.type": "microsoft.graph.security.timelineEvent" + } + ], + "threatDetectionDetails": [ + { + "@odata.type": "microsoft.graph.security.threatDetectionDetail" + } + ], + "primaryOverrideSource": "String", + "inboundConnectorFormattedName": "String", + "policyType": "String", + "clientType": "String", + "dlpRules": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailDlpRuleInfo" + } + ], + "forwardingDetail": "String", + "recipientDetail": { + "@odata.type": "microsoft.graph.security.analyzedEmailRecipientDetail" + } +} +``` diff --git a/api-reference/v1.0/resources/security-analyzedemailattachment.md b/api-reference/v1.0/resources/security-analyzedemailattachment.md new file mode 100644 index 00000000000..eb41df87130 --- /dev/null +++ b/api-reference/v1.0/resources/security-analyzedemailattachment.md @@ -0,0 +1,57 @@ +--- +title: "analyzedEmailAttachment resource type" +description: Represents an attachment to an analyzed email. +author: MishraSoumyaMS +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# analyzedEmailAttachment resource type + +Namespace: microsoft.graph.security + + +Represents an **attachment** to an [analyzed email](../resources/security-analyzedemail.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|detonationDetails|[microsoft.graph.security.detonationDetails](../resources/security-detonationdetails.md)|The detonation details of the attachment.| +|fileName|String|The name of the attachment in the email.| +|fileType|String|The type of the attachment in the email.| +|fileSize|Int32|Size of the file.| +|fileExtension|String|Extension of the file.| +|malwareFamily|String|The threat name associated with the threat type.| +|sha256|String|The SHA256 file hash of the attachment.| +|threatType|microsoft.graph.security.threatType|The threat type associated with the attachment. The possible values are: `unknown`, `spam`, `malware`, `phishing`, `none`, `unknownFutureValue`.| +|tenantAllowBlockListDetailInfo|String|Details of entries in tenant allow/block list configured by tenant.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmailAttachment", + "fileName": "String", + "fileType": "String", + "fileSize": "Integer", + "fileExtension": "String", + "threatType": "String", + "malwareFamily": "String", + "tenantAllowBlockListDetailInfo": "String", + "sha256": "String", + "detonationDetails": { + "@odata.type": "microsoft.graph.security.detonationDetails" + } +} +``` + diff --git a/api-reference/v1.0/resources/security-analyzedemailauthenticationdetail.md b/api-reference/v1.0/resources/security-analyzedemailauthenticationdetail.md new file mode 100644 index 00000000000..811d0887f58 --- /dev/null +++ b/api-reference/v1.0/resources/security-analyzedemailauthenticationdetail.md @@ -0,0 +1,46 @@ +--- +title: "analyzedEmailAuthenticationDetail resource type" +description: Represents a list of pass or fail verdicts by email authentication protocols. +author: MishraSoumyaMS +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# analyzedEmailAuthenticationDetail resource type + +Namespace: microsoft.graph.security + + +Represents a list of pass or fail verdicts by email authentication protocols such as DMARC, DKIM, SPF, or a combination of multiple authentication types (CompAuth). It's returned in the **authenticationDetails** property of [analyzedEmail](../resources/security-analyzedemail.md). + + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|compositeAuthentication|String|A value used by Microsoft 365 to combine email authentication such as SPF, DKIM, and DMARC, to determine whether the message is authentic.| +|dkim|String|DomainKeys identified mail (DKIM). Indicates whether it was pass/fail/soft fail.| +|dmarc|String|Domain-based Message Authentication. Indicates whether it was pass/fail/soft fail.| +|senderPolicyFramework|String|Sender Policy Framework (SPF). Indicates whether it was pass/fail/soft fail.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmailAuthenticationDetail", + "dmarc": "String", + "dkim": "String", + "senderPolicyFramework": "String", + "compositeAuthentication": "String" +} +``` + diff --git a/api-reference/v1.0/resources/security-analyzedemaildeliverydetail.md b/api-reference/v1.0/resources/security-analyzedemaildeliverydetail.md new file mode 100644 index 00000000000..f2833d9ab77 --- /dev/null +++ b/api-reference/v1.0/resources/security-analyzedemaildeliverydetail.md @@ -0,0 +1,71 @@ +--- +title: "analyzedEmailDeliveryDetail resource type" +description: Represents the delivery action and location of an analyzed email. +author: MishraSoumyaMS +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# analyzedEmailDeliveryDetail resource type + +Namespace: microsoft.graph.security + + +Represents the delivery action and location of an [analyzed email](../resources/security-analyzedemail.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|action|[microsoft.graph.security.deliveryAction](#deliveryaction-values)|The delivery action of the email. The possible values are: `unknown`, `deliveredToJunk`, `delivered`, `blocked`, `replaced`, `unknownFutureValue`.| +|location|[microsoft.graph.security.deliveryLocation](#deliverylocation-values)|The delivery location of the email. The possible values are: `unknown`, `inbox_folder`, `junkFolder`, `deletedFolder`, `quarantine`, `onprem_external`, `failed`, `dropped`, `others`, `unknownFutureValue`.| +|latestThreats|String|Latest known threat on the email.| +|originalThreats|String|Threats identified at the time of delivery.| + +### deliveryAction values + +|Member| +|:---| +|unknown| +|deliveredToJunk| +|delivered| +|blocked| +|replaced| +|unknownFutureValue| + +### deliveryLocation values + +|Member| +|:---| +|unknown| +|inbox_folder| +|junkFolder| +|deletedFolder| +|quarantine| +|onprem_external| +|failed| +|dropped| +|others| +|unknownFutureValue| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmailDeliveryDetail", + "action": "String", + "location": "String", + "originalThreats": "String", + "latestThreats": "String" +} +``` + diff --git a/api-reference/v1.0/resources/security-analyzedemaildlpruleinfo.md b/api-reference/v1.0/resources/security-analyzedemaildlpruleinfo.md new file mode 100644 index 00000000000..b8943c1501c --- /dev/null +++ b/api-reference/v1.0/resources/security-analyzedemaildlpruleinfo.md @@ -0,0 +1,42 @@ +--- +title: "analyzedEmailDlpRuleInfo resource type" +description: "Represents data loss prevention rules applied to the email." +author: akgraph +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# analyzedEmailDlpRuleInfo resource type + +Namespace: microsoft.graph.security + + +Represents data loss prevention rules applied to the email. It's returned in the **dlpRules** property of [analyzedEmail](../resources/security-analyzedemail.md). + + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|name|String|Name of the the data loss prevention rule.| +|ruleId|String|Unique identifier of the data loss prevention rule.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmailDlpRuleInfo", + "ruleId": "String", + "name": "String" +} +``` + diff --git a/api-reference/v1.0/resources/security-analyzedemailexchangetransportruleinfo.md b/api-reference/v1.0/resources/security-analyzedemailexchangetransportruleinfo.md new file mode 100644 index 00000000000..aec54bbe848 --- /dev/null +++ b/api-reference/v1.0/resources/security-analyzedemailexchangetransportruleinfo.md @@ -0,0 +1,41 @@ +--- +title: "analyzedEmailExchangeTransportRuleInfo resource type" +description: Represents mail flow rules in Exchange Online. +author: MishraSoumyaMS +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# analyzedEmailExchangeTransportRuleInfo resource type + +Namespace: microsoft.graph.security + + +Represents mail flow rules in Exchange Online. It's returned in the **exchangeTransportRules** property of [analyzedEmail](../resources/security-analyzedemail.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|name|String|Name of the Exchange transport rules (ETRs) that are part of the email.| +|ruleId|String|The ETR rule ID.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmailExchangeTransportRuleInfo", + "ruleId": "String", + "name": "String" +} +``` + diff --git a/api-reference/v1.0/resources/security-analyzedemailrecipientdetail.md b/api-reference/v1.0/resources/security-analyzedemailrecipientdetail.md new file mode 100644 index 00000000000..0fa1aa6a46c --- /dev/null +++ b/api-reference/v1.0/resources/security-analyzedemailrecipientdetail.md @@ -0,0 +1,43 @@ +--- +title: "analyzedEmailRecipientDetail resource type" +description: "Details about the recipient or recipients as mentioned in the email." +author: akgraph +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# analyzedEmailRecipientDetail resource type + +Namespace: microsoft.graph.security + + +Details about the recipient or recipients as mentioned in the email. It's returned in the **recipientDetail** property of [analyzedEmail](../resources/security-analyzedemail.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|ccRecipients|String collection|Recipient address in the cc field.| +|domainName|String|Domain name of the recipient.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmailRecipientDetail", + "domainName": "String", + "ccRecipients": [ + "String" + ] +} +``` + diff --git a/api-reference/v1.0/resources/security-analyzedemailsenderdetail.md b/api-reference/v1.0/resources/security-analyzedemailsenderdetail.md new file mode 100644 index 00000000000..ca3284eb212 --- /dev/null +++ b/api-reference/v1.0/resources/security-analyzedemailsenderdetail.md @@ -0,0 +1,55 @@ +--- +title: "analyzedEmailSenderDetail resource type" +description: Represents the sender details of an email. +author: MishraSoumyaMS +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# analyzedEmailSenderDetail resource type + +Namespace: microsoft.graph.security + + +Represents the sender details of an [analyzedEmail](../resources/security-analyzedemail.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|displayName|String|Display name of sender from address.| +|domainCreationDateTime|DateTimeOffset|Date and time of creation of the sender domain.| +|domainName|String|Registered name of the domain.| +|domainOwner|String|Owner of the domain.| +|fromAddress|String|The sender email address in the mail From header, also known as the envelope sender or the P1 sender.| +|ipv4|String|The IPv4 address of the last detected mail server that relayed the message.| +|location|String|Location of the domain.| +|mailFromAddress|String|The sender email address in the From header, which is visible to email recipients on their email clients. Also known as P2 sender.| +|mailFromDomainName|String|Domain name of sender mail from address.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmailSenderDetail", + "mailFromAddress": "String", + "fromAddress": "String", + "ipv4": "String", + "displayName": "String", + "domainName": "String", + "domainCreationDateTime": "String (timestamp)", + "domainOwner": "String", + "mailFromDomainName": "String", + "location": "String" +} +``` + diff --git a/api-reference/v1.0/resources/security-analyzedemailurl.md b/api-reference/v1.0/resources/security-analyzedemailurl.md new file mode 100644 index 00000000000..7dd08d2337f --- /dev/null +++ b/api-reference/v1.0/resources/security-analyzedemailurl.md @@ -0,0 +1,49 @@ +--- +title: "analyzedEmailUrl resource type" +description: "Represents information about URLs found in an analyzed email." +author: "MishraSoumyaMS" +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# analyzedEmailUrl resource type + +Namespace: microsoft.graph.security + + +Represents information about URLs found in an [analyzed email](../resources/security-analyzedemail.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|detectionMethod|String|The method used to detect threats in the URL.| +|detonationDetails|[microsoft.graph.security.detonationDetails](../resources/security-detonationdetails.md)|Detonation data associated with the URL.| +|tenantAllowBlockListDetailInfo|String|Details of entries in tenant allow/block list configured by tenant.| +|threatType|microsoft.graph.security.threatType|The type of threat associated with the URL. The possible values are: `unknown`, `spam`, `malware`, `phishing`, `none`, `unknownFutureValue`.| +|url|String|The URL that is found in the email. This is full URL string, including query parameters.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmailUrl", + "url": "String", + "threatType": "String", + "detectionMethod": "String", + "tenantAllowBlockListDetailInfo": "String", + "detonationDetails": { + "@odata.type": "microsoft.graph.security.detonationDetails" + } +} +``` + diff --git a/api-reference/v1.0/resources/security-collaborationroot.md b/api-reference/v1.0/resources/security-collaborationroot.md new file mode 100644 index 00000000000..8990536f8a9 --- /dev/null +++ b/api-reference/v1.0/resources/security-collaborationroot.md @@ -0,0 +1,43 @@ +--- +title: "collaborationRoot resource type" +description: "An abstract type that enables read and other actions on collaborative entities in Microsoft Defender." +author: "MishraSoumyaMS" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# collaborationRoot resource type + +Namespace: microsoft.graph.security + + +An abstract type that enables read and other actions on collaborative entities in Microsoft Defender. + +## Methods + +None. + +## Properties +None. +## Relationships +|Relationship|Type|Description| +|:---|:---|:---| +|analyzedEmails|[microsoft.graph.security.analyzedEmail](../resources/security-analyzedemail.md) collection|Contains metadata for analyzed emails.| + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.collaborationRoot" +} +``` + diff --git a/api-reference/v1.0/resources/security-compromiseindicator.md b/api-reference/v1.0/resources/security-compromiseindicator.md new file mode 100644 index 00000000000..41532e09609 --- /dev/null +++ b/api-reference/v1.0/resources/security-compromiseindicator.md @@ -0,0 +1,56 @@ +--- +title: "compromiseIndicator resource type" +description: Represents the indicators that caused the email to be marked as compromised. +author: akgraph +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# compromiseIndicator resource type + +Namespace: microsoft.graph.security + + +Represents an indicator and its associated verdict that suggests whether an email is compromised. The resource combines specific indicators found in the email with categorized verdicts to help identify potential security threats like malware, phishing attempts, or spam. It is returned in the **compromiseIndicators** property of [detonationDetails](../resources/security-detonationdetails.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|value|String|Indicator.| +|verdict|[microsoft.graph.security.verdictCategory](#verdictcategory-values)|The possible values are: `none`, `malware`, `phish`, `siteUnavailable`, `spam`, `decryptionFailed`, `unsupportedUriScheme`, `unsupportedFileType`, `undefined`, `unknownFutureValue`.| + +### verdictCategory values + +|Member| +|:---| +|none| +|malware| +|phish| +|siteUnavailable| +|spam| +|decryptionFailed| +|unsupportedUriScheme| +|unsupportedFileType| +|undefined| +|unknownFutureValue| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.compromiseIndicator", + "verdict": "String", + "value": "String" +} +``` + diff --git a/api-reference/v1.0/resources/security-detonationbehaviourdetails.md b/api-reference/v1.0/resources/security-detonationbehaviourdetails.md new file mode 100644 index 00000000000..5aa0a97d43a --- /dev/null +++ b/api-reference/v1.0/resources/security-detonationbehaviourdetails.md @@ -0,0 +1,57 @@ +--- +title: "detonationBehaviourDetails resource type (deprecated)" +description: "Shows the exact events that took place during detonation." +author: akgraph +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +ROBOTS: NOINDEX +--- + +# detonationBehaviourDetails resource type (deprecated) + +Namespace: microsoft.graph.security + + +Shows the exact events that took place during detonation. It's returned in the **detonationBehaviourDetails** property of [detonationDetails](../resources/security-detonationdetails.md). + + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|actionStatus|String|The status of the action performed during detonation (e.g., "Successful", "Failed", "Blocked").| +|behaviourCapability|String|Categorizes the capability or type of behavior observed.| +|behaviourGroup|String|Groups related behaviors together for classification purposes.| +|details|String|More contextual information about the observed behavior or action.| +|eventDateTime|DateTimeOffset|The date and time when the behavior or action was observed during detonation.| +|operation|String|The specific operation or action that was performed.| +|processId|String|The unique identifier of the process involved in the behavior.| +|processName|String|The name of the process that performed or was involved in the behavior.| +|target|String|The target of the operation.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.detonationBehaviourDetails", + "behaviourCapability": "String", + "behaviourGroup": "String", + "eventDateTime": "String (timestamp)", + "processName": "String", + "processId": "String", + "operation": "String", + "target": "String", + "details": "String", + "actionStatus": "String" +} +``` + diff --git a/api-reference/v1.0/resources/security-detonationchain.md b/api-reference/v1.0/resources/security-detonationchain.md new file mode 100644 index 00000000000..6a1d9f6dc94 --- /dev/null +++ b/api-reference/v1.0/resources/security-detonationchain.md @@ -0,0 +1,45 @@ +--- +title: "detonationChain resource type" +description: Represents a detonation chain in Microsoft Defender for Office 365. +author: MishraSoumyaMS +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# detonationChain resource type + +Namespace: microsoft.graph.security + + +Represents a detonation chain in Microsoft Defender for Office 365. A single file or URL detonation can trigger multiple detonations. The detonation chain tracks the path of detonations, including the original malicious file or URL that caused the verdict, and all other files or URLs that are affected by the detonation. These URLs or attached files might not be directly present in the email, but including that analysis is important in order to determine why the file or URL was found to be malicious. It's returned in the **detonationChain** property of [detonationDetails](../resources/security-detonationdetails.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|childNodes|[microsoft.graph.security.detonationChain](../resources/security-detonationchain.md) collection|A list of all child nodes in the chain.| +|value|String|The value of the chain.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.detonationChain", + "value": "String", + "childNodes": [ + { + "@odata.type": "microsoft.graph.security.detonationChain" + } + ] +} +``` + diff --git a/api-reference/v1.0/resources/security-detonationdetails.md b/api-reference/v1.0/resources/security-detonationdetails.md new file mode 100644 index 00000000000..380cea9bbe0 --- /dev/null +++ b/api-reference/v1.0/resources/security-detonationdetails.md @@ -0,0 +1,73 @@ +--- +title: "detonationDetails resource type" +description: Represents detonation details specific to email attachments and URLs. +author: MishraSoumyaMS +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# detonationDetails resource type + +Namespace: microsoft.graph.security + + +Represents detonation details specific to email attachments and URLs. These details include the detonation chain, detonation summary, and observed behavior details to help customers understand the reason the attachment or URL is deemed malicious and detonated. It's returned in the **detonationDetails** property of [analyzedEmailAttachment](../resources/security-analyzedemailattachment.md) and [analyzedEmailUrl](../resources/security-analyzedemailurl.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|analysisDateTime|DateTimeOffset|The time of detonation.| +|compromiseIndicators|[microsoft.graph.security.compromiseIndicator](../resources/security-compromiseindicator.md) collection|Represents indicators and its associated verdict that suggests whether an email is compromised.| +|detonationChain|[microsoft.graph.security.detonationChain](../resources/security-detonationchain.md)|The chain of detonation.| +|detonationObservables|[microsoft.graph.security.detonationObservables](../resources/security-detonationobservables.md)|All observables in the detonation tree.| +|detonationVerdict|String|The verdict of the detonation.| +|detonationVerdictReason|String|The reason for the verdict of the detonation.| +|detonationBehaviourDetailsV2|String|Shows the exact events that took place during detonation, and problematic or benign observations that contain URLs, IPs, domains, and files that were found during detonation in a JSON format.| +|detonationScreenshotUri|String|Show any screenshots that were captured during detonation. No screenshots are captured if the URL opens into a link that directly downloads a file. However, you see the downloaded file in the detonation chain.| +|entityMetadata|String|Additional metadata about the entity in JSON format.| +|mitreTechniques|String|The attack techniques, as aligned with the MITRE ATT&CK framework.| +|staticAnalysis|String|The results of static analysis performed on the file or URL.| +|submissionSource|String|The source of the submission.| +|detonationBehaviourDetails (deprecated)|[microsoft.graph.security.detonationBehaviourDetails](../resources/security-detonationbehaviourdetails.md)| Shows the exact events that took place during detonation, and problematic or benign observations that contain URLs, IPs, domains, and files that were found during detonation. This property is deprecated and still stop returning data in March 2026. Use the **detonationBehaviourDetailsV2** property instead.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.detonationDetails", + "analysisDateTime": "String (timestamp)", + "detonationVerdict": "String", + "detonationVerdictReason": "String", + "detonationChain": { + "@odata.type": "microsoft.graph.security.detonationChain" + }, + "detonationObservables": { + "@odata.type": "microsoft.graph.security.detonationObservables" + }, + "detonationBehaviourDetailsV2": "String", + "detonationScreenshotUri": "String", + "compromiseIndicators": [ + { + "@odata.type": "microsoft.graph.security.compromiseIndicator" + } + ], + "submissionSource": "String", + "entityMetadata": "String", + "staticAnalysis": "String", + "mitreTechniques": "String", + "detonationBehaviourDetails": { + "@odata.type": "microsoft.graph.security.detonationBehaviourDetails" + } +} +``` + diff --git a/api-reference/v1.0/resources/security-detonationobservables.md b/api-reference/v1.0/resources/security-detonationobservables.md new file mode 100644 index 00000000000..0b075c50342 --- /dev/null +++ b/api-reference/v1.0/resources/security-detonationobservables.md @@ -0,0 +1,49 @@ +--- +title: "detonationObservables resource type" +description: Represents detonation details. +author: malvika-balaraj +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# detonationObservables resource type + +Namespace: microsoft.graph.security + + +Represents the resources that a detonation includes, such as URLs, IPs, domains, and files. These resources can be either problematic or benign. It is returned in the **detonationObservables** property of [detonationDetails](../resources/security-detonationdetails.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|contactedIps|String collection|The list of all contacted IPs in the detonation.| +|contactedUrls|String collection|The list of all URLs found in the detonation.| +|droppedfiles|String collection|The list of all dropped files in the detonation.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.detonationObservables", + "droppedfiles": [ + "String" + ], + "contactedIps": [ + "String" + ], + "contactedUrls": [ + "String" + ] +} +``` + diff --git a/api-reference/v1.0/resources/security-threatdetectiondetail.md b/api-reference/v1.0/resources/security-threatdetectiondetail.md new file mode 100644 index 00000000000..0285be14cf8 --- /dev/null +++ b/api-reference/v1.0/resources/security-threatdetectiondetail.md @@ -0,0 +1,44 @@ +--- +title: "threatDetectionDetail resource type" +description: "Represents threat analysis information from Microsoft Defender for Office 365, including threat classification, confidence levels, and priority account protection status." +author: akgraph +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# threatDetectionDetail resource type + +Namespace: microsoft.graph.security + + +Represents threat analysis information from Microsoft Defender for Office 365, including threat classification, confidence levels, and priority account protection status. It's returned in the **threatDetectionDetails** property of [analyzedEmail](../resources/security-analyzedemail.md). + + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|confidenceLevel|String|Indicates the confidence level in the threat detection.| +|priorityAccountProtection|String|Indicates if the account has priority protection enabled.| +|threats|String|Lists the detected threats.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.threatDetectionDetail", + "threats": "String", + "confidenceLevel": "String", + "priorityAccountProtection": "String" +} +``` + diff --git a/api-reference/v1.0/resources/security-timelineevent.md b/api-reference/v1.0/resources/security-timelineevent.md new file mode 100644 index 00000000000..5bb180bd601 --- /dev/null +++ b/api-reference/v1.0/resources/security-timelineevent.md @@ -0,0 +1,76 @@ +--- +title: "timelineEvent resource type" +description: "The timeline of an analyzedEmail entity." +author: akgraph +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# timelineEvent resource type + +Namespace: microsoft.graph.security + + +The timeline of an [analyzedEmail](../resources/security-analyzedemail.md). + + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|eventDateTime|DateTimeOffset|The date and time when the event occurred.| +|eventDetails|String|Additional details or context about the event.| +|eventResult|String|The outcome or result of the event, such as delivery location or action taken.| +|eventSource|[microsoft.graph.security.eventSource](#eventsource-values)|The origin or actor that triggered the event. The possible values are: `system`, `admin`, `user`, `unknownFutureValue`.| +|eventThreats|String collection|Collection of threats identified or associated with this event.| +|eventType|[microsoft.graph.security.timelineEventType](#timelineeventtype-values)|The type of event that occurred. The possible values are: `originalDelivery`, `systemTimeTravel`, `dynamicDelivery`, `userUrlClick`, `reprocessed`, `zap`, `quarantineRelease`, `air`, `unknown`, `unknownFutureValue`.| + +### eventSource values + +|Member| +|:---| +|system| +|admin| +|user| +|unknownFutureValue| + +### timelineEventType values + +|Member| +|:---| +|originalDelivery| +|systemTimeTravel| +|dynamicDelivery| +|userUrlClick| +|reprocessed| +|zap| +|quarantineRelease| +|air| +|unknown| +|unknownFutureValue| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.timelineEvent", + "eventDateTime": "String (timestamp)", + "eventSource": "String", + "eventType": "String", + "eventResult": "String", + "eventThreats": [ + "String" + ], + "eventDetails": "String" +} +``` + diff --git a/api-reference/v1.0/toc/toc.mapping.json b/api-reference/v1.0/toc/toc.mapping.json index 95fcebd97de..d635def489f 100644 --- a/api-reference/v1.0/toc/toc.mapping.json +++ b/api-reference/v1.0/toc/toc.mapping.json @@ -1821,6 +1821,12 @@ } ] }, + { + "name": "Email and collaboration protection", + "resources": [ + "microsoft.graph.security.analyzedEmail" + ] + }, { "name": "Identities", "resources": [ diff --git a/changelog/Microsoft.MDO.AnalyzedMessages.json b/changelog/Microsoft.MDO.AnalyzedMessages.json index c0455a01184..23898533677 100644 --- a/changelog/Microsoft.MDO.AnalyzedMessages.json +++ b/changelog/Microsoft.MDO.AnalyzedMessages.json @@ -1,4 +1,4 @@ -{ +{ "changelog": [ { "ChangeList": [ @@ -654,7 +654,7 @@ "WorkloadArea": "Security", "SubArea": "" }, - { + { "ChangeList": [ { "Id": "434ab3d3-04a9-4ee4-b70d-31e49940e98d", @@ -719,6 +719,240 @@ "CreatedDateTime": "2026-02-05T08:11:41.618548Z", "WorkloadArea": "Security", "SubArea": "" + }, + { + "ChangeList": [ + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "security", + "ChangeType": "Addition", + "Description": "Added the [security](https://learn.microsoft.com/en-us/graph/api/resources/security?view=graph-rest-1.0) resource.", + "Target": "security" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "antispamDirectionality", + "ChangeType": "Addition", + "Description": "Added the **antispamDirectionality** enumeration type.", + "Target": "antispamDirectionality" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "deliveryAction", + "ChangeType": "Addition", + "Description": "Added the **deliveryAction** enumeration type.", + "Target": "deliveryAction" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "deliveryLocation", + "ChangeType": "Addition", + "Description": "Added the **deliveryLocation** enumeration type.", + "Target": "deliveryLocation" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "eventSource", + "ChangeType": "Addition", + "Description": "Added the **eventSource** enumeration type.", + "Target": "eventSource" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "remediationAction", + "ChangeType": "Addition", + "Description": "Added the **remediationAction** enumeration type.", + "Target": "remediationAction" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "remediationSeverity", + "ChangeType": "Addition", + "Description": "Added the **remediationSeverity** enumeration type.", + "Target": "remediationSeverity" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "threatType", + "ChangeType": "Addition", + "Description": "Added the **threatType** enumeration type.", + "Target": "threatType" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "timelineEventType", + "ChangeType": "Addition", + "Description": "Added the **timelineEventType** enumeration type.", + "Target": "timelineEventType" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "verdictCategory", + "ChangeType": "Addition", + "Description": "Added the **verdictCategory** enumeration type.", + "Target": "verdictCategory" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmailAttachment", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmailAttachment](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmailAttachment?view=graph-rest-1.0) resource.", + "Target": "analyzedEmailAttachment" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmailAuthenticationDetail", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmailAuthenticationDetail](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmailAuthenticationDetail?view=graph-rest-1.0) resource.", + "Target": "analyzedEmailAuthenticationDetail" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmailDeliveryDetail", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmailDeliveryDetail](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmailDeliveryDetail?view=graph-rest-1.0) resource.", + "Target": "analyzedEmailDeliveryDetail" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmailDlpRuleInfo", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmailDlpRuleInfo](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmailDlpRuleInfo?view=graph-rest-1.0) resource.", + "Target": "analyzedEmailDlpRuleInfo" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmailExchangeTransportRuleInfo", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmailExchangeTransportRuleInfo](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmailExchangeTransportRuleInfo?view=graph-rest-1.0) resource.", + "Target": "analyzedEmailExchangeTransportRuleInfo" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmailRecipientDetail", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmailRecipientDetail](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmailRecipientDetail?view=graph-rest-1.0) resource.", + "Target": "analyzedEmailRecipientDetail" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmailSenderDetail", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmailSenderDetail](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmailSenderDetail?view=graph-rest-1.0) resource.", + "Target": "analyzedEmailSenderDetail" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmailUrl", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmailUrl](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmailUrl?view=graph-rest-1.0) resource.", + "Target": "analyzedEmailUrl" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "compromiseIndicator", + "ChangeType": "Addition", + "Description": "Added the [compromiseIndicator](https://learn.microsoft.com/en-us/graph/api/resources/security-compromiseIndicator?view=graph-rest-1.0) resource.", + "Target": "compromiseIndicator" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "detonationBehaviourDetails", + "ChangeType": "Addition", + "Description": "Added the [detonationBehaviourDetails](https://learn.microsoft.com/en-us/graph/api/resources/security-detonationBehaviourDetails?view=graph-rest-1.0) resource.", + "Target": "detonationBehaviourDetails" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "detonationChain", + "ChangeType": "Addition", + "Description": "Added the [detonationChain](https://learn.microsoft.com/en-us/graph/api/resources/security-detonationChain?view=graph-rest-1.0) resource.", + "Target": "detonationChain" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "detonationDetails", + "ChangeType": "Addition", + "Description": "Added the [detonationDetails](https://learn.microsoft.com/en-us/graph/api/resources/security-detonationDetails?view=graph-rest-1.0) resource.", + "Target": "detonationDetails" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "detonationObservables", + "ChangeType": "Addition", + "Description": "Added the [detonationObservables](https://learn.microsoft.com/en-us/graph/api/resources/security-detonationObservables?view=graph-rest-1.0) resource.", + "Target": "detonationObservables" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "threatDetectionDetail", + "ChangeType": "Addition", + "Description": "Added the [threatDetectionDetail](https://learn.microsoft.com/en-us/graph/api/resources/security-threatDetectionDetail?view=graph-rest-1.0) resource.", + "Target": "threatDetectionDetail" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "timelineEvent", + "ChangeType": "Addition", + "Description": "Added the [timelineEvent](https://learn.microsoft.com/en-us/graph/api/resources/security-timelineEvent?view=graph-rest-1.0) resource.", + "Target": "timelineEvent" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmail", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmail](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmail?view=graph-rest-1.0) resource.", + "Target": "analyzedEmail" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "collaborationRoot", + "ChangeType": "Addition", + "Description": "Added the [collaborationRoot](https://learn.microsoft.com/en-us/graph/api/resources/security-collaborationRoot?view=graph-rest-1.0) resource.", + "Target": "collaborationRoot" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Method", + "ChangedApiName": "remediate", + "ChangeType": "Addition", + "Description": "Added the [remediate](https://learn.microsoft.com/en-us/graph/api/security-analyzedEmail-remediate?view=graph-rest-1.0) method to the [analyzedEmail](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmail?view=graph-rest-1.0) resource.", + "Target": "analyzedEmail" + } + ], + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "Cloud": "Prod", + "Version": "v1.0", + "CreatedDateTime": "2026-06-24T06:21:42.919633Z", + "WorkloadArea": "Security", + "SubArea": "" } ] } diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index 2dffb0ef82b..1b4b1464f2e 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -116,6 +116,14 @@ Personal distribution lists enable users to group email recipients together and Added the [policyTipAction](/graph/api/resources/policytipaction?view=graph-rest-beta&preserve-view=true) resource type and the `policyTip` member to the **dlpAction** enumeration. This enables applications to receive policy tip guidance as a standalone action when DLP policies are triggered through the processContent and protectionScopes APIs. +### Security | Email and collaboration protection + +Use the [analyzedEmail](/graph/api/resources/security-analyzedemail?view=graph-rest-beta&preserve-view=true) resource type and its associated methods to give Security Operations teams direct, near real-time access to query email threats, indicators of compromise (IOCs), attack vectors, and evidence in a tenant. Email metadata, verdict information, related underlying entities such as attachments and URLs, filters, and timeline events are returned to support investigation and response. + +- [List analyzedEmails](/graph/api/security-collaborationroot-list-analyzedemails?view=graph-rest-beta&preserve-view=true) under the collaboration root to retrieve email records for a time range with support for `$filter`, `$top`, `$count`, and `$skiptoken`. +- [Get analyzedEmail](/graph/api/security-analyzedemail-get?view=graph-rest-beta&preserve-view=true) to read the properties of a specific email, including its attachments, URLs, threat detection details, and timeline events. +- [analyzedEmail: remediate](/graph/api/security-analyzedemail-remediate?view=graph-rest-beta&preserve-view=true) to trigger purge actions (move to junk, move to Inbox, soft delete, hard delete, move to deleted items, move to quarantine) for SOAR integrations, playbooks, and automations. + ### Sites and lists Added the [sharePointReportSettings](/graph/api/resources/sharepointreportsettings?view=graph-rest-beta&preserve-view=true) resource type and related methods for managing SharePoint API usage report metrics. Use the [enableApiUsageReport](/graph/api/sharepointreportsettings-enableapiusagereport?view=graph-rest-beta&preserve-view=true) and [disableApiUsageReport](/graph/api/sharepointreportsettings-disableapiusagereport?view=graph-rest-beta&preserve-view=true) methods to control which metrics are collected and reported for your tenant. From 093908d4805ed1e33ce312d8a0923e3191ef8322 Mon Sep 17 00:00:00 2001 From: "Luca Spolidoro [MSFT]" Date: Wed, 24 Jun 2026 16:01:38 +0200 Subject: [PATCH 40/52] Add identityAnalytics Groups (beta) reference docs (Feature 3408675) (#29042) * Add identityAnalytics Groups (beta) reference documentation Document the Microsoft Entra identity analytics Groups public preview API (/reports/identityAnalytics/groups): - New resources: identityAnalyticsRoot and groupAnalytics (with the groupType enum) - New methods: List groupAnalytics, Get groupAnalytics - reportRoot: add the identityAnalytics relationship - Permissions: Reports.Read.All (least) / Directory.Read.All (higher) - Document supported query parameters: \ operators and string functions, \, and @odata.nextLink paging - Changelog, What's New (June 2026 preview), and TOC updates Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Address review feedback on identityAnalytics Groups docs - groupAnalytics: document per-property query capabilities (\ operators and \) inline; fix property alphabetical order (memberTransitiveUserCount) and mirror in JSON - List groupAnalytics: defer per-property query support to the groupAnalytics table to avoid overclaiming - identityAnalyticsRoot: set Methods to None (methods belong to the groupAnalytics resource) - Add usage-insights RBAC role include to both API topics - What's New: lead with the action verb and link the root entry point - TOC: order resources alphabetically Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Add groupTypeEnum changelog entry Adds the missing groupTypeEnum enum-type entry to the Microsoft.AAD.Reporting changelog record so the schema PR ChangelogEntryMissing validator clears. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Oversight - enum name Co-authored-by: Faith Moraa Ombongi * Fix groupAnalytics.groupType type label to groupTypeEnum The groupType property's documented type was labeled groupType, which collides with the pre-existing microsoft.graph.groupType enum (unifiedGroups/azureAD). The actual metadata type is groupTypeEnum (isCloudGroup/isOnPremiseGroup/isSoftDeletedGroup). Relabel the property type and its inline values section to groupTypeEnum so API Doctor validates against the correct published metadata type. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestion from @FaithOmbongi --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi --- api-reference/beta/api/groupanalytics-get.md | 112 ++++++++++++ .../api/identityanalyticsroot-list-groups.md | 170 ++++++++++++++++++ .../groupanalytics-get-permissions.md | 5 + ...tyanalyticsroot-list-groups-permissions.md | 5 + .../beta/resources/groupanalytics.md | 131 ++++++++++++++ .../beta/resources/identityanalyticsroot.md | 50 ++++++ api-reference/beta/resources/reportroot.md | 1 + api-reference/beta/toc/toc.mapping.json | 7 + changelog/Microsoft.AAD.Reporting.json | 68 ++++++- concepts/whats-new-overview.md | 4 + 10 files changed, 552 insertions(+), 1 deletion(-) create mode 100644 api-reference/beta/api/groupanalytics-get.md create mode 100644 api-reference/beta/api/identityanalyticsroot-list-groups.md create mode 100644 api-reference/beta/includes/permissions/groupanalytics-get-permissions.md create mode 100644 api-reference/beta/includes/permissions/identityanalyticsroot-list-groups-permissions.md create mode 100644 api-reference/beta/resources/groupanalytics.md create mode 100644 api-reference/beta/resources/identityanalyticsroot.md diff --git a/api-reference/beta/api/groupanalytics-get.md b/api-reference/beta/api/groupanalytics-get.md new file mode 100644 index 00000000000..30de2b9ca0d --- /dev/null +++ b/api-reference/beta/api/groupanalytics-get.md @@ -0,0 +1,112 @@ +--- +title: "Get groupAnalytics" +doc_type: apiPageType +description: "Read the properties of a groupAnalytics object that contains point-in-time analytics for a group in a Microsoft Entra tenant." +ms.localizationpriority: medium +author: "Licantrop0" +ms.subservice: "reports" +ms.date: 06/09/2026 +--- + +# Get groupAnalytics + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Read the properties of a [groupAnalytics](../resources/groupanalytics.md) object that contains point-in-time analytics for a group in a Microsoft Entra tenant, as part of [identity analytics](../resources/identityanalyticsroot.md). + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/groupanalytics-get-permissions.md)] + +[!INCLUDE [rbac-usage-insights-apis](../includes/rbac-for-apis/rbac-usage-insights-apis.md)] + +## HTTP request + + +```http +GET /reports/identityAnalytics/groups/{groupAnalyticsId} +``` + +## Optional query parameters + +This method supports the `$select` OData query parameter to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). + +## Request headers + +| Name | Description | +| :------------ | :------------- | +| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts). | + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a [groupAnalytics](../resources/groupanalytics.md) object in the response body. + +## Examples + +### Request + +The following example shows a request. + + +```http +GET https://graph.microsoft.com/beta/reports/identityAnalytics/groups/1f3a3b9c-6e2c-4f0a-9b2c-9a6d4d2e8f10 +``` + +### Response + +The following example shows the response. + +>**Note:** The response object shown here might be shortened for readability. + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/beta/$metadata#reports/identityAnalytics/groups/$entity", + "id": "1f3a3b9c-6e2c-4f0a-9b2c-9a6d4d2e8f10", + "tenantId": "5d6f7a8b-1c2d-3e4f-5a6b-7c8d9e0f1a2b", + "displayName": "Sales Team", + "calculatedDateTime": "2026-06-08T00:00:00Z", + "createdDateTime": "2023-02-15T10:30:00Z", + "groupType": "isCloudGroup", + "dynamicMembershipType": "None", + "isValidGroup": true, + "isCloudM365Group": true, + "isCloudDistributionListGroup": false, + "isCloudMailEnabledSecurityGroup": false, + "isCloudSecurityGroup": false, + "isDynamicGroup": false, + "isOnPremiseDistributionListGroup": false, + "isOnPremiseMailEnabledSecurityGroup": false, + "isOnPremiseSecurityGroup": false, + "directGroupMemberCount": 3, + "transitiveUserCount": 412, + "memberTransitiveUserCount": 405, + "guestTransitiveUserCount": 7, + "transitiveServicePrincipalCount": 2, + "assignedRoleCount": 1, + "sensitivityLabelCount": 1, + "guestOwnerCount": 0, + "memberOwnerCount": 2, + "servicePrincipalOwnerCount": 0 +} +``` diff --git a/api-reference/beta/api/identityanalyticsroot-list-groups.md b/api-reference/beta/api/identityanalyticsroot-list-groups.md new file mode 100644 index 00000000000..b0cb6cc516a --- /dev/null +++ b/api-reference/beta/api/identityanalyticsroot-list-groups.md @@ -0,0 +1,170 @@ +--- +title: "List groupAnalytics" +doc_type: apiPageType +description: "Get a list of the groupAnalytics objects and their properties for groups in a Microsoft Entra tenant." +ms.localizationpriority: medium +author: "Licantrop0" +ms.subservice: "reports" +ms.date: 06/09/2026 +--- + +# List groupAnalytics + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Get a list of the [groupAnalytics](../resources/groupanalytics.md) objects and their properties for a Microsoft Entra tenant. Each object holds point-in-time [identity analytics](../resources/identityanalyticsroot.md) for one group. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/identityanalyticsroot-list-groups-permissions.md)] + +[!INCLUDE [rbac-usage-insights-apis](../includes/rbac-for-apis/rbac-usage-insights-apis.md)] + +## HTTP request + + +```http +GET /reports/identityAnalytics/groups +``` + +## Optional query parameters + +This method supports the `$count`, `$filter`, `$orderby`, `$select`, and `$top` OData query parameters to help customize the response. The `$filter` operators and `$orderby` support available for each property are listed in the [groupAnalytics](../resources/groupanalytics.md) properties table. + +Across the resource, `$filter` supports the `eq`, `ne`, `gt`, `ge`, `lt`, and `le` operators, the `and` and `or` logical operators, and the `startsWith`, `endsWith`, and `contains` string functions, depending on the property type. The `not` and `has` operators aren't supported. + +To get the number of matching groups, append `/$count` to the request URL (for example, `GET /reports/identityAnalytics/groups/$count`) or add the `$count=true` query parameter to return the count inline as the `@odata.count` property. Large result sets are paged; follow the `@odata.nextLink` URL in the response to retrieve the next page. For general information, see [OData query parameters](/graph/query-parameters). + +## Request headers + +| Name | Description | +| :------------ | :------------- | +| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts). | + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a collection of [groupAnalytics](../resources/groupanalytics.md) objects in the response body. + +## Examples + +### Example 1: Get a list of groupAnalytics objects + +#### Request + +The following example shows a request. + + +```http +GET https://graph.microsoft.com/beta/reports/identityAnalytics/groups +``` + +#### Response + +The following example shows the response. + +>**Note:** The response object shown here might be shortened for readability. + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/beta/$metadata#reports/identityAnalytics/groups", + "value": [ + { + "id": "1f3a3b9c-6e2c-4f0a-9b2c-9a6d4d2e8f10", + "tenantId": "5d6f7a8b-1c2d-3e4f-5a6b-7c8d9e0f1a2b", + "displayName": "Sales Team", + "calculatedDateTime": "2026-06-08T00:00:00Z", + "createdDateTime": "2023-02-15T10:30:00Z", + "groupType": "isCloudGroup", + "isValidGroup": true, + "isCloudM365Group": true, + "isDynamicGroup": false, + "directGroupMemberCount": 3, + "transitiveUserCount": 412, + "memberTransitiveUserCount": 405, + "guestTransitiveUserCount": 7, + "assignedRoleCount": 1 + }, + { + "id": "9a8b7c6d-5e4f-3a2b-1c0d-9e8f7a6b5c4d", + "tenantId": "5d6f7a8b-1c2d-3e4f-5a6b-7c8d9e0f1a2b", + "displayName": "Engineering - All", + "calculatedDateTime": "2026-06-08T00:00:00Z", + "createdDateTime": "2021-11-03T08:00:00Z", + "groupType": "isCloudGroup", + "isValidGroup": true, + "isCloudM365Group": false, + "isCloudSecurityGroup": true, + "isDynamicGroup": true, + "directGroupMemberCount": 12, + "transitiveUserCount": 1890, + "memberTransitiveUserCount": 1890, + "guestTransitiveUserCount": 0, + "assignedRoleCount": 0 + } + ] +} +``` + +### Example 2: Get valid groups that contain guests, with selected properties + +#### Request + +The following example uses `$filter` to return only valid groups that contain at least one transitive guest user. It uses `$select` to limit the returned properties, `$orderby` to sort the results by creation date, and `$top` to return at most 10 results. + + +```http +GET https://graph.microsoft.com/beta/reports/identityAnalytics/groups?$filter=isValidGroup eq true and guestTransitiveUserCount gt 0&$select=id,displayName,createdDateTime,groupType,transitiveUserCount,guestTransitiveUserCount&$orderby=createdDateTime desc&$top=10 +``` + +#### Response + +The following example shows the response. + +>**Note:** The response object shown here might be shortened for readability. + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/beta/$metadata#reports/identityAnalytics/groups(id,displayName,createdDateTime,groupType,transitiveUserCount,guestTransitiveUserCount)", + "value": [ + { + "id": "1f3a3b9c-6e2c-4f0a-9b2c-9a6d4d2e8f10", + "displayName": "Sales Team", + "createdDateTime": "2023-02-15T10:30:00Z", + "groupType": "isCloudGroup", + "transitiveUserCount": 412, + "guestTransitiveUserCount": 7 + } + ] +} +``` diff --git a/api-reference/beta/includes/permissions/groupanalytics-get-permissions.md b/api-reference/beta/includes/permissions/groupanalytics-get-permissions.md new file mode 100644 index 00000000000..a6e5aaa67fc --- /dev/null +++ b/api-reference/beta/includes/permissions/groupanalytics-get-permissions.md @@ -0,0 +1,5 @@ +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|Reports.Read.All|Directory.Read.All| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|Reports.Read.All|Directory.Read.All| diff --git a/api-reference/beta/includes/permissions/identityanalyticsroot-list-groups-permissions.md b/api-reference/beta/includes/permissions/identityanalyticsroot-list-groups-permissions.md new file mode 100644 index 00000000000..a6e5aaa67fc --- /dev/null +++ b/api-reference/beta/includes/permissions/identityanalyticsroot-list-groups-permissions.md @@ -0,0 +1,5 @@ +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|Reports.Read.All|Directory.Read.All| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|Reports.Read.All|Directory.Read.All| diff --git a/api-reference/beta/resources/groupanalytics.md b/api-reference/beta/resources/groupanalytics.md new file mode 100644 index 00000000000..ba36169a14e --- /dev/null +++ b/api-reference/beta/resources/groupanalytics.md @@ -0,0 +1,131 @@ +--- +title: "groupAnalytics resource type" +description: "Represents point-in-time analytics for a group in a Microsoft Entra tenant." +ms.localizationpriority: medium +author: "Licantrop0" +ms.subservice: "reports" +doc_type: "resourcePageType" +ms.date: 06/09/2026 +--- + +# groupAnalytics resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents point-in-time analytics for a group in a Microsoft Entra tenant, including its membership, ownership, and type. This resource is part of [identity analytics](../resources/identityanalyticsroot.md), at the `/reports/identityAnalytics/groups` path. + +Each object reflects the data as of its **calculatedDateTime** value. + +## Methods + +| Method | Return type | Description | +| :----------------------------------------------------------- | :--------------------------------------------------------- | :----------------------------------------------------------------------------------------- | +| [List](../api/identityanalyticsroot-list-groups.md) | [groupAnalytics](../resources/groupanalytics.md) collection | Get a list of the [groupAnalytics](../resources/groupanalytics.md) objects and their properties for the tenant. | +| [Get](../api/groupanalytics-get.md) | [groupAnalytics](../resources/groupanalytics.md) | Read the properties of a [groupAnalytics](../resources/groupanalytics.md) object. | + +## Properties + +| Property | Type | Description | +| :------- | :--- | :---------- | +| assignedRoleCount | Int64 | The number of directory roles assigned to the group. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| calculatedDateTime | DateTimeOffset | The date and time when the analytics for the group were last calculated. The timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| createdDateTime | DateTimeOffset | The date and time when the group was created. The timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| directGroupMemberCount | Int64 | The number of direct members of the group that are themselves groups. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| displayName | String | The display name of the group. Supports `$filter` (`eq`, `ne`, `startsWith`, `endsWith`, `contains`) and `$orderby`. | +| dynamicMembershipType | String | The dynamic membership classification of the group, derived from its membership rule. Supports `$filter` (`eq`, `ne`, `startsWith`, `endsWith`, `contains`) and `$orderby`. | +| groupExpirationDateTime | DateTimeOffset | The date and time when the group expires. The timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| groupType | [groupTypeEnum](#grouptypeenum-values) | The type of the group. The possible values are mutually exclusive. For more information, see the [groupTypeEnum values](#grouptypeenum-values) section. Supports `$orderby`. | +| guestOwnerCount | Int64 | The number of owners of the group that are guest users. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| guestTransitiveUserCount | Int64 | The number of transitive user members of the group that are guest users. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| id | String | The unique identifier of the group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isCloudDistributionListGroup | Boolean | Indicates whether the group is a non-soft-deleted cloud distribution list group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isCloudM365Group | Boolean | Indicates whether the group is a non-soft-deleted cloud Microsoft 365 group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isCloudMailEnabledSecurityGroup | Boolean | Indicates whether the group is a non-soft-deleted cloud mail-enabled security group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isCloudSecurityGroup | Boolean | Indicates whether the group is a non-soft-deleted cloud security group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isDynamicGroup | Boolean | Indicates whether the group is a dynamic group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isOnPremiseDistributionListGroup | Boolean | Indicates whether the group is a non-soft-deleted on-premises distribution list group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isOnPremiseMailEnabledSecurityGroup | Boolean | Indicates whether the group is a non-soft-deleted on-premises mail-enabled security group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isOnPremiseSecurityGroup | Boolean | Indicates whether the group is a non-soft-deleted on-premises security group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isValidGroup | Boolean | Indicates whether the group is a valid (non-soft-deleted) group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| lastRestorationDateTime | DateTimeOffset | The date and time when the group was last restored from a soft-deleted state. The timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| memberOwnerCount | Int64 | The number of owners of the group that are member (non-guest) users. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| memberTransitiveUserCount | Int64 | The number of transitive user members of the group that are member (non-guest) users. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| membershipRuleContainsCount | Int64 | The number of `contains` expressions in the membership rule of the group. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| membershipRuleExpressionCount | Int64 | The number of expressions in the membership rule of the group. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| membershipRuleMatchCount | Int64 | The number of `match` expressions in the membership rule of the group. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| membershipRuleMemberOfCount | Int64 | The number of `memberOf` expressions in the membership rule of the group. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| membershipRuleProcessingState | String | The processing state of the membership rule of the group. Supports `$filter` (`eq`, `ne`, `startsWith`, `endsWith`, `contains`) and `$orderby`. | +| preferredDataLocation | String | The preferred data location of the group. Supports `$filter` (`eq`, `ne`, `startsWith`, `endsWith`, `contains`) and `$orderby`. | +| sensitivityLabelCount | Int64 | The number of sensitivity labels applied to the group. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| servicePrincipalOwnerCount | Int64 | The number of owners of the group that are service principals. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| softDeletionDateTime | DateTimeOffset | The date and time when the group was soft-deleted. If this property is empty, the group isn't soft-deleted. The timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| tenantId | String | The unique identifier of the tenant that the group belongs to. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| transitiveServicePrincipalCount | Int64 | The number of transitive members of the group that are service principals. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| transitiveUserCount | Int64 | The total number of transitive user members of the group. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | + +### groupTypeEnum values + +| Member | Description | +| :----------------- | :--------------------------------- | +| isCloudGroup | The group is a cloud group. | +| isOnPremiseGroup | The group is an on-premises group. | +| isSoftDeletedGroup | The group is a soft-deleted group. | + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +```json +{ + "@odata.type": "#microsoft.graph.groupAnalytics", + "assignedRoleCount": "Integer", + "calculatedDateTime": "String (timestamp)", + "createdDateTime": "String (timestamp)", + "directGroupMemberCount": "Integer", + "displayName": "String", + "dynamicMembershipType": "String", + "groupExpirationDateTime": "String (timestamp)", + "groupType": "String", + "guestOwnerCount": "Integer", + "guestTransitiveUserCount": "Integer", + "id": "String (identifier)", + "isCloudDistributionListGroup": "Boolean", + "isCloudM365Group": "Boolean", + "isCloudMailEnabledSecurityGroup": "Boolean", + "isCloudSecurityGroup": "Boolean", + "isDynamicGroup": "Boolean", + "isOnPremiseDistributionListGroup": "Boolean", + "isOnPremiseMailEnabledSecurityGroup": "Boolean", + "isOnPremiseSecurityGroup": "Boolean", + "isValidGroup": "Boolean", + "lastRestorationDateTime": "String (timestamp)", + "memberOwnerCount": "Integer", + "memberTransitiveUserCount": "Integer", + "membershipRuleContainsCount": "Integer", + "membershipRuleExpressionCount": "Integer", + "membershipRuleMatchCount": "Integer", + "membershipRuleMemberOfCount": "Integer", + "membershipRuleProcessingState": "String", + "preferredDataLocation": "String", + "sensitivityLabelCount": "Integer", + "servicePrincipalOwnerCount": "Integer", + "softDeletionDateTime": "String (timestamp)", + "tenantId": "String", + "transitiveServicePrincipalCount": "Integer", + "transitiveUserCount": "Integer" +} +``` diff --git a/api-reference/beta/resources/identityanalyticsroot.md b/api-reference/beta/resources/identityanalyticsroot.md new file mode 100644 index 00000000000..08bcb655a4b --- /dev/null +++ b/api-reference/beta/resources/identityanalyticsroot.md @@ -0,0 +1,50 @@ +--- +title: "identityAnalyticsRoot resource type" +description: "Represents a container for Microsoft Entra identity analytics reports in a tenant." +ms.localizationpriority: medium +author: "Licantrop0" +ms.subservice: "reports" +doc_type: "resourcePageType" +ms.date: 06/09/2026 +--- + +# identityAnalyticsRoot resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a container for Microsoft Entra identity analytics in a tenant. Identity analytics reports point-in-time data about your directory objects, and currently covers the [groups](../resources/groupanalytics.md) in the tenant. + +Access this resource through the [reportRoot](../resources/reportroot.md) resource, at the `/reports/identityAnalytics` path. + +## Methods + +None. + +## Properties + +None. + +## Relationships + +| Relationship | Type | Description | +| :----------- | :--------------------------------------------------------- | :----------------------------------------- | +| groups | [groupAnalytics](../resources/groupanalytics.md) collection | The analytics for the groups in the tenant. | + +## JSON representation + +The following JSON representation shows the resource type. + + +```json +{ + "@odata.type": "#microsoft.graph.identityAnalyticsRoot" +} +``` diff --git a/api-reference/beta/resources/reportroot.md b/api-reference/beta/resources/reportroot.md index 5733a7260f6..9061a1a4de1 100644 --- a/api-reference/beta/resources/reportroot.md +++ b/api-reference/beta/resources/reportroot.md @@ -317,6 +317,7 @@ None. | dailyPrintUsageByPrinter | [printUsageByPrinter](printusagebyprinter.md) collection | Retrieve a list of daily print usage summaries, grouped by printer. | | dailyPrintUsageByUser | [printUsageByUser](printusagebyuser.md) collection | Retrieve a list of daily print usage summaries, grouped by user. | | healthMonitoring | [microsoft.graph.healthMonitoring.healthMonitoringRoot](healthmonitoring-healthmonitoringroot.md) collection | Reports for Microsoft Entra Health Monitoring. | +| identityAnalytics | [identityAnalyticsRoot](../resources/identityanalyticsroot.md) | Microsoft Entra identity analytics for the tenant, including its groups. | | monthlyPrintUsageByPrinter | [printUsageByPrinter](printusagebyprinter.md) collection | Retrieve a list of monthly print usage summaries, grouped by printer. | | monthlyPrintUsageByUser | [printUsageByUser](printusagebyuser.md) collection | Retrieve a list of monthly print usage summaries, grouped by user. | | partners | [partners](partners.md) | Represents billing details for a Microsoft direct partner. | diff --git a/api-reference/beta/toc/toc.mapping.json b/api-reference/beta/toc/toc.mapping.json index 05269afd8c7..36e81887610 100644 --- a/api-reference/beta/toc/toc.mapping.json +++ b/api-reference/beta/toc/toc.mapping.json @@ -2790,6 +2790,13 @@ "correlationError", "identityInfo" ] + }, + { + "name": "Identity analytics (preview)", + "resources": [ + "groupAnalytics", + "identityAnalyticsRoot" + ] } ] }, diff --git a/changelog/Microsoft.AAD.Reporting.json b/changelog/Microsoft.AAD.Reporting.json index 2840c3d6c4d..6185125d5b8 100644 --- a/changelog/Microsoft.AAD.Reporting.json +++ b/changelog/Microsoft.AAD.Reporting.json @@ -1,5 +1,71 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "1fa63eb3-bbbb-4cb6-bb79-69f28c34c4ce", + "ApiChange": "Resource", + "ChangedApiName": "identityAnalyticsRoot", + "ChangeType": "Addition", + "Description": "Added the [identityAnalyticsRoot](https://learn.microsoft.com/en-us/graph/api/resources/identityanalyticsroot?view=graph-rest-beta) resource.", + "Target": "identityAnalyticsRoot" + }, + { + "Id": "1fa63eb3-bbbb-4cb6-bb79-69f28c34c4ce", + "ApiChange": "Resource", + "ChangedApiName": "groupAnalytics", + "ChangeType": "Addition", + "Description": "Added the [groupAnalytics](https://learn.microsoft.com/en-us/graph/api/resources/groupanalytics?view=graph-rest-beta) resource.", + "Target": "groupAnalytics" + }, + { + "Id": "1fa63eb3-bbbb-4cb6-bb79-69f28c34c4ce", + "ApiChange": "Enum type", + "ChangedApiName": "groupTypeEnum", + "ChangeType": "Addition", + "Description": "Added the **groupTypeEnum** enumeration type.", + "Target": "groupTypeEnum" + }, + { + "Id": "1fa63eb3-bbbb-4cb6-bb79-69f28c34c4ce", + "ApiChange": "Relationship", + "ChangedApiName": "identityAnalytics", + "ChangeType": "Addition", + "Description": "Added the **identityAnalytics** relationship to the [reportRoot](https://learn.microsoft.com/en-us/graph/api/resources/reportroot?view=graph-rest-beta) resource.", + "Target": "reportRoot" + }, + { + "Id": "1fa63eb3-bbbb-4cb6-bb79-69f28c34c4ce", + "ApiChange": "Relationship", + "ChangedApiName": "groups", + "ChangeType": "Addition", + "Description": "Added the **groups** relationship to the [identityAnalyticsRoot](https://learn.microsoft.com/en-us/graph/api/resources/identityanalyticsroot?view=graph-rest-beta) resource.", + "Target": "identityAnalyticsRoot" + }, + { + "Id": "1fa63eb3-bbbb-4cb6-bb79-69f28c34c4ce", + "ApiChange": "Method", + "ChangedApiName": "List groupAnalytics", + "ChangeType": "Addition", + "Description": "Added the [List groupAnalytics](https://learn.microsoft.com/en-us/graph/api/identityanalyticsroot-list-groups?view=graph-rest-beta) method to the [groupAnalytics](https://learn.microsoft.com/en-us/graph/api/resources/groupanalytics?view=graph-rest-beta) resource.", + "Target": "groupAnalytics" + }, + { + "Id": "1fa63eb3-bbbb-4cb6-bb79-69f28c34c4ce", + "ApiChange": "Method", + "ChangedApiName": "Get groupAnalytics", + "ChangeType": "Addition", + "Description": "Added the [Get groupAnalytics](https://learn.microsoft.com/en-us/graph/api/groupanalytics-get?view=graph-rest-beta) method to the [groupAnalytics](https://learn.microsoft.com/en-us/graph/api/resources/groupanalytics?view=graph-rest-beta) resource.", + "Target": "groupAnalytics" + } + ], + "Id": "1fa63eb3-bbbb-4cb6-bb79-69f28c34c4ce", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-25T22:00:52.5681182Z", + "WorkloadArea": "Reports", + "SubArea": "Identity and access reports" + }, { "ChangeList": [ { @@ -260,7 +326,7 @@ "WorkloadArea": "Reports", "SubArea": "Identity and access reports" }, - { + { "ChangeList": [ { "Id": "e47691c4-0416-4bcd-be07-f706d5d5350d", diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index 1b4b1464f2e..29f0e8c019c 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -105,6 +105,10 @@ Introduced programmatic management of personal distribution lists in user mailbo Personal distribution lists enable users to group email recipients together and send messages to all members at once without entering each address individually. +### Reports | Identity and access reports + +Added the [identityAnalyticsRoot](/graph/api/resources/identityanalyticsroot?view=graph-rest-beta&preserve-view=true) resource type to provide point-in-time identity analytics for your tenant, starting with analytics about your groups such as their membership, ownership, and type. + ### Security - Introduced [sensor migration](/graph/api/resources/security-sensormigration?view=graph-rest-beta&preserve-view=true) capabilities to migrate eligible Microsoft Defender for Identity sensors. From b59f6bf0ff135843cb364cb71948820e8868cb9d Mon Sep 17 00:00:00 2001 From: "snippet-gen-pull-automation[bot]" <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Date: Wed, 24 Jun 2026 09:40:57 -0600 Subject: [PATCH 41/52] Update reference TOC (#29154) Co-authored-by: Microsoft Graph DevX Tooling --- api-reference/beta/toc/backup-and-recovery/toc.yml | 2 ++ api-reference/beta/toc/reports/toc.yml | 8 ++++++++ api-reference/beta/toc/security/toc.yml | 2 ++ 3 files changed, 12 insertions(+) diff --git a/api-reference/beta/toc/backup-and-recovery/toc.yml b/api-reference/beta/toc/backup-and-recovery/toc.yml index 9aa81420327..37777b9972d 100644 --- a/api-reference/beta/toc/backup-and-recovery/toc.yml +++ b/api-reference/beta/toc/backup-and-recovery/toc.yml @@ -502,6 +502,8 @@ items: href: ../../resources/restorepointsearchresponse.md - name: Restore point search result href: ../../resources/restorepointsearchresult.md + - name: Restore search artifact query expression + href: ../../resources/restoresearchartifactqueryexpression.md - name: Retention setting href: ../../resources/retentionsetting.md - name: Service status diff --git a/api-reference/beta/toc/reports/toc.yml b/api-reference/beta/toc/reports/toc.yml index c0ca2c3631c..0f008efea1c 100644 --- a/api-reference/beta/toc/reports/toc.yml +++ b/api-reference/beta/toc/reports/toc.yml @@ -752,6 +752,10 @@ items: href: ../../api/reportroot-getsharepointsiteusagestorage.md - name: Get pages href: ../../api/reportroot-getsharepointsiteusagepages.md + - name: SharePoint API usage + items: + - name: Get SharePoint API usage + href: ../../api/reportroot-getsharepointapiusage.md - name: Skype for Business activity items: - name: Get user detail @@ -836,6 +840,10 @@ items: href: ../../resources/office365groupsactivitystorage.md - name: Office 365 services user counts href: ../../resources/office365servicesusercounts.md + - name: Share point API usage data point + href: ../../resources/sharepointapiusagedatapoint.md + - name: Share point API usage report + href: ../../resources/sharepointapiusagereport.md - name: Microsoft Defender for Office 365 security reports items: - name: Overview diff --git a/api-reference/beta/toc/security/toc.yml b/api-reference/beta/toc/security/toc.yml index 525b71ea4f0..94b547bdda2 100644 --- a/api-reference/beta/toc/security/toc.yml +++ b/api-reference/beta/toc/security/toc.yml @@ -14,6 +14,8 @@ items: href: ../../resources/security.md - name: Run hunting query href: ../../api/security-security-runhuntingquery.md + - name: Get hunting schema + href: ../../api/security-security-gethuntingschema.md - name: Hunting query results href: ../../resources/security-huntingqueryresults.md - name: Hunting row result From 7f15a107da61a971cf27a716ec633434027c815c Mon Sep 17 00:00:00 2001 From: Ortagus Winfrey <85191667+OWinfreyATL@users.noreply.github.com> Date: Wed, 24 Jun 2026 11:44:32 -0400 Subject: [PATCH 42/52] subjectLifecycle-V1-Fixes (#29052) * Add Get and Update methods for accessPackageSubject to v1.0 - Create accesspackagesubject-get.md and accesspackagesubject-update.md API topics - Create corresponding permissions include files - Uncomment Methods table in accesspackagesubject.md resource topic Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Minor edit * rbac added * fix rbac link * Whats New entry * Changelog added * Update What's New accessPackageSubject entry Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update concepts/whats-new-overview.md Co-authored-by: Eunice Waweru <73849846+msewaweru@users.noreply.github.com> * Update api-reference/v1.0/api/accesspackagesubject-update.md Co-authored-by: Eunice Waweru <73849846+msewaweru@users.noreply.github.com> * Update api-reference/v1.0/api/accesspackagesubject-update.md Co-authored-by: Eunice Waweru <73849846+msewaweru@users.noreply.github.com> * Update api-reference/v1.0/api/accesspackagesubject-update.md Co-authored-by: Eunice Waweru <73849846+msewaweru@users.noreply.github.com> * update * updates * Update * Trying to fix link again * Test * Fix malformed RBAC INCLUDE in accesspackagesubject-update v1.0 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Eunice Waweru <73849846+msewaweru@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> --- .../beta/api/accesspackagesubject-update.md | 3 + .../v1.0/api/accesspackagesubject-get.md | 91 +++++++++++++++++++ .../v1.0/api/accesspackagesubject-update.md | 83 +++++++++++++++++ .../accesspackagesubject-get-permissions.md | 5 + ...accesspackagesubject-update-permissions.md | 5 + .../v1.0/resources/accesspackagesubject.md | 8 +- changelog/Microsoft.IGAELM.json | 26 ++++++ concepts/whats-new-overview.md | 1 + 8 files changed, 216 insertions(+), 6 deletions(-) create mode 100644 api-reference/v1.0/api/accesspackagesubject-get.md create mode 100644 api-reference/v1.0/api/accesspackagesubject-update.md create mode 100644 api-reference/v1.0/includes/permissions/accesspackagesubject-get-permissions.md create mode 100644 api-reference/v1.0/includes/permissions/accesspackagesubject-update-permissions.md diff --git a/api-reference/beta/api/accesspackagesubject-update.md b/api-reference/beta/api/accesspackagesubject-update.md index 4d35a7223de..a7ed9a991c2 100644 --- a/api-reference/beta/api/accesspackagesubject-update.md +++ b/api-reference/beta/api/accesspackagesubject-update.md @@ -24,6 +24,9 @@ Choose the permission or permissions marked as least privileged for this API. Us [!INCLUDE [permissions-table](../includes/permissions/accesspackagesubject-update-permissions.md)] +[!INCLUDE [rbac-entitlement-catalog-owner-write](../includes/rbac-for-apis/rbac-entitlement-management-catalog-owner-apis-write.md)] + + ## HTTP request +[!INCLUDE [permissions-table](../includes/permissions/accesspackagesubject-get-permissions.md)] + +[!INCLUDE [rbac-entitlement-catalog-reader](../includes/rbac-for-apis/rbac-entitlement-management-catalog-reader-apis-read.md)] + +## HTTP request + +```http +GET /identityGovernance/entitlementManagement/subjects(objectId='{objectIdOfExternalDirectoryUser}') +``` + +## Request headers + +| Name |Description| +|:----------|:----------| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and the requested [accessPackageSubject](../resources/accesspackagesubject.md) object in the response body. + +## Examples + +### Request + + +```msgraph-interactive +GET https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/subjects(objectId='{objectIdOfExternalDirectoryUser}') +``` + +### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#identityGovernance/entitlementManagement/subjects/$entity", + "id": "120fd4a0-95a7-49d2-9389-ed6f3c025c74", + "objectId": "a382de66-b7bb-4c30-82b7-306c6ae6a4ae", + "displayName": "Accessibility Test", + "principalName": "accessibility@contoso.com", + "email": "accessibility@contoso.com", + "onPremisesSecurityIdentifier": null, + "subjectType": "user", + "subjectLifecycle": "governed" +} +``` diff --git a/api-reference/v1.0/api/accesspackagesubject-update.md b/api-reference/v1.0/api/accesspackagesubject-update.md new file mode 100644 index 00000000000..b6839d0143f --- /dev/null +++ b/api-reference/v1.0/api/accesspackagesubject-update.md @@ -0,0 +1,83 @@ +--- +title: "Update accessPackageSubject" +description: "Update the properties of an accessPackageSubject object." +author: "markwahl-msft" +ms.localizationpriority: medium +ms.subservice: "entra-id-governance" +doc_type: apiPageType +ms.date: 06/11/2026 +--- + +# Update accessPackageSubject + +Namespace: microsoft.graph + +Update an external directory user represented by an existing [accessPackageSubject](../resources/accesspackagesubject.md) object to change the subject lifecycle. + +[!INCLUDE [national-cloud-support](../../includes/global-us.md)] + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/accesspackagesubject-update-permissions.md)] + +[!INCLUDE [rbac-entitlement-catalog-owner-write](../includes/rbac-for-apis/rbac-entitlement-management-catalog-owner-apis-write.md)] + +## HTTP request + +```http +PATCH /identityGovernance/entitlementManagement/subjects(objectId='{objectIdOfExternalDirectoryUser}') +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| +|Content-Type|application/json. Required.| + +## Request body + +[!INCLUDE [table-intro](../../includes/update-property-table-intro.md)] + +|Property|Type|Description| +|:---|:---|:---| +|subjectLifecycle|accessPackageSubjectLifecycle|The lifecycle of the subject user, if a guest. The possible values are: `notDefined`, `notGoverned`, `governed`.| + +## Response + +If successful, this method returns a `204 No Content` response code. + +## Examples + +### Request + + +```http +PATCH https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/subjects(objectId='{objectIdOfExternalDirectoryUser}') +Content-Type: application/json + +{ + "subjectLifecycle":"governed" +} +``` + +### Response + + +```http +HTTP/1.1 204 No Content +``` diff --git a/api-reference/v1.0/includes/permissions/accesspackagesubject-get-permissions.md b/api-reference/v1.0/includes/permissions/accesspackagesubject-get-permissions.md new file mode 100644 index 00000000000..08570fd0ab9 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/accesspackagesubject-get-permissions.md @@ -0,0 +1,5 @@ +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|EntitlementManagement.ReadWrite.All|Not available.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|EntitlementManagement.ReadWrite.All|Not available.| \ No newline at end of file diff --git a/api-reference/v1.0/includes/permissions/accesspackagesubject-update-permissions.md b/api-reference/v1.0/includes/permissions/accesspackagesubject-update-permissions.md new file mode 100644 index 00000000000..08570fd0ab9 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/accesspackagesubject-update-permissions.md @@ -0,0 +1,5 @@ +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|EntitlementManagement.ReadWrite.All|Not available.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|EntitlementManagement.ReadWrite.All|Not available.| \ No newline at end of file diff --git a/api-reference/v1.0/resources/accesspackagesubject.md b/api-reference/v1.0/resources/accesspackagesubject.md index 15b285026cb..2b7cfbf7e8d 100644 --- a/api-reference/v1.0/resources/accesspackagesubject.md +++ b/api-reference/v1.0/resources/accesspackagesubject.md @@ -17,15 +17,11 @@ In [Microsoft Entra entitlement management](entitlementmanagement-overview.md), ## Methods - +| [Get](../api/accesspackagesubject-get.md)|[accessPackageSubject](../resources/accesspackagesubject.md) | Get the properties of an **accessPackageSubject** object. | +| [Update](../api/accesspackagesubject-update.md)|None | Update the properties of an **accessPackageSubject** object. | ## Properties |Property|Type|Description| diff --git a/changelog/Microsoft.IGAELM.json b/changelog/Microsoft.IGAELM.json index 51a94d18fc8..fd7c557e757 100644 --- a/changelog/Microsoft.IGAELM.json +++ b/changelog/Microsoft.IGAELM.json @@ -1,5 +1,31 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "bbaab297-9f65-4f97-8abb-a67a10d5a6e1", + "ApiChange": "Method", + "ChangedApiName": "Get", + "ChangeType": "Addition", + "Description": "Added the [Get](https://learn.microsoft.com/en-us/graph/api/accesspackagesubject-get?view=graph-rest-1.0) method to the [accessPackageSubject](https://learn.microsoft.com/en-us/graph/api/resources/accesspackagesubject?view=graph-rest-1.0) resource.", + "Target": "accessPackageSubject" + }, + { + "Id": "bbaab297-9f65-4f97-8abb-a67a10d5a6e1", + "ApiChange": "Method", + "ChangedApiName": "Update", + "ChangeType": "Addition", + "Description": "Added the [Update](https://learn.microsoft.com/en-us/graph/api/accesspackagesubject-update?view=graph-rest-1.0) method to the [accessPackageSubject](https://learn.microsoft.com/en-us/graph/api/resources/accesspackagesubject?view=graph-rest-1.0) resource.", + "Target": "accessPackageSubject" + } + ], + "Id": "bbaab297-9f65-4f97-8abb-a67a10d5a6e1", + "Cloud": "Prod", + "Version": "v1.0", + "CreatedDateTime": "2026-06-23T00:00:00Z", + "WorkloadArea": "Identity and access", + "SubArea": "Governance" + }, { "Id": "a7e3b21c-5f0d-4a82-b6c9-1e8d4f7a3b5c", "Cloud": "Prod", diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index 29f0e8c019c..a5607d02921 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -34,6 +34,7 @@ Added the [getSharePointApiUsage](/graph/api/reportroot-getsharepointapiusage?vi ### Identity and access | Governance +- Added the [Get](/graph/api/accesspackagesubject-get) and [Update](/graph/api/accesspackagesubject-update) methods to the [accessPackageSubject](/graph/api/resources/accesspackagesubject) resource type to manage the subject lifecycle of external directory users in Microsoft Entra entitlement management. - Added the **type** property to the [accessPackageResourceRole](/graph/api/resources/accesspackageresourcerole) resource to indicate whether an Azure resource role is active or eligible, enabling PIM-based role assignments for Azure resources in access packages. - Added the [accessPackageSuggestion](/graph/api/resources/accesspackagesuggestion) resource type and related methods for discovering suggested access packages based on related people insights and assignment history. Use the [filterByCurrentUser](/graph/api/accesspackagesuggestions-filterbycurrentuser) function to retrieve personalized suggestions. - Added the **approverInformationVisibility** property to the [accessPackageApprovalStage](/graph/api/resources/accesspackageapprovalstage) resource to control whether approver information is visible to requestors. From 7ffc1e12f79123c4698245c0b8839e952d70e632 Mon Sep 17 00:00:00 2001 From: "learn-build-service-prod[bot]" <113403604+learn-build-service-prod[bot]@users.noreply.github.com> Date: Wed, 24 Jun 2026 10:39:51 -0600 Subject: [PATCH 43/52] Resolve syncing conflicts from repo_sync_working_branch to main (#29152) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit * Use contractions in basesitepage-list * Use contractions in bitlocker-list-recoverykeys * Use contractions in bookingappointment-update * Use contractions in bookingbusiness-list * Use contractions in bookingcustomer-get * Use contractions in bundle-removeitem * Use contractions in bundle-update * Use contractions in calendar-list-calendarview * Use contractions in call-keepalive * Use contractions in call-list-participants * Use contractions in call-reject * Use contractions in channel-get-members * Use contractions in chat-delete * Use contractions in chat-get * Use contractions in chat-get-members * Use contractions in chat-list-members * Use contractions in contenttype-delete * Use contractions in conversationmember-list * Use contractions in directory-list-customsecurityattributedefinitions * Use contractions in directoryobject-delta * Use contractions in domain-delete * Use contractions in domain-get-rootdomain * Use contractions in domain-list-federationconfiguration * Use contractions in drive-get-specialfolder * Use contractions in driveitem-copy * Use contractions in driveitem-createlink * Use contractions in driveitem-search * Use contractions in driveitemversion-get * Use contractions in educationclass-delta * Use contractions in educationclass-post * Use contractions in entitlementmanagementsettings-get * Use contractions in externalauthenticationmethodconfiguration-get * Use contractions in externalconnectors-externalgroup-update * Use contractions in externalconnectors-externalitem-get * Use contractions in externalconnectors-schema-get * Use contractions in fido2authenticationmethod-list * Use contractions in group-delta * Use contractions in group-list-acceptedsenders * Use contractions in group-list-calendarview * Use contractions in group-post-members * Use contractions in group-update * Use contractions in identitygovernance-insights-workflowsprocessedsummary * Use contractions in identitygovernance-task-get * Use contractions in identitygovernance-workflowtemplate-get * Use contractions in identityuserflowattributeassignment-update * Use contractions in inferenceclassification-list-overrides * Use contractions in internaldomainfederation-get * Use contractions in learningcourseactivity-update * Use contractions in list-get * Use contractions in listitem-delete * Use contractions in listitem-update * Use contractions in mailfolder-list-childfolders * Use contractions in message-createreply * Use contractions in message-createreplyall * Use contractions in message-delta * Use contractions in message-reply * Use contractions in message-replyall * Use contractions in offershiftrequest-get * Use contractions in onlinemeeting-createorget * Use contractions in orgcontact-delta * Use contractions in outlookuser-supportedtimezones * Use contractions in permissiongrantpolicy-update * Use contractions in permission-update * Use contractions in phoneauthenticationmethod-update * Use contractions in plannerassignedtotaskboardtaskformat-update * Use contractions in post-post-attachments * Use contractions in printdocument-createuploadsession * Use contractions in printer-update * Use contractions in printjob-cancel * Use contractions in projectrome-put-activity * Use contractions in qrcode-get * Use contractions in reportroot-getemailactivitycounts * Use contractions in reportroot-getemailactivityusercounts * Use contractions in reportroot-getemailactivityuserdetail * Use contractions in reportroot-getemailappusageappsusercounts * Use contractions in reportroot-getemailappusageusercounts * Use contractions in reportroot-getemailappusageuserdetail * Use contractions in reportroot-getm365appplatformusercounts * Use contractions in reportroot-getm365appusercounts * Use contractions in reportroot-getm365appuserdetail * Use contractions in reportroot-getmailboxusagedetail * Use contractions in reportroot-getmailboxusagemailboxcounts * Use contractions in reportroot-getmailboxusagequotastatusmailboxcounts * Use contractions in reportroot-getmailboxusagestorage * Use contractions in reportroot-getoffice365activationcounts * Use contractions in reportroot-getoffice365activationsuserdetail * Use contractions in reportroot-getoffice365activeusercounts * Use contractions in reportroot-getoffice365activeuserdetail * Use contractions in reportroot-getoffice365groupsactivitycounts * Use contractions in reportroot-getoffice365groupsactivitydetail * Use contractions in reportroot-getoffice365groupsactivityfilecounts * Use contractions in reportroot-getoffice365groupsactivitystorage * Use contractions in reportroot-getoffice365servicesusercounts * Use contractions in reportroot-getonedriveactivityfilecounts * Use contractions in reportroot-getonedriveactivityusercounts * Use contractions in reportroot-getonedriveactivityuserdetail * Use contractions in reportroot-getonedriveusageaccountcounts * Use contractions in reportroot-getonedriveusageaccountdetail * Use contractions in reportroot-getonedriveusagefilecounts * Use contractions in reportroot-getsharepointactivityfilecounts * Use contractions in reportroot-getsharepointactivitypages * Use contractions in reportroot-getsharepointactivityuserdetail * Use contractions in reportroot-getsharepointsiteusagedetail * Use contractions in reportroot-getsharepointsiteusagefilecounts * Use contractions in reportroot-getsharepointsiteusagepages * Use contractions in reportroot-getsharepointsiteusagesitecounts * Use contractions in reportroot-getsharepointsiteusagestorage * Use contractions in reportroot-getskypeforbusinessactivitycounts * Use contractions in reportroot-getskypeforbusinessactivityusercounts * Use contractions in reportroot-getskypeforbusinessactivityuserdetail * Use contractions in reportroot-getskypeforbusinessdeviceusagedistributionusercounts * Use contractions in reportroot-getskypeforbusinessdeviceusageuserdetail * Use contractions in reportroot-getskypeforbusinessorganizeractivityminutecounts * Use contractions in reportroot-getskypeforbusinessparticipantactivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivitycounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityusercounts * Use contractions in reportroot-getteamsdeviceusageusercounts * Use contractions in reportroot-getteamsuseractivityusercounts * Use contractions in reportroot-getteamsuseractivityuserdetail * Use contractions in reportroot-getyammeractivitycounts * Use contractions in reportroot-getyammeractivityusercounts * Use contractions in reportroot-getyammeractivityuserdetail * Use contractions in reportroot-getyammerdeviceusagedistributionusercounts * Use contractions in reportroot-getyammerdeviceusageusercounts * Use contractions in reportroot-getyammerdeviceusageuserdetail * Use contractions in reportroot-getyammergroupsactivitycounts * Use contractions in reportroot-getyammergroupsactivitydetail * Use contractions in riskdetection-get * Use contractions in riskyuser-get * Use contractions in schedulinggroup-delete * Use contractions in schemaextension-delete * Use contractions in security-ediscoverysearch-list-lastestimatestatisticsoperation * Use contractions in security-host-list-childhostpairs * Use contractions in security-host-list-parenthostpairs * Use contractions in security-hostpair-get * Use contractions in security-threatintelligence-list-sslcertificates * Use contractions in servicehealthissue-get * Use contractions in servicehealthissue-incidentreport * Use contractions in serviceprincipal-get * Use contractions in serviceupdatemessage-get * Use contractions in sharedwithchannelteaminfo-get * Use contractions in sharedwithchannelteaminfo-list-allowedmembers * Use contractions in simulationautomation-get * Use contractions in simulation-get * Use contractions in singlevaluelegacyextendedproperty-get * Use contractions in sitepage-publish * Use contractions in sitepage-update * Use contractions in site-search * Use contractions in subjectrightsrequest-list-notes * Use contractions in subscribedsku-list * Use contractions in synchronization-synchronizationschema-delete * Use contractions in synchronization-synchronizationschema-update * Use contractions in teamsapp-delete * Use contractions in teamsapp-publish * Use contractions in teamsapp-update * Use contractions in teamworktag-get * Use contractions in tenantappmanagementpolicy-update * Use contractions in tenantdatasecurityandgovernance-processcontentasync * Use contractions in timeoffrequest-get * Use contractions in todotask-delta * Use contractions in todotask-list-checklistitems * Use contractions in todotask-post-attachments * Use contractions in userdatasecurityandgovernance-processcontent * Use contractions in user-delta * Use contractions in user-findmeetingtimes * Use contractions in user-list-calendarview * Use contractions in user-list-mailfolders * Use contractions in user-list-messages * Use contractions in userregistrationdetails-get * Use contractions in user-sendmail * Use contractions in verticalsection-update * Use contractions in virtualeventregistrationconfiguration-list-questions * Use contractions in virtualeventregistration-list * Use contractions in virtualeventregistration-list-sessions * Use contractions in virtualeventwebinar-post-registrations * Use contractions in webpart-delete * Use contractions in workbook-tablerowoperationresult * Use contractions in x509certificateauthenticationmethodconfiguration-get * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * Update simulation-update.md for requirement around simuation state (#9936) * Update simulation-update.md for requirement around simuation state Clarified simulation state as draft as required and updated description. * Minor fixes --------- Co-authored-by: Faith Moraa Ombongi * Publish main to live - reconcile divergence 2026-06-17 Sets live content identical to main to clear the squash-induced divergence. No manual live hotfixes existed. * Reconcile live to main (unblock auto-publish #29094) (#29095) * Publish main to live - reconcile divergence (refresh 2026-06-17 18:25) Sets live content identical to current main. main is authoritative; no live-only hotfixes. * Update tenantappmanagementpolicy-get.md --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Remove license-type availability banner from Graph beta eDiscovery overview Replaces preview/SKU-specific note in ediscovery-ediscoveryapioverview.md with neutral guidance pointing to Microsoft Purview eDiscovery documentation. Addresses customer confusion (IcM 51000001064141) about creating searches in standard eDiscovery cases via Graph. * Merge to publish. (#29097) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update reference TOC (#29058) Co-authored-by: Microsoft Graph DevX Tooling * Update profilePropertySetting docs (#29038) * Updated according to KnutB's spec * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update peopleadminsettings-list-profilepropertysettings.md * Update profilepropertysetting.md * Move extended Delete description from resource table to API topic * Apply suggestion from @MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222741 (#29057) Co-authored-by: Microsoft Graph DevX Tooling * Update generated permissions tables with build 222558 (#29051) Co-authored-by: Microsoft Graph DevX Tooling * Revise traceRouteHop availability in callRecord docs (#29055) * Revise traceRouteHop availability in callRecord docs * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update whats-new-overview.md (#29010) * Update whats-new-overview.md * Update whats-new-overview.md --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update pull request template to remove documentation plan requirement (#29069) Removed the requirement to attach the documentation plan for AI-assisted docs authoring. * 2026-06-15: Automated permissions reference update (#29068) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Update generated permissions tables with build 222982 (#29067) Co-authored-by: Microsoft Graph DevX Tooling * Update whats-new-overview.md (#29064) * Update whats-new-overview.md * Update whats-new-overview.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add tenantId property to userAccount resource (#28845) * Add tenantId field to security user account resource Added tenantId field to user account resource details. * Update userAccount resource date and add tenantId * Update date for security userAccount resource * Update changelog with new API changes Added new changelog entries for tenantId and categories properties in userAccount resource. * Apply review suggestions: update changelog dates and add What's New entry for tenantId on userAccount * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi --------- Co-authored-by: Faith Moraa Ombongi Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Add mergeIncidents and moveAlerts v1.0 API docs (#28851) * Add mergeIncidents and moveAlerts v1.0 API docs Add v1.0 documentation for security action endpoints: - API pages: security-incident-mergeincidents.md, security-alert-movealerts.md - Resource pages: security-mergeresponse.md, security-correlationreason.md - Permission and RBAC include files - Update security-incident.md and security-alert.md Methods tables - Update v1.0 toc.mapping.json with new complex types - Add v1.0 changelog entries for all new artifacts Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Fix comments * Apply suggestion from @FaithOmbongi * Update what's new --------- Co-authored-by: Harel Damti Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * Update reference TOC (#29071) Co-authored-by: Microsoft Graph DevX Tooling * Update people doc (#29023) * Updated people & workplace intelligence document according to Knut Brandrud's proposal reviewed within our team. * Minor typo Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Address review comments in social intelligence overview * Apply remaining review thread doc fixes * minor date fix Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * date --------- Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add isVisible property to lpc v1.0 (#28915) * Add isVisible property to lpc v1.0 * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update Microsoft.People.json * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @Danipocket --------- Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply simulation-update v1.0 PR #9936 changes to beta file (#29077) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Remove unsupported expand query from getRetentionLabel docs (#29080) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated files with build 223158 (#29075) Co-authored-by: Microsoft Graph DevX Tooling * Resolve syncing conflicts from repo_sync_working_branch to main (#29076) * Enhance clarity in API documentation by updating request and response example phrasing across multiple files * Apply suggestions from code review Co-authored-by: Jarbas Horst * Fix trailing pipe tables 1.0 (#9930) * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudclipboardroot-list-items * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in itemactivitystat-getactivitybyinterval * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in tablecolumncollection-add * Fix trailing pipe formatting in user-findmeetingtimes * Apply suggestions from code review Co-authored-by: Jarbas Horst --------- Co-authored-by: Jarbas Horst * Fix missing closing codeblock beta (#9919) * Fix formatting of HTTP request example in accesspackageresource-list-uploadsessions.md * Fix missing closing code block in security-labelsroot-delete-citations.md * Fix missing closing code block in singlevaluelegacyextendedproperty-get.md * Fix missing closing code block in usersettings-list-windows.md * Fix missing closing code block in webapplicationfirewallprovider-verify.md * Fix missing closing code block in windowssetting-get.md * Fix missing closing code block in windowssetting-list-instances.md * fix(beta api): close malformed http code fence in windowssettinginstance-get * Apply suggestions from code review Co-authored-by: Jarbas Horst --------- Co-authored-by: Jarbas Horst * Update synchronization-synchronization-list-templates.md (#9922) Update headings from H3 to H2. * Update https://github.com/microsoftgraph/microsoft-graph-docs-contrib/edit/main/api-reference/v1.0/api/synchronization-synchronizationtemplate-get.md (#9923) Update headings from H3 to H2. * Update synchronization-synchronizationtemplate-update.md (#9924) Update headings from H3 to H2. * Update eventmessage-post-attachments.md (#9926) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update event-post-attachments.md (#9925) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update educationassignment-list-resources.md (#9927) Update formatting * Update provisioningobjectsummary-list.md (#9928) Fix typo in error response example section * Fix trailing pipe tables beta (#9929) * Fix trailing pipe formatting in b2cidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bookingbusiness-update * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudpc-retrievecloudpccountbystatus * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in contenttype-associatewithhubsites * Fix trailing pipe formatting in customdataprovidedresourceuploadsession-uploadfile * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in ediscovery-noncustodialdatasource-post * Fix trailing pipe formatting in get-device-command-status * Fix trailing pipe formatting in governancerolesetting-update * Fix trailing pipe formatting in industrydata-inboundapiflow-post * Fix trailing pipe formatting in itemactivity-getbyinterval * Fix trailing pipe formatting in listitem-createlink * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in message-createreply * Fix trailing pipe formatting in networkaccess-reports-getdestinationsummaries * Fix trailing pipe formatting in networkaccess-reports-getdeviceusagesummary * Fix trailing pipe formatting in pagetemplate-delete * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in rbacapplication-post-roleassignmentschedulerequests * Fix trailing pipe formatting in security-collaborationroot-list-analyzedemails * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in send-device-command * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in team-sendactivitynotification * Fix trailing pipe formatting in termstore-relation-post * Fix trailing pipe formatting in user-list-devices * Fix trailing pipe formatting in user-sendmail * Fix trailing pipe formatting in webpart-delete --------- Co-authored-by: Jarbas Horst * Fix missing closing codeblock 1.0 (#9920) * Fix missing closing http fence in security-auditlogquery-list-records * Fix missing closing http fence in userprotectionscopecontainer-compute * Fix missing closing http fence in usersettings-list-windows --------- Co-authored-by: Jarbas Horst * Update date range (#9931) When requesting a date over 28 days the API returns: "Invalid date value specified: 2026-04-06. Only support data for the past 28 days." * Correct date range for email activity report (#9932) https://github.com/microsoftgraph/microsoft-graph-docs-contrib/pull/9931/changes * Change user ID to placeholder in processContent API (#9921) * Change user ID to placeholder in processContent API Updated user ID placeholder in processContent API calls. * Update userdatasecurityandgovernance-processcontent.md Updated example user ID in processContent API calls. * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * Update simulation-update.md for requirement around simuation state (#9936) * Update simulation-update.md for requirement around simuation state Clarified simulation state as draft as required and updated description. * Minor fixes --------- Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Jarbas Horst Co-authored-by: Jarbas Horst Co-authored-by: learn-build-service-prod[bot] <113403604+learn-build-service-prod[bot]@users.noreply.github.com> Co-authored-by: Learn Build Service GitHub App Co-authored-by: Jarbas Horst <26866873+JarbasHorst@users.noreply.github.com> Co-authored-by: Ryutaro Koma Co-authored-by: Micah Warren <26724012+MicahWW@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Vipul <84970543+VipulMSFT@users.noreply.github.com> * Document provisioning workflow support in Lifecycle Workflows (beta) (#28966) * Document provisioning workflow support in Lifecycle Workflows (beta) Add public preview documentation for provisioning workflow features in Microsoft Graph Lifecycle Workflows beta API. New resources: - workflowSubject (abstract base type) - provisioningObjectWorkflowSubject (concrete implementation) - attributeSetEntry (key-value pairs for attribute sets) - awaitedWorkflowProcessingResult (return type) - customTaskExtensionResponseData (extension response) - provisioningAttributeMapping (execution conditions) - subjectProcessingResult (entity for processing results) New API operations: - workflow: activateAndWait - run: list subjectProcessingResults - subjectProcessingResult: get - taskReport: list subjectProcessingResults Updated enumerations: - Added customTaskExtensionReplyMode enum - Added extensibility to lifecycleTaskCategory - Added extensibility to lifecycleWorkflowCategory - Added extensibilityOnDemand to workflowExecutionType Updates to existing resources: - customTaskExtension: added replyMode property - customTaskExtensionCallbackData: added targetSubject property - taskProcessingResult: added workflowSubject property - run: added subjectProcessingResults relationship and list method - taskReport: added subjectProcessingResults relationship and list method - workflow: added activateAndWait method Also includes changelog, What's New, TOC, and permissions updates. Workload: Microsoft.AAD.LCM Changelog GUID: 6a9c6f5d-eeb3-438e-b9f2-4705836e94fe * Clean up temp-docstubs folder Remove temporary authoring input files. Only temp-docstubs-instructions.md should remain. * Fix documentation validation errors - Fix openType metadata in subjectProcessingResult (was 'id', now false) - Remove tab syntax from HTTP-only examples (tabs require multiple SDK examples) * Fix changelog target and add missing complex types to TOC - Fixed changelog: Changed Target from customTaskExtensionCalloutData to customTaskExtensionCallbackData for targetSubject property - Removed workflowSubjectType enum entry (private preview feature) - Added missing complex types to TOC: attributeSetEntry, awaitedWorkflowProcessingResult, customTaskExtensionResponseData, provisioningAttributeMapping, provisioningObjectWorkflowSubject, workflowSubject * Remove taskProcessingResults expansion example - Removed Example 2 that demonstrated expanding taskProcessingResults relationship - Keep only the basic GET example without expansion * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * fix: update resource link prefixes in customTaskExtensionResponseData doc * Fix reference * Updates * Update reference TOC * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update api-reference/beta/api/identitygovernance-taskreport-list-subjectprocessingresults.md Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update api-reference/beta/api/identitygovernance-run-list-subjectprocessingresults.md Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update api-reference/beta/api/identitygovernance-taskreport-list-subjectprocessingresults.md Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update api-reference/beta/api/identitygovernance-run-list-subjectprocessingresults.md Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update perms * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix subject * Updates * Revert "Update perms" This reverts commit 636a2a571984b1f18c187522635abf853b55be2d. * Perms updates * Remove from docstubs * Fix broken link * fixes from code review * Update api-reference/beta/resources/identitygovernance-subjectprocessingresult.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/identitygovernance-awaitedworkflowprocessingresult.md Co-authored-by: Faith Moraa Ombongi * Update callout data * Updated changelog * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Mason Wolff Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * docs: Clarify MTO tenant API permission-to-property mapping and role access (#28886) * docs: clarify MTO tenant API permission-to-property mapping and role access - Add detailed permission-to-property mapping showing which properties are returned for each permission level - Document that Directory.Read.All also grants full read access to multitenant organization tenant resources (delegated or application) - Clarify that ReadBasic.All only returns displayName and tenantId, and only active tenants - Expand RBAC role documentation to specify that Security Reader and Global Reader can only read basic tenant info - Add guidance on which role is needed for full property access - Updated for both v1.0 and beta API references Addresses IcM 31000000597799 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * docs: add Directory.Read.All clarification to GET member endpoint Apply the same permission-to-property mapping to the multitenantorganizationmember-get API (v1.0 and beta). Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * fix: make RBAC include generic (shared across 6 MTO endpoints) The rbac-multitenantorganization-apis-read.md include is consumed by 6 different endpoints returning different resource types. Remove member-specific property names (displayName, tenantId, role, state, etc.) that are incorrect for the non-member endpoints (MTO object, join request, sync policy template, partner config template). Property-specific details remain in the individual API docs where they are correct and scoped to the right resource type. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * fix: add MultiTenantOrganization.Read.All to beta get-member docs * fix: add MultiTenantOrganization.Read.All to v1.0 get-member docs * fix: remove redundant RBAC statement per reviewer feedback * fix: remove redundant RBAC statement from v1.0 per reviewer feedback * Simplify permission callouts in beta list-tenants per reviewer suggestion * Simplify permission callouts in beta get-member per reviewer suggestion * Simplify permission callouts in v1.0 list-tenants per reviewer suggestion * Simplify permission callouts in v1.0 get-member per reviewer suggestion * fix: restore line endings mangled by Apply-Suggestion edits The 4 'Simplify permission callouts' commits collapsed the 4 MTO API doc files into single lines, breaking YAML frontmatter and Markdown structure. This caused the API Doctor validation to fail (h1-missing, title-missing, bookmark-not-found tabs, ms-date-missing, description-missing). This commit restores proper line endings while preserving the reviewer-approved simplified permission-to-property mapping that documents Directory.Read.All as an accepted permission for the MTO endpoints (per IcM 31000000597799 / MSRC 115408). --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update generated permissions tables with build 223315 (#29089) Co-authored-by: Microsoft Graph DevX Tooling * Move lifecycle workflows preview note from May to June 2026 What's New (#29090) * Move lifecycle workflows preview entry to June 2026 section * Apply suggestion from @FaithOmbongi --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * Adding Redirect URI Restrictions in App Management Policies (#28070) * Initial documentation on Redirect URI restrictions in App Management Policies * Update changelog/Microsoft.DirectoryServices.json Co-authored-by: Faith Moraa Ombongi * Update concepts/whats-new-overview.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiblockeddomainconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiwildcardexcludeformats.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiplatformalloweddomainconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiplatformblockeddomainconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiplatformblockedschemeconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiplatformallowedschemeconfiguration.md Co-authored-by: Faith Moraa Ombongi * Doc: update redirect URI restrictions and examples * Doc: add examples for updating redirect URI restrictions * Doc: update examples for tenantAppManagementPolicy to include redirect URI restrictions * Apply suggestion from @FaithOmbongi --------- Co-authored-by: Faith Moraa Ombongi Co-authored-by: Copilot * Add personal distribution lists beta API documentation (#29046) * Add personal distribution lists beta API documentation Add documentation for personal distribution lists in the user's mailbox, including resource types, API methods, permission includes, changelog, What's New, and TOC mapping updates. New resources: - distributionList (entity type, inherits outlookItem) - distributionListMember (entity type) - member (complex type) - recipientType (enum type) New API methods (9): - List/Create/Get/Update/Delete distributionList - addMembers/deleteMembers actions - List/Get distributionListMembers Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.Exchange.json Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Align distributionLists docs with approved CSDL Apply review feedback from API team. CSDL is source of truth; docs now match the schema exactly. Resources: - member: replace emailAddress with key; add routingType and contactId - distributionListMember: replace emailAddress with contactId; add contact navigation property - distributionList: add notes, personIdentifier properties; add singleValueExtendedProperties navigation property; note that members, notes, personIdentifier are not returned by default API methods: - addMembers, deleteMembers: change return from 204 No Content to 200 OK with updated distributionList object; update request and response examples to use key/routingType/recipientType - Create, Update, Get, List distributionLists: remove members from example responses (not returned by default) - Get distributionList: note that members, notes, personIdentifier require explicit `` - List/Get distributionListMembers: replace emailAddress with contactId in example responses Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Revert "Align distributionLists docs with approved CSDL" This reverts commit 6636446866092d92ffbd80419cc67a3cb3bf885e. * Fix documentation clarity and consistency issues - Add clarity note to distributionlist members property - Mark displayName as optional in member complex type - Add read-only indicators to distributionListMember properties - Clarify parameter requirements in addMembers and deleteMembers * Fix PR review comments: align docs with API.md/CSDL source of truth - Fix string casing in JSON representations (String -> string) - Update addMembers/deleteMembers to return distributionList (not 204) - Remove members from default GET/List responses (requires $select) - Rename emailAddress to key in member complex type, add routingType and contactId - Update distributionListMember to use contactId instead of emailAddress - Fix all API examples to use correct property names Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update reference TOC * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * What's new update. * Fix changelog ChangedApiName format for bound actions Remove 'distributionList: ' prefix from addMembers and deleteMembers entries to match the standard changelog format used by other workloads. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> --------- Co-authored-by: Samuel Mwangi (from Dev Box) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Kimani Mwangi Co-authored-by: Microsoft Graph DevX Tooling --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@us… * Fix Read-only capitalization in appscope.md * Fix Read-only capitalization in azureactivedirectorytenant.md * Fix Read-only capitalization in channel.md * Fix Read-only capitalization in chatmessage.md * Fix Read-only capitalization in cloudpc.md * Fix Read-only capitalization in conditionalaccesspolicy.md * Fix Read-only capitalization in connectedorganizationmembers.md * Fix Read-only capitalization in crosscloudazureactivedirectorytenant.md * Fix Read-only capitalization in customaccesspackageworkflowextension.md * Fix Read-only capitalization in delegatedadminrelationship.md * Fix Read-only capitalization in directoryrole.md * Fix Read-only capitalization in externaldomainfederation.md * Fix Read-only capitalization in groupmembers.md * Fix Read-only capitalization in insights-shared.md * Fix Read-only capitalization in insights-trending.md * Fix Read-only capitalization in insights-used.md * Fix Read-only capitalization in passwordsinglesignonfield.md * Fix Read-only capitalization in plannerroster.md * Fix Read-only capitalization in reminder.md * Fix Read-only capitalization in serviceannouncement.md * Fix Read-only capitalization in singleuser.md * Fix Read-only capitalization in teamstab.md * Fix Read-only capitalization in translationpreferences.md * Fix Read-only capitalization in unifiedroleeligibilityscheduleinstance.md * Fix Read-only capitalization in accesspackageresourcerequest.md * Fix Read-only capitalization in accesspackageassignmentpolicy.md * Fix Read-only capitalization in azureactivedirectorytenant.md * Fix Read-only capitalization in channel.md * Fix Read-only capitalization in chatmessage.md * Fix Read-only capitalization in conditionalaccesspolicy.md * Fix Read-only capitalization in crosscloudazureactivedirectorytenant.md * Fix Read-only capitalization in delegatedadminrelationship.md * Fix Read-only capitalization in directoryrole.md * Fix Read-only capitalization in domainidentitysource.md * Fix Read-only capitalization in externaldomainfederation.md * Fix Read-only capitalization in insights-shared.md * Fix Read-only capitalization in insights-trending.md * Fix Read-only capitalization in reminder.md * Fix Read-only capitalization in serviceannouncement.md * Fix Read-only capitalization in rbacapplication-post-roleassignmentschedulerequests.md * Fix Read-only capitalization in rbacapplication-post-roleeligibilityschedulerequests.md * Fix Read-only capitalization in rbacapplication-rolescheduleinstances.md * Fix Read-only capitalization in rbacapplication-roleschedules.md * Fix Read-only capitalization in rbacapplication-post-roleassignmentschedulerequests.md * Fix Read-only capitalization in rbacapplication-post-roleeligibilityschedulerequests.md * Fix Read-only capitalization in rbacapplication-rolescheduleinstances.md * Fix Read-only capitalization in rbacapplication-roleschedules.md * Simplify description for protectionRule addition (#9944) * Repo sync for protected branch (#9945) * Resolve syncing conflicts from repo_sync_working_branch to main (#29086) * Use contractions in userdatasecurityandgovernance-processcontent * Use contractions in user-delta * Use contractions in user-findmeetingtimes * Use contractions in user-get * Use contractions in user-list-calendarview * Use contractions in user-list-events * Use contractions in user-list-mailfolders * Use contractions in user-list-messages * Use contractions in user-list-people * Use contractions in user-list-permissiongrants * Use contractions in userregistrationdetails-get * Use contractions in user-sendmail * Use contractions in verticalsection-update * Use contractions in virtualendpoint-list-serviceplans * Use contractions in virtualeventregistrationconfiguration-list-questions * Use contractions in virtualeventregistrationconfiguration-post-questions * Use contractions in virtualmachinewithawsstoragebucketaccessfinding-get * Use contractions in windowsupdates-deploymentaudience-updateaudiencebyid * Use contractions in windowsupdates-updatableasset-enrollassets * Use contractions in windowsupdates-updatableassetgroup-addmembers * Use contractions in workbook-tablerowoperationresult * Use contractions in x509certificateauthenticationmethodconfiguration-get * Use contractions in accessreviewinstance-update * Use contractions in accessreviewscheduledefinition-update * Use contractions in accessreviewset-post-definitions * Use contractions in accessreviewstage-update * Use contractions in agentidentityblueprint-list * Use contractions in agentidentity-list * Use contractions in agreementfile-get * Use contractions in agreementfile-list-localizations * Use contractions in allowedvalue-get * Use contractions in application-addkey * Use contractions in application-post-applications * Use contractions in application-removekey * Use contractions in application-update * Use contractions in approval-get * Use contractions in approval-list-stages * Use contractions in approvalstage-get * Use contractions in associatedteaminfo-list * Use contractions in attachment-createuploadsession * Use contractions in authenticationcombinationconfiguration-get * Use contractions in authenticationcontextclassreference-get * Use contractions in authenticationeventlistener-get * Use contractions in authentication-list-methods * Use contractions in authenticationmethod-get * Use contractions in authenticationmethodmodedetail-get * Use contractions in authenticationmethodspolicy-get * Use contractions in authenticationstrengthpolicy-get * Use contractions in authenticationstrengthpolicy-list-combinationconfigurations * Use contractions in authenticationstrengthpolicy-usage * Use contractions in authenticationstrengthroot-list-authenticationmethodmodes * Use contractions in backuprestoreroot-list-onedriveforbusinessbrowsesessions * Use contractions in backuprestoreroot-list-sharepointbrowsesessions * Use contractions in basesitepage-list * Use contractions in bitlocker-list-recoverykeys * Use contractions in bookingappointment-update * Use contractions in bookingbusiness-list * Use contractions in bookingcustomer-get * Use contractions in bundle-removeitem * Use contractions in bundle-update * Use contractions in calendar-list-calendarview * Use contractions in call-keepalive * Use contractions in call-list-participants * Use contractions in call-reject * Use contractions in channel-get-members * Use contractions in chat-delete * Use contractions in chat-get * Use contractions in chat-get-members * Use contractions in chat-list-members * Use contractions in contenttype-delete * Use contractions in conversationmember-list * Use contractions in directory-list-customsecurityattributedefinitions * Use contractions in directoryobject-delta * Use contractions in domain-delete * Use contractions in domain-get-rootdomain * Use contractions in domain-list-federationconfiguration * Use contractions in drive-get-specialfolder * Use contractions in driveitem-copy * Use contractions in driveitem-createlink * Use contractions in driveitem-search * Use contractions in driveitemversion-get * Use contractions in educationclass-delta * Use contractions in educationclass-post * Use contractions in entitlementmanagementsettings-get * Use contractions in externalauthenticationmethodconfiguration-get * Use contractions in externalconnectors-externalgroup-update * Use contractions in externalconnectors-externalitem-get * Use contractions in externalconnectors-schema-get * Use contractions in fido2authenticationmethod-list * Use contractions in group-delta * Use contractions in group-list-acceptedsenders * Use contractions in group-list-calendarview * Use contractions in group-post-members * Use contractions in group-update * Use contractions in identitygovernance-insights-workflowsprocessedsummary * Use contractions in identitygovernance-task-get * Use contractions in identitygovernance-workflowtemplate-get * Use contractions in identityuserflowattributeassignment-update * Use contractions in inferenceclassification-list-overrides * Use contractions in internaldomainfederation-get * Use contractions in learningcourseactivity-update * Use contractions in list-get * Use contractions in listitem-delete * Use contractions in listitem-update * Use contractions in mailfolder-list-childfolders * Use contractions in message-createreply * Use contractions in message-createreplyall * Use contractions in message-delta * Use contractions in message-reply * Use contractions in message-replyall * Use contractions in offershiftrequest-get * Use contractions in onlinemeeting-createorget * Use contractions in orgcontact-delta * Use contractions in outlookuser-supportedtimezones * Use contractions in permissiongrantpolicy-update * Use contractions in permission-update * Use contractions in phoneauthenticationmethod-update * Use contractions in plannerassignedtotaskboardtaskformat-update * Use contractions in post-post-attachments * Use contractions in printdocument-createuploadsession * Use contractions in printer-update * Use contractions in printjob-cancel * Use contractions in projectrome-put-activity * Use contractions in qrcode-get * Use contractions in reportroot-getemailactivitycounts * Use contractions in reportroot-getemailactivityusercounts * Use contractions in reportroot-getemailactivityuserdetail * Use contractions in reportroot-getemailappusageappsusercounts * Use contractions in reportroot-getemailappusageusercounts * Use contractions in reportroot-getemailappusageuserdetail * Use contractions in reportroot-getm365appplatformusercounts * Use contractions in reportroot-getm365appusercounts * Use contractions in reportroot-getm365appuserdetail * Use contractions in reportroot-getmailboxusagedetail * Use contractions in reportroot-getmailboxusagemailboxcounts * Use contractions in reportroot-getmailboxusagequotastatusmailboxcounts * Use contractions in reportroot-getmailboxusagestorage * Use contractions in reportroot-getoffice365activationcounts * Use contractions in reportroot-getoffice365activationsuserdetail * Use contractions in reportroot-getoffice365activeusercounts * Use contractions in reportroot-getoffice365activeuserdetail * Use contractions in reportroot-getoffice365groupsactivitycounts * Use contractions in reportroot-getoffice365groupsactivitydetail * Use contractions in reportroot-getoffice365groupsactivityfilecounts * Use contractions in reportroot-getoffice365groupsactivitystorage * Use contractions in reportroot-getoffice365servicesusercounts * Use contractions in reportroot-getonedriveactivityfilecounts * Use contractions in reportroot-getonedriveactivityusercounts * Use contractions in reportroot-getonedriveactivityuserdetail * Use contractions in reportroot-getonedriveusageaccountcounts * Use contractions in reportroot-getonedriveusageaccountdetail * Use contractions in reportroot-getonedriveusagefilecounts * Use contractions in reportroot-getsharepointactivityfilecounts * Use contractions in reportroot-getsharepointactivitypages * Use contractions in reportroot-getsharepointactivityuserdetail * Use contractions in reportroot-getsharepointsiteusagedetail * Use contractions in reportroot-getsharepointsiteusagefilecounts * Use contractions in reportroot-getsharepointsiteusagepages * Use contractions in reportroot-getsharepointsiteusagesitecounts * Use contractions in reportroot-getsharepointsiteusagestorage * Use contractions in reportroot-getskypeforbusinessactivitycounts * Use contractions in reportroot-getskypeforbusinessactivityusercounts * Use contractions in reportroot-getskypeforbusinessactivityuserdetail * Use contractions in reportroot-getskypeforbusinessdeviceusagedistributionusercounts * Use contractions in reportroot-getskypeforbusinessdeviceusageuserdetail * Use contractions in reportroot-getskypeforbusinessorganizeractivityminutecounts * Use contractions in reportroot-getskypeforbusinessparticipantactivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivitycounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityusercounts * Use contractions in reportroot-getteamsdeviceusageusercounts * Use contractions in reportroot-getteamsuseractivityusercounts * Use contractions in reportroot-getteamsuseractivityuserdetail * Use contractions in reportroot-getyammeractivitycounts * Use contractions in reportroot-getyammeractivityusercounts * Use contractions in reportroot-getyammeractivityuserdetail * Use contractions in reportroot-getyammerdeviceusagedistributionusercounts * Use contractions in reportroot-getyammerdeviceusageusercounts * Use contractions in reportroot-getyammerdeviceusageuserdetail * Use contractions in reportroot-getyammergroupsactivitycounts * Use contractions in reportroot-getyammergroupsactivitydetail * Use contractions in riskdetection-get * Use contractions in riskyuser-get * Use contractions in schedulinggroup-delete * Use contractions in schemaextension-delete * Use contractions in security-ediscoverysearch-list-lastestimatestatisticsoperation * Use contractions in security-host-list-childhostpairs * Use contractions in security-host-list-parenthostpairs * Use contractions in security-hostpair-get * Use contractions in security-threatintelligence-list-sslcertificates * Use contractions in servicehealthissue-get * Use contractions in servicehealthissue-incidentreport * Use contractions in serviceprincipal-get * Use contractions in serviceupdatemessage-get * Use contractions in sharedwithchannelteaminfo-get * Use contractions in sharedwithchannelteaminfo-list-allowedmembers * Use contractions in simulationautomation-get * Use contractions in simulation-get * Use contractions in singlevaluelegacyextendedproperty-get * Use contractions in sitepage-publish * Use contractions in sitepage-update * Use contractions in site-search * Use contractions in subjectrightsrequest-list-notes * Use contractions in subscribedsku-list * Use contractions in synchronization-synchronizationschema-delete * Use contractions in synchronization-synchronizationschema-update * Use contractions in teamsapp-delete * Use contractions in teamsapp-publish * Use contractions in teamsapp-update * Use contractions in teamworktag-get * Use contractions in tenantappmanagementpolicy-update * Use contractions in tenantdatasecurityandgovernance-processcontentasync * Use contractions in timeoffrequest-get * Use contractions in todotask-delta * Use contractions in todotask-list-checklistitems * Use contractions in todotask-post-attachments * Use contractions in userdatasecurityandgovernance-processcontent * Use contractions in user-delta * Use contractions in user-findmeetingtimes * Use contractions in user-list-calendarview * Use contractions in user-list-mailfolders * Use contractions in user-list-messages * Use contractions in userregistrationdetails-get * Use contractions in user-sendmail * Use contractions in verticalsection-update * Use contractions in virtualeventregistrationconfiguration-list-questions * Use contractions in virtualeventregistration-list * Use contractions in virtualeventregistration-list-sessions * Use contractions in virtualeventwebinar-post-registrations * Use contractions in webpart-delete * Use contractions in workbook-tablerowoperationresult * Use contractions in x509certificateauthenticationmethodconfiguration-get * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * Update simulation-update.md for requirement around simuation state (#9936) * Update simulation-update.md for requirement around simuation state Clarified simulation state as draft as required and updated description. * Minor fixes --------- Co-authored-by: Faith Moraa Ombongi * Publish main to live - reconcile divergence 2026-06-17 Sets live content identical to main to clear the squash-induced divergence. No manual live hotfixes existed. * Reconcile live to main (unblock auto-publish #29094) (#29095) * Publish main to live - reconcile divergence (refresh 2026-06-17 18:25) Sets live content identical to current main. main is authoritative; no live-only hotfixes. * Update tenantappmanagementpolicy-get.md --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Merge to publish. (#29097) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update reference TOC (#29058) Co-authored-by: Microsoft Graph DevX Tooling * Update profilePropertySetting docs (#29038) * Updated according to KnutB's spec * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update peopleadminsettings-list-profilepropertysettings.md * Update profilepropertysetting.md * Move extended Delete description from resource table to API topic * Apply suggestion from @MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222741 (#29057) Co-authored-by: Microsoft Graph DevX Tooling * Update generated permissions tables with build 222558 (#29051) Co-authored-by: Microsoft Graph DevX Tooling * Revise traceRouteHop availability in callRecord docs (#29055) * Revise traceRouteHop availability in callRecord docs * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update whats-new-overview.md (#29010) * Update whats-new-overview.md * Update whats-new-overview.md --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update pull request template to remove documentation plan requirement (#29069) Removed the requirement to attach the documentation plan for AI-assisted docs authoring. * 2026-06-15: Automated permissions reference update (#29068) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Update generated permissions tables with build 222982 (#29067) Co-authored-by: Microsoft Graph DevX Tooling * Update whats-new-overview.md (#29064) * Update whats-new-overview.md * Update whats-new-overview.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add tenantId property to userAccount resource (#28845) * Add tenantId field to security user account resource Added tenantId field to user account resource details. * Update userAccount resource date and add tenantId * Update date for security userAccount resource * Update changelog with new API changes Added new changelog entries for tenantId and categories properties in userAccount resource. * Apply review suggestions: update changelog dates and add What's New entry for tenantId on userAccount * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi --------- Co-authored-by: Faith Moraa Ombongi Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Add mergeIncidents and moveAlerts v1.0 API docs (#28851) * Add mergeIncidents and moveAlerts v1.0 API docs Add v1.0 documentation for security action endpoints: - API pages: security-incident-mergeincidents.md, security-alert-movealerts.md - Resource pages: security-mergeresponse.md, security-correlationreason.md - Permission and RBAC include files - Update security-incident.md and security-alert.md Methods tables - Update v1.0 toc.mapping.json with new complex types - Add v1.0 changelog entries for all new artifacts Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Fix comments * Apply suggestion from @FaithOmbongi * Update what's new --------- Co-authored-by: Harel Damti Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * Update reference TOC (#29071) Co-authored-by: Microsoft Graph DevX Tooling * Update people doc (#29023) * Updated people & workplace intelligence document according to Knut Brandrud's proposal reviewed within our team. * Minor typo Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Address review comments in social intelligence overview * Apply remaining review thread doc fixes * minor date fix Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * date --------- Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add isVisible property to lpc v1.0 (#28915) * Add isVisible property to lpc v1.0 * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update Microsoft.People.json * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @Danipocket --------- Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply simulation-update v1.0 PR #9936 changes to beta file (#29077) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Remove unsupported expand query from getRetentionLabel docs (#29080) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated files with build 223158 (#29075) Co-authored-by: Microsoft Graph DevX Tooling * Resolve syncing conflicts from repo_sync_working_branch to main (#29076) * Enhance clarity in API documentation by updating request and response example phrasing across multiple files * Apply suggestions from code review Co-authored-by: Jarbas Horst * Fix trailing pipe tables 1.0 (#9930) * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudclipboardroot-list-items * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in itemactivitystat-getactivitybyinterval * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in tablecolumncollection-add * Fix trailing pipe formatting in user-findmeetingtimes * Apply suggestions from code review Co-authored-by: Jarbas Horst --------- Co-authored-by: Jarbas Horst * Fix missing closing codeblock beta (#9919) * Fix formatting of HTTP request example in accesspackageresource-list-uploadsessions.md * Fix missing closing code block in security-labelsroot-delete-citations.md * Fix missing closing code block in singlevaluelegacyextendedproperty-get.md * Fix missing closing code block in usersettings-list-windows.md * Fix missing closing code block in webapplicationfirewallprovider-verify.md * Fix missing closing code block in windowssetting-get.md * Fix missing closing code block in windowssetting-list-instances.md * fix(beta api): close malformed http code fence in windowssettinginstance-get * Apply suggestions from code review Co-authored-by: Jarbas Horst --------- Co-authored-by: Jarbas Horst * Update synchronization-synchronization-list-templates.md (#9922) Update headings from H3 to H2. * Update https://github.com/microsoftgraph/microsoft-graph-docs-contrib/edit/main/api-reference/v1.0/api/synchronization-synchronizationtemplate-get.md (#9923) Update headings from H3 to H2. * Update synchronization-synchronizationtemplate-update.md (#9924) Update headings from H3 to H2. * Update eventmessage-post-attachments.md (#9926) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update event-post-attachments.md (#9925) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update educationassignment-list-resources.md (#9927) Update formatting * Update provisioningobjectsummary-list.md (#9928) Fix typo in error response example section * Fix trailing pipe tables beta (#9929) * Fix trailing pipe formatting in b2cidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bookingbusiness-update * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudpc-retrievecloudpccountbystatus * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in contenttype-associatewithhubsites * Fix trailing pipe formatting in customdataprovidedresourceuploadsession-uploadfile * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in ediscovery-noncustodialdatasource-post * Fix trailing pipe formatting in get-device-command-status * Fix trailing pipe formatting in governancerolesetting-update * Fix trailing pipe formatting in industrydata-inboundapiflow-post * Fix trailing pipe formatting in itemactivity-getbyinterval * Fix trailing pipe formatting in listitem-createlink * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in message-createreply * Fix trailing pipe formatting in networkaccess-reports-getdestinationsummaries * Fix trailing pipe formatting in networkaccess-reports-getdeviceusagesummary * Fix trailing pipe formatting in pagetemplate-delete * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in rbacapplication-post-roleassignmentschedulerequests * Fix trailing pipe formatting in security-collaborationroot-list-analyzedemails * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in send-device-command * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in team-sendactivitynotification * Fix trailing pipe formatting in termstore-relation-post * Fix trailing pipe formatting in user-list-devices * Fix trailing pipe formatting in user-sendmail * Fix trailing pipe formatting in webpart-delete --------- Co-authored-by: Jarbas Horst * Fix missing closing codeblock 1.0 (#9920) * Fix missing closing http fence in security-auditlogquery-list-records * Fix missing closing http fence in userprotectionscopecontainer-compute * Fix missing closing http fence in usersettings-list-windows --------- Co-authored-by: Jarbas Horst * Update date range (#9931) When requesting a date over 28 days the API returns: "Invalid date value specified: 2026-04-06. Only support data for the past 28 days." * Correct date range for email activity report (#9932) https://github.com/microsoftgraph/microsoft-graph-docs-contrib/pull/9931/changes * Change user ID to placeholder in processContent API (#9921) * Change user ID to placeholder in processContent API Updated user ID placeholder in processContent API calls. * Update userdatasecurityandgovernance-processcontent.md Updated example user ID in processContent API calls. * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identit… * cross-tenant migration APIs fixes (#9949) * Update security-retentionlabel-get.md (#9948) Remove extra space char * Bump actions/checkout from 6 to 7 (#9942) Bumps [actions/checkout](https://github.com/actions/checkout) from 6 to 7. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v6...v7) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '7' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: Jarbas Horst <26866873+JarbasHorst@users.noreply.github.com> Co-authored-by: learn-build-service-prod[bot] <113403604+learn-build-service-prod[bot]@users.noreply.github.com> Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Learn Build Service GitHub App Co-authored-by: Vipul <84970543+VipulMSFT@users.noreply.github.com> Co-authored-by: Shlomo Sagir <51323195+shsagir@users.noreply.github.com> Co-authored-by: Nick Robinson Co-authored-by: Matthew M. Co-authored-by: Yuvalabiri <154335961+Yuvalabiri@users.noreply.github.com> Co-authored-by: Ruth Waithera Co-authored-by: Jarbas Horst Co-authored-by: Jarbas Horst Co-authored-by: Ryutaro Koma Co-authored-by: Micah Warren <26724012+MicahWW@users.noreply.github.com> Co-authored-by: masonw1211 <31712004+masonw1211@users.noreply.github.com> Co-authored-by: Mason Wolff Co-authored-by: srinivaspadala-msft Co-authored-by: Anton Vanco <254866915+antonvano@users.noreply.github.com> Co-authored-by: Copilot Co-authored-by: Samuel Mwangi Co-authored-by: Samuel Mwangi (from Dev Box) Co-authored-by: Kimani Mwangi Co-authored-by: Hiro7 <75809971+garchiro7@users.noreply.github.com> Co-authored-by: Simran Moolchandaney <66736756+simoolchandaney@users.noreply.github.com> Co-authored-by: Simran Moolchandaney (from Dev Box) Co-authored-by: Jason Johnston Co-authored-by: myra-ramdenbourg <108485108+myra-ramdenbourg@users.noreply.github.com> Co-authored-by: Alexander Filipin Co-authored-by: Alexander Filipin Co-authored-by: Eunice Waweru <73849846+msewaweru@users.noreply.github.com> Co-authored-by: Ortagus Winfrey <85191667+OWinfreyATL@users.noreply.github.com> Co-authored-by: prasadpatil111 <284865846+prasadpatil111@users.noreply.github.com> Co-authored-by: Prasad Patil Co-authored-by: VISHNU VARDHAN PACHVA <67050501+Vishnu369@users.noreply.github.com> Co-authored-by: Vishnu Vardhan Pachva Co-authored-by: Reeza Ali <223746809+ReezaAli149@users.noreply.github.com> Co-authored-by: Yossi Bruss <287477490+yossibruss-ms@users.noreply.github.com> Co-authored-by: Yossi Bruss Co-authored-by: Yossi Bruss Co-authored-by: aditiijj Co-authored-by: Aditi Jain Co-authored-by: aditiijj <232662544+aditiijj@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/api-doctor.yml | 2 +- .github/workflows/changelog-validation.yml | 2 +- .github/workflows/cloud-support.yml | 6 +- .github/workflows/community.yml | 2 +- .github/workflows/generate-ref-toc.yml | 4 +- .../workflows/permissions-reference-gen.yml | 2 +- .../permissions-tables-generation-pr.yml | 2 +- .github/workflows/snippet-generation-pr.yml | 2 +- .../workflows/temp-docstubs-validation.yml | 2 +- .../api/crosstenantmigrationjob-migrate.md | 1 + .../api/crosstenantmigrationjob-validate.md | 31 ---- .../beta/api/plannerplan-list-historyitems.md | 161 ++++++++++++++++++ .../beta/api/security-detectionrule-get.md | 38 +---- .../beta/api/security-detectionrule-update.md | 37 +--- ...ecurity-rulesroot-delete-detectionrules.md | 39 +---- .../security-rulesroot-list-detectionrules.md | 37 +--- .../security-rulesroot-post-detectionrules.md | 33 +--- .../api/virtualeventsroot-post-townhalls.md | 7 - .../api/virtualeventsroot-post-webinars.md | 7 - ...annerplan-list-historyitems-permissions.md | 12 ++ ...sroot-delete-detectionrules-permissions.md | 1 - ...lesroot-list-detectionrules-permissions.md | 1 - ...lesroot-post-detectionrules-permissions.md | 1 - ...irtualeventtownhall-javascript-snippets.md | 2 +- ...virtualeventwebinar-javascript-snippets.md | 2 +- .../crosstenant-migration-overview.md | 8 +- .../beta/resources/crosstenantmigrationjob.md | 2 +- api-reference/beta/resources/enums.md | 19 +++ .../beta/resources/planner-overview.md | 5 + api-reference/beta/resources/plannerdelta.md | 46 +++++ .../beta/resources/plannerhistoryitem.md | 63 +++++++ api-reference/beta/resources/plannerplan.md | 2 + .../beta/resources/plannertaskdata.md | 105 ++++++++++++ .../beta/resources/plannertaskdetailsdata.md | 65 +++++++ .../beta/resources/taskhistoryitem.md | 70 ++++++++ api-reference/beta/toc/security/toc.yml | 14 ++ .../beta/toc/tasks-and-plans/toc.yml | 14 ++ api-reference/beta/toc/toc.mapping.json | 9 + .../accesspackage-post-resourcerolescopes.md | 93 ---------- ...tlementmanagement-post-resourcerequests.md | 62 ------- .../v1.0/api/security-retentionlabel-get.md | 2 +- ...estions-filterbycurrentuser-permissions.md | 3 +- ...age-list-resourcerolescopes-permissions.md | 3 +- changelog/Microsoft.Office.Tasks.json | 74 ++++++++ concepts/whats-new-overview.md | 35 +++- 45 files changed, 736 insertions(+), 392 deletions(-) create mode 100644 api-reference/beta/api/plannerplan-list-historyitems.md create mode 100644 api-reference/beta/includes/permissions/plannerplan-list-historyitems-permissions.md create mode 100644 api-reference/beta/resources/plannerdelta.md create mode 100644 api-reference/beta/resources/plannerhistoryitem.md create mode 100644 api-reference/beta/resources/plannertaskdata.md create mode 100644 api-reference/beta/resources/plannertaskdetailsdata.md create mode 100644 api-reference/beta/resources/taskhistoryitem.md diff --git a/.github/workflows/api-doctor.yml b/.github/workflows/api-doctor.yml index e5484dfcdb5..dd05a6737f1 100644 --- a/.github/workflows/api-doctor.yml +++ b/.github/workflows/api-doctor.yml @@ -26,7 +26,7 @@ jobs: # Also required by Windows - run: git config --global core.longpaths true - name: Checkout docs repo - uses: actions/checkout@v6 + uses: actions/checkout@v7 - name: Setup .NET uses: actions/setup-dotnet@v5 with: diff --git a/.github/workflows/changelog-validation.yml b/.github/workflows/changelog-validation.yml index ee18ae17e42..0ce9567e82d 100644 --- a/.github/workflows/changelog-validation.yml +++ b/.github/workflows/changelog-validation.yml @@ -9,7 +9,7 @@ jobs: verify-json-validation: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - name: Validate Changelog JSONs with Schema run: | ./scripts/validate-changelog-json.ps1 diff --git a/.github/workflows/cloud-support.yml b/.github/workflows/cloud-support.yml index 66ef985968f..d8dac12d7dd 100644 --- a/.github/workflows/cloud-support.yml +++ b/.github/workflows/cloud-support.yml @@ -16,16 +16,16 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout docs repo - uses: actions/checkout@v6 + uses: actions/checkout@v7 with: path: docs - name: Checkout metadata repo - uses: actions/checkout@v6 + uses: actions/checkout@v7 with: repository: microsoftgraph/msgraph-metadata path: metadata - name: Checkout tool repo - uses: actions/checkout@v6 + uses: actions/checkout@v7 with: repository: microsoftgraph/msgraph-cloud-support path: tool diff --git a/.github/workflows/community.yml b/.github/workflows/community.yml index 3d77503ba04..dbccd45eee0 100644 --- a/.github/workflows/community.yml +++ b/.github/workflows/community.yml @@ -15,5 +15,5 @@ jobs: GH_TOKEN: ${{ github.token }} runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - run: gh pr edit ${{ github.event.number }} --milestone "Community Contributions" diff --git a/.github/workflows/generate-ref-toc.yml b/.github/workflows/generate-ref-toc.yml index b96c4ab5fab..c228f3a84a6 100644 --- a/.github/workflows/generate-ref-toc.yml +++ b/.github/workflows/generate-ref-toc.yml @@ -31,12 +31,12 @@ jobs: result: ${{ steps.commit-if-needed.outputs.result }} steps: - name: Checkout docs repo - uses: actions/checkout@v6 + uses: actions/checkout@v7 with: ref: ${{ inputs.target }} path: docs - name: Checkout tool repo - uses: actions/checkout@v6 + uses: actions/checkout@v7 with: repository: microsoftgraph/msgraph-toc-gen path: tool diff --git a/.github/workflows/permissions-reference-gen.yml b/.github/workflows/permissions-reference-gen.yml index f12d7c0bfce..897e29d16f2 100644 --- a/.github/workflows/permissions-reference-gen.yml +++ b/.github/workflows/permissions-reference-gen.yml @@ -20,7 +20,7 @@ jobs: run: git config --system core.longpaths true - name: Checkout microsoft-graph-docs - uses: actions/checkout@v6 + uses: actions/checkout@v7 with: path: docs diff --git a/.github/workflows/permissions-tables-generation-pr.yml b/.github/workflows/permissions-tables-generation-pr.yml index 98f7885c480..872c9fb50bf 100644 --- a/.github/workflows/permissions-tables-generation-pr.yml +++ b/.github/workflows/permissions-tables-generation-pr.yml @@ -21,7 +21,7 @@ jobs: runs-on: ubuntu-latest # https://github.com/actions/virtual-environments/blob/master/images/linux/Ubuntu1804-README.md steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 with: fetch-depth: 10 # number of commits to fetch so that we can query history diff --git a/.github/workflows/snippet-generation-pr.yml b/.github/workflows/snippet-generation-pr.yml index 23b1e8ff7f7..e0d51001dea 100644 --- a/.github/workflows/snippet-generation-pr.yml +++ b/.github/workflows/snippet-generation-pr.yml @@ -22,7 +22,7 @@ jobs: runs-on: ubuntu-latest # https://github.com/actions/virtual-environments/blob/master/images/linux/Ubuntu1804-README.md steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 with: fetch-depth: 10 # number of commits to fetch so that we can query history diff --git a/.github/workflows/temp-docstubs-validation.yml b/.github/workflows/temp-docstubs-validation.yml index d70e9ecf093..00a74f29a31 100644 --- a/.github/workflows/temp-docstubs-validation.yml +++ b/.github/workflows/temp-docstubs-validation.yml @@ -9,7 +9,7 @@ jobs: verify-temp-docstubs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - name: Validate temp-docstubs folder run: | ./scripts/validate-temp-docstubs.ps1 diff --git a/api-reference/beta/api/crosstenantmigrationjob-migrate.md b/api-reference/beta/api/crosstenantmigrationjob-migrate.md index 5f9ffffa032..3a2c669f645 100644 --- a/api-reference/beta/api/crosstenantmigrationjob-migrate.md +++ b/api-reference/beta/api/crosstenantmigrationjob-migrate.md @@ -68,6 +68,7 @@ This method can also return the following error codes in the response body. ### Request The following example shows a request. + # [HTTP](#tab/http) +[!INCLUDE [permissions-table](../includes/permissions/plannerplan-list-historyitems-permissions.md)] + +## HTTP request + + +``` http +GET /planner/plans/{plan-id}/historyItems +``` + +## Optional query parameters + +This method supports the `$filter` OData query parameter to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). + +Use `$filter` on the **occurredDateTime** property to retrieve history items within a specific time range. + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a collection of [plannerHistoryItem](../resources/plannerhistoryitem.md) objects in the response body. + +## Examples + +### Request + +The following example shows how to get task [history items](../resources/plannerhistoryitem.md) for a plan with a date filter. + + +``` http +GET https://graph.microsoft.com/beta/planner/plans/nETqF5FS2LkCp935s-FIFm2QAFkHM/historyItems?$filter=occurredDateTime gt 2025-11-01T00:00:00Z and occurredDateTime lt 2025-12-01T00:00:00Z +``` + +### Response + +The following example shows the response. + +>**Note:** The response object shown here might be shortened for readability. + + +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/beta/$metadata#planner/plans('nETqF5FS2LkCp935s-FIFm2QAFkHM')/historyItems", + "value": [ + { + "@odata.type": "#microsoft.graph.taskHistoryItem", + "id": "historyItem-id-1", + "planId": "nETqF5FS2LkCp935s-FIFm2QAFkHM", + "entityId": "dYsWHy7-WEGMQsMaPBv_9ZUAOzQz", + "entityType": "task", + "eventType": "created", + "occurredDateTime": "2026-01-12T14:16:26.5896957Z", + "actor": { + "user": { + "displayName": null, + "id": "6699294c-9300-4ad8-a768-af3407b5e0fe" + }, + "application": { + "displayName": null, + "id": "09abbdfd-ed23-44ee-a2d9-a627a41c90f3" + } + }, + "oldData": null, + "newData": { + "createdBy": { + "user": { + "displayName": null, + "id": "6699294c-9300-4ad8-a768-af3407b5e0fe" + }, + "application": { + "displayName": null, + "id": "09abbdfd-ed23-44ee-a2d9-a627a41c90f3" + } + }, + "bucketId": "0LHuWF3PrUqKYzq-TcR3oJUADFn8", + "isArchived": false, + "title": "Initial Task Title", + "orderHint": "8584333795589189673P,", + "percentComplete": 0, + "priority": 5 + } + }, + { + "@odata.type": "#microsoft.graph.taskHistoryItem", + "id": "historyItem-id-2", + "planId": "nETqF5FS2LkCp935s-FIFm2QAFkHM", + "entityId": "dYsWHy7-WEGMQsMaPBv_9ZUAOzQz", + "entityType": "task", + "eventType": "updated", + "occurredDateTime": "2026-01-12T15:16:26.5896957Z", + "actor": { + "user": { + "displayName": null, + "id": "6699294c-9300-4ad8-a768-af3407b5e0fe" + }, + "application": { + "displayName": null, + "id": "09abbdfd-ed23-44ee-a2d9-a627a41c90f3" + } + }, + "oldData": { + "title": "Initial Task Title", + "percentComplete": 0 + }, + "newData": { + "title": "Updated Task Title", + "percentComplete": 50 + } + } + ] +} +``` diff --git a/api-reference/beta/api/security-detectionrule-get.md b/api-reference/beta/api/security-detectionrule-get.md index f5d53805ba1..f69114fb817 100644 --- a/api-reference/beta/api/security-detectionrule-get.md +++ b/api-reference/beta/api/security-detectionrule-get.md @@ -22,7 +22,11 @@ With custom detections, you can proactively monitor for and respond to various e Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-detectionrule-get-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-read](../includes/rbac-for-apis/rbac-security-detection-rules-apis-read.md)] @@ -61,7 +65,6 @@ If successful, this method returns a `200 OK` response code and a [microsoft.gra The following example shows a request. -# [HTTP](#tab/http) + [!INCLUDE [permissions-table](../includes/permissions/security-detectionrule-update-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-write](../includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md)] @@ -66,7 +70,6 @@ If successful, this method returns a `200 OK` response code and a [microsoft.gra The following example shows a request. -# [HTTP](#tab/http) + + [!INCLUDE [permissions-table](../includes/permissions/security-rulesroot-delete-detectionrules-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-write](../includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md)] @@ -55,7 +60,6 @@ If successful, this method returns a `204 No Content` response code. The following example shows a request. -# [HTTP](#tab/http) ``` http HTTP/1.1 204 No Content + ``` diff --git a/api-reference/beta/api/security-rulesroot-list-detectionrules.md b/api-reference/beta/api/security-rulesroot-list-detectionrules.md index 9f0844735ca..b0e2c7a96f1 100644 --- a/api-reference/beta/api/security-rulesroot-list-detectionrules.md +++ b/api-reference/beta/api/security-rulesroot-list-detectionrules.md @@ -20,7 +20,11 @@ Get a list of [detectionRule](../resources/security-detectionrule.md) objects an Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-rulesroot-list-detectionrules-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-read](../includes/rbac-for-apis/rbac-security-detection-rules-apis-read.md)] @@ -59,7 +63,6 @@ If successful, this method returns a `200 OK` response code and a collection of The following example shows a request. -# [HTTP](#tab/http) + [!INCLUDE [permissions-table](../includes/permissions/security-rulesroot-post-detectionrules-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-write](../includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md)] @@ -69,7 +73,6 @@ If successful, this method returns a `201 Created` response code and a [microsof The following example shows a request. -# [HTTP](#tab/http) +``` json +{ + "@odata.type": "#microsoft.graph.plannerDelta", + "id": "String (identifier)" +} +``` diff --git a/api-reference/beta/resources/plannerhistoryitem.md b/api-reference/beta/resources/plannerhistoryitem.md new file mode 100644 index 00000000000..a59ed101d4e --- /dev/null +++ b/api-reference/beta/resources/plannerhistoryitem.md @@ -0,0 +1,63 @@ +--- +title: "plannerHistoryItem resource type" +description: "An abstract type that represents a record of a change made to an entity within a planner plan." +author: "praspati" +ms.date: 05/15/2026 +ms.localizationpriority: medium +ms.subservice: "planner" +doc_type: resourcePageType +--- + +# plannerHistoryItem resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +An abstract type that represents a record of a change made to an entity within a [planner plan](../resources/plannerplan.md). This resource serves as the base for specific history item types. + +Inherits from [plannerDelta](../resources/plannerdelta.md). + +## Methods +|Method|Return type|Description| +|:---|:---|:---| +|[List](../api/plannerplan-list-historyitems.md)|[plannerHistoryItem](../resources/plannerhistoryitem.md) collection|Get the [history](../resources/plannerhistoryitem.md) of changes made to tasks within a [plan](../resources/plannerplan.md).| + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|actor|[identitySet](../resources/identityset.md)|The identity of the user or application that performed the change.| +|entityId|String|The ID of the entity that was changed.| +|entityType|historyEntityType|The type of entity that was changed. The possible values are: `task`, `unknownFutureValue`.| +|eventType|historyEventType|The type of change event that occurred. The possible values are: `created`, `updated`, `deleted`, `undeleted`, `moved`, `unknownFutureValue`.| +|id|String|The unique identifier for the history item. Inherited from [plannerDelta](../resources/plannerdelta.md).| +|occurredDateTime|DateTimeOffset|The date and time when the change occurred. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2024, is `2024-01-01T00:00:00Z`.| +|planId|String|The ID of the plan that contains the changed entity.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.plannerHistoryItem", + "id": "String (identifier)", + "planId": "String", + "entityId": "String", + "entityType": "String", + "eventType": "String", + "occurredDateTime": "String (timestamp)", + "actor": { + "@odata.type": "microsoft.graph.identitySet" + } +} +``` diff --git a/api-reference/beta/resources/plannerplan.md b/api-reference/beta/resources/plannerplan.md index 39bb0f3532f..f13c3a1ab94 100644 --- a/api-reference/beta/resources/plannerplan.md +++ b/api-reference/beta/resources/plannerplan.md @@ -31,6 +31,7 @@ Represents a plan in Microsoft 365. Either a [group](group.md) or a [user](user. |[List plan tasks](../api/plannerplan-list-tasks.md) |[plannerTask](plannertask.md) collection| Get a **plannerTask** object collection.| |[Get delta](../api/plannerplan-delta.md) | [plannerPlan](../resources/plannerplan.md) collection | Get newly created, updated, or deleted **plannerPlan** objects in either a **group** or a [plannerRoster](plannerroster.md) type container without having to perform a full read of the entire resource collection. | |[Get usage rights](../api/plannerplan-getusagerights.md)|[planUsageRight](../resources/planusageright.md)|Get the usage rights for a specific [plan](../resources/plannerplan.md) based on its sensitivity label assignment and the requesting user's permissions.| +|[List history items](../api/plannerplan-list-historyitems.md)|[plannerHistoryItem](plannerhistoryitem.md) collection|Get the [history](../resources/plannerhistoryitem.md) of changes made to tasks within a [plan](../resources/plannerplan.md).| ## Properties | Property | Type |Description| @@ -53,6 +54,7 @@ Represents a plan in Microsoft 365. Either a [group](group.md) or a [user](user. |:---------------|:--------|:----------| |buckets|[plannerBucket](plannerbucket.md) collection| Collection of buckets in the plan. Read-only. Nullable.| |details|[plannerPlanDetails](plannerplandetails.md)| Extra details about the plan. Read-only. Nullable. | +|historyItems|[plannerHistoryItem](plannerhistoryitem.md) collection| Collection of history items for entities in the plan. Read-only. Nullable. | |tasks|[plannerTask](plannertask.md) collection| Collection of tasks in the plan. Read-only. Nullable. | ## JSON representation diff --git a/api-reference/beta/resources/plannertaskdata.md b/api-reference/beta/resources/plannertaskdata.md new file mode 100644 index 00000000000..dce32908a3e --- /dev/null +++ b/api-reference/beta/resources/plannertaskdata.md @@ -0,0 +1,105 @@ +--- +title: "plannerTaskData resource type" +description: "Represents a snapshot of a planner task at a specific point in time." +author: "praspati" +ms.date: 05/15/2026 +ms.localizationpriority: medium +ms.subservice: "planner" +doc_type: resourcePageType +--- + +# plannerTaskData resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a snapshot of a [planner task](../resources/plannertask.md) at a specific point in time. This resource is used in [taskHistoryItem](../resources/taskhistoryitem.md) to capture the state of a task before and after changes. + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|activeChecklistItemCount|Int32|The number of incomplete checklist items whose value is set to `false`.| +|appliedCategories|[plannerAppliedCategories](../resources/plannerappliedcategories.md)|The categories to which the task is applied.| +|archivalInfo|[plannerArchivalInfo](../resources/plannerarchivalinfo.md)|Information about who archived or unarchived the task and why.| +|assignments|[plannerAssignments](../resources/plannerassignments.md)|The set of assignees the task is assigned to.| +|bucketId|String|Bucket ID to which the task belongs. The bucket needs to be in the same plan as the task.| +|checklistItemCount|Int32|The number of checklist items that are present on the task.| +|completedBy|[identitySet](../resources/identityset.md)|The identity of the user that completed the task.| +|completedDateTime|DateTimeOffset|The date and time at which the **percentComplete** of the task is set to `100`. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2024, is `2024-01-01T00:00:00Z`.| +|conversationThreadId|String|The thread ID of the conversation on the task that corresponds to the ID of the conversation thread object created in the group.| +|createdBy|[identitySet](../resources/identityset.md)|The identity of the user who created the task.| +|createdDateTime|DateTimeOffset|The date and time at which the task was created. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2024, is `2024-01-01T00:00:00Z`.| +|creationSource|[plannerTaskCreation](../resources/plannertaskcreation.md)|Information about the origin of the task.| +|details|[plannerTaskDetailsData](../resources/plannertaskdetailsdata.md)|Additional details about the task.| +|dueDateTime|DateTimeOffset|The date and time at which the task is due. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2024, is `2024-01-01T00:00:00Z`.| +|hasChat|Boolean|Set to `true` if the task has a chat associated with it; otherwise, `false`.| +|hasDescription|Boolean|Set to `true` if the details object of the task has a nonempty description; otherwise, `false`.| +|isArchived|Boolean|Set to `true` if the task is archived; otherwise, `false`.| +|orderHint|String|Hint used to order items of this type in a list view.| +|percentComplete|Int32|Percentage of task completion. When set to `100`, the task is considered completed.| +|previewType|plannerPreviewType|The type of preview that shows up on the task. The possible values are: `automatic`, `noPreview`, `checklist`, `description`, `reference`.| +|priority|Int32|The priority of the task. Valid values are between `0` and `10`, inclusive. Larger values indicate lower priority. For example, `0` has the highest priority and `10` has the lowest priority.| +|recurrence|[plannerTaskRecurrence](../resources/plannertaskrecurrence.md)|Defines active or inactive recurrence for the task. A `null` value indicates that the recurrence was never defined for the task.| +|referenceCount|Int32|Number of external references that exist on the task.| +|specifiedCompletionRequirements|plannerTaskCompletionRequirements|Indicates all the requirements specified on the task. The possible values are: `none`, `checklistCompletion`, `unknownFutureValue`, `formCompletion`, `approvalCompletion`, `completionInHostedApp`. Use the `Prefer: include-unknown-enum-members` request header to get the following values from this [evolvable enum](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations): `formCompletion` , `approvalCompletion` , `completionInHostedApp`.| +|startDateTime|DateTimeOffset|The date and time at which the task starts. The date and time information uses ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2021 is `2021-01-01T00:00:00Z`.| +|title|String|Title of the task.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.plannerTaskData", + "createdBy": { + "@odata.type": "microsoft.graph.identitySet" + }, + "bucketId": "String", + "isArchived": "Boolean", + "title": "String", + "orderHint": "String", + "percentComplete": "Int32", + "specifiedCompletionRequirements": "String", + "priority": "Int32", + "startDateTime": "String (timestamp)", + "createdDateTime": "String (timestamp)", + "dueDateTime": "String (timestamp)", + "hasDescription": "Boolean", + "hasChat": "Boolean", + "previewType": "String", + "completedDateTime": "String (timestamp)", + "completedBy": { + "@odata.type": "microsoft.graph.identitySet" + }, + "referenceCount": "Int32", + "checklistItemCount": "Int32", + "activeChecklistItemCount": "Int32", + "appliedCategories": { + "@odata.type": "microsoft.graph.plannerAppliedCategories" + }, + "assignments": { + "@odata.type": "microsoft.graph.plannerAssignments" + }, + "conversationThreadId": "String", + "creationSource": { + "@odata.type": "microsoft.graph.plannerTaskCreation" + }, + "recurrence": { + "@odata.type": "microsoft.graph.plannerTaskRecurrence" + }, + "archivalInfo": { + "@odata.type": "microsoft.graph.plannerArchivalInfo" + }, + "details": { + "@odata.type": "microsoft.graph.plannerTaskDetailsData" + } +} +``` diff --git a/api-reference/beta/resources/plannertaskdetailsdata.md b/api-reference/beta/resources/plannertaskdetailsdata.md new file mode 100644 index 00000000000..e82a3f44a66 --- /dev/null +++ b/api-reference/beta/resources/plannertaskdetailsdata.md @@ -0,0 +1,65 @@ +--- +title: "plannerTaskDetailsData resource type" +description: "Represents a snapshot of additional details about a planner task at a specific point in time." +author: "praspati" +ms.date: 05/15/2026 +ms.localizationpriority: medium +ms.subservice: "planner" +doc_type: resourcePageType +--- + +# plannerTaskDetailsData resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a snapshot of additional [details](../resources/plannertaskdetails.md) about a [planner task](../resources/plannertask.md) at a specific point in time. This resource is used in [plannerTaskData](../resources/plannertaskdata.md) to capture extended task information before and after changes. + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|approvalAttachment|[plannerBaseApprovalAttachment](../resources/plannerbaseapprovalattachment.md)|Detailed information about the approval that is attached to the task.| +|checklist|[plannerChecklistItems](../resources/plannerchecklistitems.md)|The collection of checklist items on the task.| +|completionRequirements|[plannerTaskCompletionRequirementDetails](../resources/plannertaskcompletionrequirementdetails.md)|Contains detailed information about requirements on the task.| +|description|String|Description of the task.| +|forms|[plannerFormsDictionary](../resources/plannerformsdictionary.md)|The collection of forms associated with the task.| +|notes|[itemBody](../resources/itembody.md)|Rich text description of the task for use by applications that support HTML content.| +|previewType|plannerPreviewType|The type of preview that shows up on the task. The possible values are: `automatic`, `noPreview`, `checklist`, `description`, `reference`.| +|references|[plannerExternalReferences](../resources/plannerexternalreferences.md)|The collection of references on the task.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.plannerTaskDetailsData", + "description": "String", + "notes": { + "@odata.type": "microsoft.graph.itemBody" + }, + "previewType": "String", + "references": { + "@odata.type": "microsoft.graph.plannerExternalReferences" + }, + "checklist": { + "@odata.type": "microsoft.graph.plannerChecklistItems" + }, + "forms": { + "@odata.type": "microsoft.graph.plannerFormsDictionary" + }, + "completionRequirements": { + "@odata.type": "microsoft.graph.plannerTaskCompletionRequirementDetails" + }, + "approvalAttachment": { + "@odata.type": "microsoft.graph.plannerBaseApprovalAttachment" + } +} +``` diff --git a/api-reference/beta/resources/taskhistoryitem.md b/api-reference/beta/resources/taskhistoryitem.md new file mode 100644 index 00000000000..e0fc45566e3 --- /dev/null +++ b/api-reference/beta/resources/taskhistoryitem.md @@ -0,0 +1,70 @@ +--- +title: "taskHistoryItem resource type" +description: "Represents a record of a change made to a task within a planner plan." +author: "praspati" +ms.date: 05/15/2026 +ms.localizationpriority: medium +ms.subservice: "planner" +doc_type: resourcePageType +--- + +# taskHistoryItem resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a record of a change made to a task within a [planner plan](../resources/plannerplan.md). Use this resource to track the history of task modifications, including creation, updates, deletions, and moves. + +Inherits from [plannerHistoryItem](../resources/plannerhistoryitem.md). + +## Methods + +For the list of supported methods, see [plannerHistoryItem](../resources/plannerhistoryitem.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|actor|[identitySet](../resources/identityset.md)|The identity of the user or application that performed the change. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md).| +|entityId|String|The ID of the task that was changed. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md).| +|entityType|historyEntityType|The type of entity that was changed. The possible values are: `task`, `unknownFutureValue`. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md). | +|eventType|historyEventType|The type of change event that occurred. The possible values are: `created`, `updated`, `deleted`, `undeleted`, `moved`, `unknownFutureValue`. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md).| +|id|String|The unique identifier for the history item. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md).| +|newData|[plannerTaskData](../resources/plannertaskdata.md)|A snapshot of the task state after the change. This property is `null` for deletion events.| +|occurredDateTime|DateTimeOffset|The date and time when the change occurred. The date and time information uses ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2021 is `2021-01-01T00:00:00Z`. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md).| +|oldData|[plannerTaskData](../resources/plannertaskdata.md)|A snapshot of the task state before the change. This property is `null` for creation and undeletion events.| +|planId|String|The ID of the plan that contains the task. Inherited from [plannerHistoryItem](../resources/plannerhistoryitem.md).| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.taskHistoryItem", + "id": "String (identifier)", + "planId": "String", + "entityId": "String", + "entityType": "String", + "eventType": "String", + "occurredDateTime": "String (timestamp)", + "actor": { + "@odata.type": "microsoft.graph.identitySet" + }, + "oldData": { + "@odata.type": "microsoft.graph.plannerTaskData" + }, + "newData": { + "@odata.type": "microsoft.graph.plannerTaskData" + } +} +``` diff --git a/api-reference/beta/toc/security/toc.yml b/api-reference/beta/toc/security/toc.yml index 94b547bdda2..aa7e5e53d1b 100644 --- a/api-reference/beta/toc/security/toc.yml +++ b/api-reference/beta/toc/security/toc.yml @@ -294,6 +294,20 @@ items: href: ../../resources/security-auditinfo.md - name: Custom detection rules items: + - name: Rules root + items: + - name: Rules root + href: ../../resources/security-rulesroot.md + - name: List + href: ../../api/security-rulesroot-list-detectionrules.md + - name: Create + href: ../../api/security-rulesroot-post-detectionrules.md + - name: Get + href: ../../api/security-detectionrule-get.md + - name: Update + href: ../../api/security-detectionrule-update.md + - name: Delete + href: ../../api/security-rulesroot-delete-detectionrules.md - name: Detection rule items: - name: Detection rule diff --git a/api-reference/beta/toc/tasks-and-plans/toc.yml b/api-reference/beta/toc/tasks-and-plans/toc.yml index 100c969e97a..73b4c72c4e2 100644 --- a/api-reference/beta/toc/tasks-and-plans/toc.yml +++ b/api-reference/beta/toc/tasks-and-plans/toc.yml @@ -30,6 +30,8 @@ items: href: ../../api/plannerplan-delta.md - name: Get usage rights href: ../../api/plannerplan-getusagerights.md + - name: List history items + href: ../../api/plannerplan-list-historyitems.md - name: Planner task items: - name: Planner task @@ -64,6 +66,14 @@ items: href: ../../api/plannerbucket-delete.md - name: Get delta href: ../../api/plannerbucket-delta.md +- name: Planner history item + items: + - name: Planner history item + href: ../../resources/plannerhistoryitem.md + - name: List + href: ../../api/plannerplan-list-historyitems.md + - name: Task history item + href: ../../resources/taskhistoryitem.md - name: Planner plan details items: - name: Planner plan details @@ -334,6 +344,10 @@ items: href: ../../resources/plannertaskcompletionrequirementdetails.md - name: Planner task creation href: ../../resources/plannertaskcreation.md + - name: Planner task data + href: ../../resources/plannertaskdata.md + - name: Planner task details data + href: ../../resources/plannertaskdetailsdata.md - name: Planner task property rule href: ../../resources/plannertaskpropertyrule.md - name: Planner task recurrence diff --git a/api-reference/beta/toc/toc.mapping.json b/api-reference/beta/toc/toc.mapping.json index 36e81887610..2333418203c 100644 --- a/api-reference/beta/toc/toc.mapping.json +++ b/api-reference/beta/toc/toc.mapping.json @@ -3372,6 +3372,7 @@ "plannerPlan", "plannerTask", "plannerBucket", + "plannerHistoryItem", "plannerPlanDetails", "plannerRoster", "plannerUser", @@ -3424,6 +3425,8 @@ "plannerTaskChatReaction", "plannerTaskChatReactionEvent", "plannerTaskCreation", + "plannerTaskData", + "plannerTaskDetailsData", "plannerTaskPropertyRule", "plannerTaskRecurrence", "plannerTeamsPublicationInfo", @@ -3454,6 +3457,12 @@ } ] }, + { + "name": "Planner history item", + "resources": [ + "taskHistoryItem" + ] + }, { "name": "Task formats", "resources": [ diff --git a/api-reference/v1.0/api/accesspackage-post-resourcerolescopes.md b/api-reference/v1.0/api/accesspackage-post-resourcerolescopes.md index f3a485d99b8..0005ddec903 100644 --- a/api-reference/v1.0/api/accesspackage-post-resourcerolescopes.md +++ b/api-reference/v1.0/api/accesspackage-post-resourcerolescopes.md @@ -330,7 +330,6 @@ The following example shows a request to add an active Subscription scoped to a Before this request, you must have already added the access package resource `b09a0288-a83e-4ae6-8a53-bc09aeb966ea` for the Subscription `828b526f-c769-4b19-9797-734b4843b978` to the access package catalog containing this access package. The resource could have been added to the catalog by [creating an access package resource request](entitlementmanagement-post-resourcerequests.md). -# [HTTP](#tab/http) ```msgraph-interactive -GET https://graph.microsoft.com/v1.0/security/labels/retentionLabels/{retentionLabelId} +GET https://graph.microsoft.com/v1.0/security/labels/retentionLabels/{retentionLabelId} ``` # [C#](#tab/csharp) diff --git a/api-reference/v1.0/includes/permissions/accesspackagesuggestions-filterbycurrentuser-permissions.md b/api-reference/v1.0/includes/permissions/accesspackagesuggestions-filterbycurrentuser-permissions.md index 63d88919e01..dcc22a68490 100644 --- a/api-reference/v1.0/includes/permissions/accesspackagesuggestions-filterbycurrentuser-permissions.md +++ b/api-reference/v1.0/includes/permissions/accesspackagesuggestions-filterbycurrentuser-permissions.md @@ -6,7 +6,6 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All| +|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| - diff --git a/api-reference/v1.0/includes/permissions/availableaccesspackage-list-resourcerolescopes-permissions.md b/api-reference/v1.0/includes/permissions/availableaccesspackage-list-resourcerolescopes-permissions.md index 63d88919e01..dcc22a68490 100644 --- a/api-reference/v1.0/includes/permissions/availableaccesspackage-list-resourcerolescopes-permissions.md +++ b/api-reference/v1.0/includes/permissions/availableaccesspackage-list-resourcerolescopes-permissions.md @@ -6,7 +6,6 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All| +|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| - diff --git a/changelog/Microsoft.Office.Tasks.json b/changelog/Microsoft.Office.Tasks.json index aa96e4d836c..8761bced70d 100644 --- a/changelog/Microsoft.Office.Tasks.json +++ b/changelog/Microsoft.Office.Tasks.json @@ -1,5 +1,79 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "ApiChange": "Enumeration", + "ChangedApiName": "historyEntityType", + "ChangeType": "Addition", + "Description": "Added the **historyEntityType** enumeration type.", + "Target": "historyEntityType" + }, + { + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "ApiChange": "Enumeration", + "ChangedApiName": "historyEventType", + "ChangeType": "Addition", + "Description": "Added the **historyEventType** enumeration type.", + "Target": "historyEventType" + }, + { + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "ApiChange": "Member", + "ChangedApiName": "completionInHostedApp", + "ChangeType": "Addition", + "Description": "Added the `completionInHostedApp` member to the **plannerTaskCompletionRequirements** enumeration.", + "Target": "plannerTaskCompletionRequirements" + }, + { + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "ApiChange": "Resource", + "ChangedApiName": "plannerTaskData", + "ChangeType": "Addition", + "Description": "Added the [plannerTaskData](https://learn.microsoft.com/en-us/graph/api/resources/plannerTaskData?view=graph-rest-beta) resource.", + "Target": "plannerTaskData" + }, + { + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "ApiChange": "Resource", + "ChangedApiName": "plannerTaskDetailsData", + "ChangeType": "Addition", + "Description": "Added the [plannerTaskDetailsData](https://learn.microsoft.com/en-us/graph/api/resources/plannerTaskDetailsData?view=graph-rest-beta) resource.", + "Target": "plannerTaskDetailsData" + }, + { + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "ApiChange": "Resource", + "ChangedApiName": "plannerHistoryItem", + "ChangeType": "Addition", + "Description": "Added the [plannerHistoryItem](https://learn.microsoft.com/en-us/graph/api/resources/plannerHistoryItem?view=graph-rest-beta) resource and an associated method.", + "Target": "plannerHistoryItem" + }, + { + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "ApiChange": "Relationship", + "ChangedApiName": "historyItems", + "ChangeType": "Addition", + "Description": "Added the **historyItems** relationship to the [plannerPlan](https://learn.microsoft.com/en-us/graph/api/resources/plannerPlan?view=graph-rest-beta) resource.", + "Target": "plannerPlan" + }, + { + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "ApiChange": "Resource", + "ChangedApiName": "taskHistoryItem", + "ChangeType": "Addition", + "Description": "Added the [taskHistoryItem](https://learn.microsoft.com/en-us/graph/api/resources/taskHistoryItem?view=graph-rest-beta) resource.", + "Target": "taskHistoryItem" + } + ], + "Id": "f43f5db8-bbad-41ba-9b28-b17c2013c888", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-19T07:35:12.7210574Z", + "WorkloadArea": "Tasks and plans", + "SubArea": "" + }, { "ChangeList": [ { diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index a5607d02921..93bd4215fa7 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -28,10 +28,6 @@ Evaluate applications in the Microsoft Entra application gallery by using the [a [Upsert](/graph/api/filestoragecontainer-patch-permissions) (create or update) up to 40 permissions on a [fileStorageContainer](/graph/api/resources/filestoragecontainer) in a single request. The limit increased from 10 to 40 [permission](/graph/api/resources/permission) objects per request. -### Files | Reports - -Added the [getSharePointApiUsage](/graph/api/reportroot-getsharepointapiusage?view=graph-rest-beta&preserve-view=true) method to the [reportRoot](/graph/api/resources/reportroot?view=graph-rest-beta&preserve-view=true) resource to retrieve aggregated OneDrive and SharePoint API usage metrics for a tenant. - ### Identity and access | Governance - Added the [Get](/graph/api/accesspackagesubject-get) and [Update](/graph/api/accesspackagesubject-update) methods to the [accessPackageSubject](/graph/api/resources/accesspackagesubject) resource type to manage the subject lifecycle of external directory users in Microsoft Entra entitlement management. @@ -40,10 +36,16 @@ Added the [getSharePointApiUsage](/graph/api/reportroot-getsharepointapiusage?vi - Added the **approverInformationVisibility** property to the [accessPackageApprovalStage](/graph/api/resources/accesspackageapprovalstage) resource to control whether approver information is visible to requestors. - Added the [endUserSettings](/graph/api/resources/endusersettings) resource type and related methods for configuring access package suggestion behavior, including related people insight levels and approver detail visibility. +### Files | Reports + +Added the [getSharePointApiUsage](/graph/api/reportroot-getsharepointapiusage?view=graph-rest-beta&preserve-view=true) method to the [reportRoot](/graph/api/resources/reportroot?view=graph-rest-beta&preserve-view=true) resource to retrieve aggregated OneDrive and SharePoint API usage metrics for a tenant. + + ### Identity and access | Identity and sign-in Added support for programmatic FIDO2 passkey registration. Use the [creationOptions](/graph/api/fido2authenticationmethod-creationoptions) function to get WebAuthn credential creation options, then complete registration by posting the new **publicKeyCredential** property to the [fido2AuthenticationMethod](/graph/api/resources/fido2authenticationmethod) resource. + ### People and workplace intelligence - Updated [Manage profile source precedence in Microsoft 365](/graph/profilepriority-configure-profilepropertysetting) to clarify supported data sources for HR and work position data, explain how source precedence affects single-value versus multi-value properties, and add guidance on correctly configuring and removing tenant-level settings using the Microsoft Graph API or PowerShell. @@ -65,7 +67,12 @@ Application permissions for the [user: translateExchangeIds](/graph/api/user-tra ## June 2026: New in preview only +### Security | Data security and compliance + +Added the [policyTipAction](/graph/api/resources/policytipaction?view=graph-rest-beta&preserve-view=true) resource type and the `policyTip` member to the **dlpAction** enumeration. This enables applications to receive policy tip guidance as a standalone action when DLP policies are triggered through the processContent and protectionScopes APIs. + ### Agents | Agent identities + Added the **appRoleAssignmentRequired** property to the [agentIdentity](/graph/api/resources/agentidentity?view=graph-rest-beta&preserve-view=true) resource. This property indicates whether users or service principals must be explicitly granted an app role assignment before they can access the agent identity. ### Backup storage @@ -73,6 +80,10 @@ Added the **appRoleAssignmentRequired** property to the [agentIdentity](/graph/a - Added support for full workload backup APIs to protect entire Microsoft 365 workloads (SharePoint Online, OneDrive for work or school, and Exchange Online) with minimal administrative overhead. Create a protection policy that backs up all data in a workload and specify only the items to exclude from backup. For more information, see [exclusionUnitBase](/graph/api/resources/exclusionunitbase?view=graph-rest-beta&preserve-view=true). - Deprecated the **queryExpression** property on the [artifactQuery](/graph/api/resources/artifactquery?view=graph-rest-beta&preserve-view=true) resource. Use the **structuredQueryExpression** property instead to create structured search queries. +### Teamwork and communications | Calls and online meetings + +Use the **isRegistrationRequired** property on the [virtualEventTownhall](/graph/api/resources/virtualeventtownhall?view=graph-rest-beta&preserve-view=true) and [virtualEventWebinar](/graph/api/resources/virtualeventwebinar?view=graph-rest-beta&preserve-view=true) resources to specify if attendees must complete the registration flow before they can attend. + ### Device and app management | Cloud PC Use the [cloudPcProvisioningPolicy: apply](/graph/api/cloudpcprovisioningpolicy-apply?view=graph-rest-beta&preserve-view=true) method to apply policy settings such as `region` and `singleSignOn`. This method also supports reprovisioning for frontline shared mode Cloud PCs by using the **reservePercentage** parameter to control the percentage of Cloud PCs that remain available during the process. @@ -123,8 +134,7 @@ Added the [policyTipAction](/graph/api/resources/policytipaction?view=graph-rest ### Security | Email and collaboration protection -Use the [analyzedEmail](/graph/api/resources/security-analyzedemail?view=graph-rest-beta&preserve-view=true) resource type and its associated methods to give Security Operations teams direct, near real-time access to query email threats, indicators of compromise (IOCs), attack vectors, and evidence in a tenant. Email metadata, verdict information, related underlying entities such as attachments and URLs, filters, and timeline events are returned to support investigation and response. - +- Use the [analyzedEmail](/graph/api/resources/security-analyzedemail?view=graph-rest-beta&preserve-view=true) resource type and its associated methods to give Security Operations teams direct, near real-time access to query email threats, indicators of compromise (IOCs), attack vectors, and evidence in a tenant. Email metadata, verdict information, related underlying entities such as attachments and URLs, filters, and timeline events are returned to support investigation and response. - [List analyzedEmails](/graph/api/security-collaborationroot-list-analyzedemails?view=graph-rest-beta&preserve-view=true) under the collaboration root to retrieve email records for a time range with support for `$filter`, `$top`, `$count`, and `$skiptoken`. - [Get analyzedEmail](/graph/api/security-analyzedemail-get?view=graph-rest-beta&preserve-view=true) to read the properties of a specific email, including its attachments, URLs, threat detection details, and timeline events. - [analyzedEmail: remediate](/graph/api/security-analyzedemail-remediate?view=graph-rest-beta&preserve-view=true) to trigger purge actions (move to junk, move to Inbox, soft delete, hard delete, move to deleted items, move to quarantine) for SOAR integrations, playbooks, and automations. @@ -133,6 +143,10 @@ Use the [analyzedEmail](/graph/api/resources/security-analyzedemail?view=graph-r Added the [sharePointReportSettings](/graph/api/resources/sharepointreportsettings?view=graph-rest-beta&preserve-view=true) resource type and related methods for managing SharePoint API usage report metrics. Use the [enableApiUsageReport](/graph/api/sharepointreportsettings-enableapiusagereport?view=graph-rest-beta&preserve-view=true) and [disableApiUsageReport](/graph/api/sharepointreportsettings-disableapiusagereport?view=graph-rest-beta&preserve-view=true) methods to control which metrics are collected and reported for your tenant. +### Tasks and plans + +Added support for tracking task history in Planner. Use the [plannerHistoryItem](/graph/api/resources/plannerhistoryitem?view=graph-rest-beta&preserve-view=true) resource and [List historyItems](/graph/api/plannerplan-list-historyitems?view=graph-rest-beta&preserve-view=true) method to retrieve the history of changes made to tasks within a plan. The [taskHistoryItem](/graph/api/resources/taskhistoryitem?view=graph-rest-beta&preserve-view=true) resource provides snapshots of task states before and after each change through [plannerTaskData](/graph/api/resources/plannertaskdata?view=graph-rest-beta&preserve-view=true) and [plannerTaskDetailsData](/graph/api/resources/plannertaskdetailsdata?view=graph-rest-beta&preserve-view=true). + ### Teamwork and communications | Calls and online meetings - Use the **isRegistrationRequired** property on the [virtualEventTownhall](/graph/api/resources/virtualeventtownhall?view=graph-rest-beta&preserve-view=true) and [virtualEventWebinar](/graph/api/resources/virtualeventwebinar?view=graph-rest-beta&preserve-view=true) resources to specify if attendees must complete the registration flow before they can attend. @@ -151,6 +165,10 @@ The **timeZone** property of the [schedule](/graph/api/resources/schedule?view=g [Validate](/graph/api/crosstenantmigrationjob-validate?view=graph-rest-beta&preserve-view=true) and [migrate](/graph/api/crosstenantmigrationjob-migrate?view=graph-rest-beta&preserve-view=true) a [cross-tenant migration job](/graph/api/resources/crosstenantmigrationjob?view=graph-rest-beta&preserve-view=true) asynchronously. A previously created job must pass validation before migration can start. +### Tenants | Cross-tenant migration + +[Validate](/graph/api/crosstenantmigrationjob-validate?view=graph-rest-beta&preserve-view=true) and [migrate](/graph/api/crosstenantmigrationjob-migrate?view=graph-rest-beta&preserve-view=true) a [cross-tenant migration job](/graph/api/resources/crosstenantmigrationjob?view=graph-rest-beta&preserve-view=true) asynchronously. A previously created job must pass validation before migration can start. + ### Tenants | Tenant governance Added the **groupDisplayName** property to the [delegatedAdministrationRoleAssignment](/graph/api/resources/tenantgovernanceservices-delegatedadministrationroleassignment?view=graph-rest-beta&preserve-view=true) and [delegatedAdministrationRoleAssignmentSnapshot](/graph/api/resources/tenantgovernanceservices-delegatedadministrationroleassignmentsnapshot?view=graph-rest-beta&preserve-view=true) resources. This property surfaces the display name of the security group inline, so consumers don't need to make a separate Microsoft Graph `/groups/{id}` call to resolve it. @@ -161,7 +179,6 @@ Application permissions for the [user: translateExchangeIds](/graph/api/user-tra - [Retrieve](/graph/api/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult?view=graph-rest-beta&preserve-view=true) the pending apply status of a [provisioning policy](/graph/api/resources/cloudpcprovisioningpolicy?view=graph-rest-beta&preserve-view=true) to determine whether unapplied changes exist for Cloud PCs. - Use the **isForceUserLogoffEnabled** parameter and property on [cloudPcProvisioningPolicy: apply](/graph/api/cloudpcprovisioningpolicy-apply?view=graph-rest-beta&preserve-view=true) and [cloudPcPolicyScheduledApplyActionDetail](/graph/api/resources/cloudpcpolicyscheduledapplyactiondetail?view=graph-rest-beta&preserve-view=true) to indicate whether active Cloud PC sessions are forcibly signed out when reprovisioning begins. - ## May 2026: New and generally available ### Agents @@ -308,8 +325,8 @@ Added support for `$expand` on the **items** relationship of the [teamworkSectio ### Tenants | Cross-tenant access -Use the **sensorTypes** property on [sensorCandidate](/graph/api/resources/security-sensorcandidate?view=graph-rest-beta&preserve-view=true) to get the list of device types for the sensor. -Added the following properties and their associated complex types to the [crossTenantAccessPolicyConfigurationDefault](/graph/api/resources/crosstenantaccesspolicyconfigurationdefault?view=graph-rest-beta&preserve-view=true) and [crossTenantAccessPolicyConfigurationPartner](/graph/api/resources/crosstenantaccesspolicyconfigurationpartner?view=graph-rest-beta&preserve-view=true) resources of cross-tenant access policy APIs to support Microsoft 365 collaboration and app service connect settings: +- Use the **sensorTypes** property on [sensorCandidate](/graph/api/resources/security-sensorcandidate?view=graph-rest-beta&preserve-view=true) to get the list of device types for the sensor. +- Added the following properties and their associated complex types to the [crossTenantAccessPolicyConfigurationDefault](/graph/api/resources/crosstenantaccesspolicyconfigurationdefault?view=graph-rest-beta&preserve-view=true) and [crossTenantAccessPolicyConfigurationPartner](/graph/api/resources/crosstenantaccesspolicyconfigurationpartner?view=graph-rest-beta&preserve-view=true) resources of cross-tenant access policy APIs to support Microsoft 365 collaboration and app service connect settings: - **appServiceConnectInbound** property to get or set the default or partner-specific configuration for inbound app service connect settings. - **m365CollaborationInbound** property to get or set the default or partner-specific configuration for inbound Microsoft 365 collaboration settings. - **m365CollaborationOutbound** property get or set the default or partner-specific configuration for outbound Microsoft 365 collaboration settings. From e090420680d4d4fb4aa1f6384cda1396d4c9d4ba Mon Sep 17 00:00:00 2001 From: Jason Johnston Date: Wed, 24 Jun 2026 13:11:17 -0400 Subject: [PATCH 44/52] Resolve conflicts between live and main (#29157) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * Publish main to live - reconcile divergence 2026-06-17 Sets live content identical to main to clear the squash-induced divergence. No manual live hotfixes existed. * Reconcile live to main (unblock auto-publish #29094) (#29095) * Publish main to live - reconcile divergence (refresh 2026-06-17 18:25) Sets live content identical to current main. main is authoritative; no live-only hotfixes. * Update tenantappmanagementpolicy-get.md --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Merge to publish. (#29097) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update reference TOC (#29058) Co-authored-by: Microsoft Graph DevX Tooling * Update profilePropertySetting docs (#29038) * Updated according to KnutB's spec * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update peopleadminsettings-list-profilepropertysettings.md * Update profilepropertysetting.md * Move extended Delete description from resource table to API topic * Apply suggestion from @MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222741 (#29057) Co-authored-by: Microsoft Graph DevX Tooling * Update generated permissions tables with build 222558 (#29051) Co-authored-by: Microsoft Graph DevX Tooling * Revise traceRouteHop availability in callRecord docs (#29055) * Revise traceRouteHop availability in callRecord docs * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update whats-new-overview.md (#29010) * Update whats-new-overview.md * Update whats-new-overview.md --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update pull request template to remove documentation plan requirement (#29069) Removed the requirement to attach the documentation plan for AI-assisted docs authoring. * 2026-06-15: Automated permissions reference update (#29068) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Update generated permissions tables with build 222982 (#29067) Co-authored-by: Microsoft Graph DevX Tooling * Update whats-new-overview.md (#29064) * Update whats-new-overview.md * Update whats-new-overview.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add tenantId property to userAccount resource (#28845) * Add tenantId field to security user account resource Added tenantId field to user account resource details. * Update userAccount resource date and add tenantId * Update date for security userAccount resource * Update changelog with new API changes Added new changelog entries for tenantId and categories properties in userAccount resource. * Apply review suggestions: update changelog dates and add What's New entry for tenantId on userAccount * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi --------- Co-authored-by: Faith Moraa Ombongi Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Add mergeIncidents and moveAlerts v1.0 API docs (#28851) * Add mergeIncidents and moveAlerts v1.0 API docs Add v1.0 documentation for security action endpoints: - API pages: security-incident-mergeincidents.md, security-alert-movealerts.md - Resource pages: security-mergeresponse.md, security-correlationreason.md - Permission and RBAC include files - Update security-incident.md and security-alert.md Methods tables - Update v1.0 toc.mapping.json with new complex types - Add v1.0 changelog entries for all new artifacts Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Fix comments * Apply suggestion from @FaithOmbongi * Update what's new --------- Co-authored-by: Harel Damti Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * Update reference TOC (#29071) Co-authored-by: Microsoft Graph DevX Tooling * Update people doc (#29023) * Updated people & workplace intelligence document according to Knut Brandrud's proposal reviewed within our team. * Minor typo Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Address review comments in social intelligence overview * Apply remaining review thread doc fixes * minor date fix Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * date --------- Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add isVisible property to lpc v1.0 (#28915) * Add isVisible property to lpc v1.0 * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update Microsoft.People.json * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @Danipocket --------- Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply simulation-update v1.0 PR #9936 changes to beta file (#29077) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Remove unsupported expand query from getRetentionLabel docs (#29080) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated files with build 223158 (#29075) Co-authored-by: Microsoft Graph DevX Tooling * Resolve syncing conflicts from repo_sync_working_branch to main (#29076) * Enhance clarity in API documentation by updating request and response example phrasing across multiple files * Apply suggestions from code review Co-authored-by: Jarbas Horst * Fix trailing pipe tables 1.0 (#9930) * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudclipboardroot-list-items * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in itemactivitystat-getactivitybyinterval * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in tablecolumncollection-add * Fix trailing pipe formatting in user-findmeetingtimes * Apply suggestions from code review Co-authored-by: Jarbas Horst --------- Co-authored-by: Jarbas Horst * Fix missing closing codeblock beta (#9919) * Fix formatting of HTTP request example in accesspackageresource-list-uploadsessions.md * Fix missing closing code block in security-labelsroot-delete-citations.md * Fix missing closing code block in singlevaluelegacyextendedproperty-get.md * Fix missing closing code block in usersettings-list-windows.md * Fix missing closing code block in webapplicationfirewallprovider-verify.md * Fix missing closing code block in windowssetting-get.md * Fix missing closing code block in windowssetting-list-instances.md * fix(beta api): close malformed http code fence in windowssettinginstance-get * Apply suggestions from code review Co-authored-by: Jarbas Horst --------- Co-authored-by: Jarbas Horst * Update synchronization-synchronization-list-templates.md (#9922) Update headings from H3 to H2. * Update https://github.com/microsoftgraph/microsoft-graph-docs-contrib/edit/main/api-reference/v1.0/api/synchronization-synchronizationtemplate-get.md (#9923) Update headings from H3 to H2. * Update synchronization-synchronizationtemplate-update.md (#9924) Update headings from H3 to H2. * Update eventmessage-post-attachments.md (#9926) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update event-post-attachments.md (#9925) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update educationassignment-list-resources.md (#9927) Update formatting * Update provisioningobjectsummary-list.md (#9928) Fix typo in error response example section * Fix trailing pipe tables beta (#9929) * Fix trailing pipe formatting in b2cidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bookingbusiness-update * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudpc-retrievecloudpccountbystatus * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in contenttype-associatewithhubsites * Fix trailing pipe formatting in customdataprovidedresourceuploadsession-uploadfile * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in ediscovery-noncustodialdatasource-post * Fix trailing pipe formatting in get-device-command-status * Fix trailing pipe formatting in governancerolesetting-update * Fix trailing pipe formatting in industrydata-inboundapiflow-post * Fix trailing pipe formatting in itemactivity-getbyinterval * Fix trailing pipe formatting in listitem-createlink * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in message-createreply * Fix trailing pipe formatting in networkaccess-reports-getdestinationsummaries * Fix trailing pipe formatting in networkaccess-reports-getdeviceusagesummary * Fix trailing pipe formatting in pagetemplate-delete * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in rbacapplication-post-roleassignmentschedulerequests * Fix trailing pipe formatting in security-collaborationroot-list-analyzedemails * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in send-device-command * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in team-sendactivitynotification * Fix trailing pipe formatting in termstore-relation-post * Fix trailing pipe formatting in user-list-devices * Fix trailing pipe formatting in user-sendmail * Fix trailing pipe formatting in webpart-delete --------- Co-authored-by: Jarbas Horst * Fix missing closing codeblock 1.0 (#9920) * Fix missing closing http fence in security-auditlogquery-list-records * Fix missing closing http fence in userprotectionscopecontainer-compute * Fix missing closing http fence in usersettings-list-windows --------- Co-authored-by: Jarbas Horst * Update date range (#9931) When requesting a date over 28 days the API returns: "Invalid date value specified: 2026-04-06. Only support data for the past 28 days." * Correct date range for email activity report (#9932) https://github.com/microsoftgraph/microsoft-graph-docs-contrib/pull/9931/changes * Change user ID to placeholder in processContent API (#9921) * Change user ID to placeholder in processContent API Updated user ID placeholder in processContent API calls. * Update userdatasecurityandgovernance-processcontent.md Updated example user ID in processContent API calls. * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * Update simulation-update.md for requirement around simuation state (#9936) * Update simulation-update.md for requirement around simuation state Clarified simulation state as draft as required and updated description. * Minor fixes --------- Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Jarbas Horst Co-authored-by: Jarbas Horst Co-authored-by: learn-build-service-prod[bot] <113403604+learn-build-service-prod[bot]@users.noreply.github.com> Co-authored-by: Learn Build Service GitHub App Co-authored-by: Jarbas Horst <26866873+JarbasHorst@users.noreply.github.com> Co-authored-by: Ryutaro Koma Co-authored-by: Micah Warren <26724012+MicahWW@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Vipul <84970543+VipulMSFT@users.noreply.github.com> * Document provisioning workflow support in Lifecycle Workflows (beta) (#28966) * Document provisioning workflow support in Lifecycle Workflows (beta) Add public preview documentation for provisioning workflow features in Microsoft Graph Lifecycle Workflows beta API. New resources: - workflowSubject (abstract base type) - provisioningObjectWorkflowSubject (concrete implementation) - attributeSetEntry (key-value pairs for attribute sets) - awaitedWorkflowProcessingResult (return type) - customTaskExtensionResponseData (extension response) - provisioningAttributeMapping (execution conditions) - subjectProcessingResult (entity for processing results) New API operations: - workflow: activateAndWait - run: list subjectProcessingResults - subjectProcessingResult: get - taskReport: list subjectProcessingResults Updated enumerations: - Added customTaskExtensionReplyMode enum - Added extensibility to lifecycleTaskCategory - Added extensibility to lifecycleWorkflowCategory - Added extensibilityOnDemand to workflowExecutionType Updates to existing resources: - customTaskExtension: added replyMode property - customTaskExtensionCallbackData: added targetSubject property - taskProcessingResult: added workflowSubject property - run: added subjectProcessingResults relationship and list method - taskReport: added subjectProcessingResults relationship and list method - workflow: added activateAndWait method Also includes changelog, What's New, TOC, and permissions updates. Workload: Microsoft.AAD.LCM Changelog GUID: 6a9c6f5d-eeb3-438e-b9f2-4705836e94fe * Clean up temp-docstubs folder Remove temporary authoring input files. Only temp-docstubs-instructions.md should remain. * Fix documentation validation errors - Fix openType metadata in subjectProcessingResult (was 'id', now false) - Remove tab syntax from HTTP-only examples (tabs require multiple SDK examples) * Fix changelog target and add missing complex types to TOC - Fixed changelog: Changed Target from customTaskExtensionCalloutData to customTaskExtensionCallbackData for targetSubject property - Removed workflowSubjectType enum entry (private preview feature) - Added missing complex types to TOC: attributeSetEntry, awaitedWorkflowProcessingResult, customTaskExtensionResponseData, provisioningAttributeMapping, provisioningObjectWorkflowSubject, workflowSubject * Remove taskProcessingResults expansion example - Removed Example 2 that demonstrated expanding taskProcessingResults relationship - Keep only the basic GET example without expansion * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * fix: update resource link prefixes in customTaskExtensionResponseData doc * Fix reference * Updates * Update reference TOC * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update api-reference/beta/api/identitygovernance-taskreport-list-subjectprocessingresults.md Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update api-reference/beta/api/identitygovernance-run-list-subjectprocessingresults.md Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update api-reference/beta/api/identitygovernance-taskreport-list-subjectprocessingresults.md Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update api-reference/beta/api/identitygovernance-run-list-subjectprocessingresults.md Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update perms * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix subject * Updates * Revert "Update perms" This reverts commit 636a2a571984b1f18c187522635abf853b55be2d. * Perms updates * Remove from docstubs * Fix broken link * fixes from code review * Update api-reference/beta/resources/identitygovernance-subjectprocessingresult.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/identitygovernance-awaitedworkflowprocessingresult.md Co-authored-by: Faith Moraa Ombongi * Update callout data * Updated changelog * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Mason Wolff Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * docs: Clarify MTO tenant API permission-to-property mapping and role access (#28886) * docs: clarify MTO tenant API permission-to-property mapping and role access - Add detailed permission-to-property mapping showing which properties are returned for each permission level - Document that Directory.Read.All also grants full read access to multitenant organization tenant resources (delegated or application) - Clarify that ReadBasic.All only returns displayName and tenantId, and only active tenants - Expand RBAC role documentation to specify that Security Reader and Global Reader can only read basic tenant info - Add guidance on which role is needed for full property access - Updated for both v1.0 and beta API references Addresses IcM 31000000597799 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * docs: add Directory.Read.All clarification to GET member endpoint Apply the same permission-to-property mapping to the multitenantorganizationmember-get API (v1.0 and beta). Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * fix: make RBAC include generic (shared across 6 MTO endpoints) The rbac-multitenantorganization-apis-read.md include is consumed by 6 different endpoints returning different resource types. Remove member-specific property names (displayName, tenantId, role, state, etc.) that are incorrect for the non-member endpoints (MTO object, join request, sync policy template, partner config template). Property-specific details remain in the individual API docs where they are correct and scoped to the right resource type. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * fix: add MultiTenantOrganization.Read.All to beta get-member docs * fix: add MultiTenantOrganization.Read.All to v1.0 get-member docs * fix: remove redundant RBAC statement per reviewer feedback * fix: remove redundant RBAC statement from v1.0 per reviewer feedback * Simplify permission callouts in beta list-tenants per reviewer suggestion * Simplify permission callouts in beta get-member per reviewer suggestion * Simplify permission callouts in v1.0 list-tenants per reviewer suggestion * Simplify permission callouts in v1.0 get-member per reviewer suggestion * fix: restore line endings mangled by Apply-Suggestion edits The 4 'Simplify permission callouts' commits collapsed the 4 MTO API doc files into single lines, breaking YAML frontmatter and Markdown structure. This caused the API Doctor validation to fail (h1-missing, title-missing, bookmark-not-found tabs, ms-date-missing, description-missing). This commit restores proper line endings while preserving the reviewer-approved simplified permission-to-property mapping that documents Directory.Read.All as an accepted permission for the MTO endpoints (per IcM 31000000597799 / MSRC 115408). --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update generated permissions tables with build 223315 (#29089) Co-authored-by: Microsoft Graph DevX Tooling * Move lifecycle workflows preview note from May to June 2026 What's New (#29090) * Move lifecycle workflows preview entry to June 2026 section * Apply suggestion from @FaithOmbongi --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * Adding Redirect URI Restrictions in App Management Policies (#28070) * Initial documentation on Redirect URI restrictions in App Management Policies * Update changelog/Microsoft.DirectoryServices.json Co-authored-by: Faith Moraa Ombongi * Update concepts/whats-new-overview.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiblockeddomainconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiwildcardexcludeformats.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiplatformalloweddomainconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiplatformblockeddomainconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiplatformblockedschemeconfiguration.md Co-authored-by: Faith Moraa Ombongi * Update api-reference/beta/resources/redirecturiplatformallowedschemeconfiguration.md Co-authored-by: Faith Moraa Ombongi * Doc: update redirect URI restrictions and examples * Doc: add examples for updating redirect URI restrictions * Doc: update examples for tenantAppManagementPolicy to include redirect URI restrictions * Apply suggestion from @FaithOmbongi --------- Co-authored-by: Faith Moraa Ombongi Co-authored-by: Copilot * Add personal distribution lists beta API documentation (#29046) * Add personal distribution lists beta API documentation Add documentation for personal distribution lists in the user's mailbox, including resource types, API methods, permission includes, changelog, What's New, and TOC mapping updates. New resources: - distributionList (entity type, inherits outlookItem) - distributionListMember (entity type) - member (complex type) - recipientType (enum type) New API methods (9): - List/Create/Get/Update/Delete distributionList - addMembers/deleteMembers actions - List/Get distributionListMembers Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.Exchange.json Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Align distributionLists docs with approved CSDL Apply review feedback from API team. CSDL is source of truth; docs now match the schema exactly. Resources: - member: replace emailAddress with key; add routingType and contactId - distributionListMember: replace emailAddress with contactId; add contact navigation property - distributionList: add notes, personIdentifier properties; add singleValueExtendedProperties navigation property; note that members, notes, personIdentifier are not returned by default API methods: - addMembers, deleteMembers: change return from 204 No Content to 200 OK with updated distributionList object; update request and response examples to use key/routingType/recipientType - Create, Update, Get, List distributionLists: remove members from example responses (not returned by default) - Get distributionList: note that members, notes, personIdentifier require explicit `` - List/Get distributionListMembers: replace emailAddress with contactId in example responses Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Revert "Align distributionLists docs with approved CSDL" This reverts commit 6636446866092d92ffbd80419cc67a3cb3bf885e. * Fix documentation clarity and consistency issues - Add clarity note to distributionlist members property - Mark displayName as optional in member complex type - Add read-only indicators to distributionListMember properties - Clarify parameter requirements in addMembers and deleteMembers * Fix PR review comments: align docs with API.md/CSDL source of truth - Fix string casing in JSON representations (String -> string) - Update addMembers/deleteMembers to return distributionList (not 204) - Remove members from default GET/List responses (requires $select) - Rename emailAddress to key in member complex type, add routingType and contactId - Update distributionListMember to use contactId instead of emailAddress - Fix all API examples to use correct property names Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update reference TOC * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * What's new update. * Fix changelog ChangedApiName format for bound actions Remove 'distributionList: ' prefix from addMembers and deleteMembers entries to match the standard changelog format used by other workloads. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> --------- Co-authored-by: Samuel Mwangi (from Dev Box) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Kimani Mwangi Co-authored-by: Microsoft Graph DevX Tooling --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@us… * Merge to publish. (#29141) * Add force user logoff option and policy update status API for Cloud PC provisioning policy (#28989) * add new property and function * remove generated files * add change log * Address Copilot review feedback * Address Copilot review feedback * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * resolve merge connflict and update accordingly * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Danni Zhao Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Windows Updates New Enrollment States (#24135) * updatecategoryenrollmetninformation.md * updatemanagementenrollment.md * azureaddevice.md * changelog * cleanup * acrolinx * Update api-reference/beta/resources/windowsupdates-updatecategoryenrollmentinformation.md Co-authored-by: Daniela Bonilla Montero <92937694+Danielabom@users.noreply.github.com> * Update api-reference/beta/resources/windowsupdates-updatecategoryenrollmentinformation.md Co-authored-by: Daniela Bonilla Montero <92937694+Danielabom@users.noreply.github.com> * reviewer suggestions * typo fix * fixed build error * created enums.md file * heading change * build errors * Fixed build errors. * Fixing build issues. * Build issues * Apply suggestions from code review * Apply suggestions from code review * Update windowsupdates-enums.md * Apply suggestions from code review * Update windowsupdates-enums.md * Apply suggestions from code review * Updated response. * reverted changelog issues * reverted changelog to commit 37f2366 * reverted changelog to commit c4f4d79cfa76e4c41b5cf8da4f7e751d3c41c5e3 * re-added changelog entries for this PR * Update Microsoft.WindowsUpdates.json The changelog was showing incorrect entries. * Apply suggestions from code review * Apply suggestions from code review * Update changelog * Revert "Update changelog" This reverts commit df0209779bae59e2dbc398837f334e521dba546f. * update changelog attempt 2 * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Minor fixes. * Delete api-reference/beta/resources/windowsupdates-enums.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update enums-windowsupdates.md * Minor fixes. * Remove unintended changelog update * minor fixes * Update windowsupdates-azureaddevice.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update toc.mapping.json * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update windowsupdates-updatableassetenrollment.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update Microsoft.WindowsUpdates.json * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update reference TOC * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update reference TOC * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Daniela Bonilla Montero <92937694+Danielabom@users.noreply.github.com> Co-authored-by: Daniela Bonilla Montero Co-authored-by: araqueno Co-authored-by: araqueno <118419398+araqueno@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Microsoft Graph DevX Tooling --------- Co-authored-by: danny1718 Co-authored-by: Danni Zhao Co-authored-by: MSFT-Andrea Co-authored-by: angiechen22 <111081743+angiechen22@users.noreply.github.com> Co-authored-by: Daniela Bonilla Montero <92937694+Danielabom@users.noreply.github.com> Co-authored-by: Daniela Bonilla Montero Co-authored-by: araqueno Co-authored-by: araqueno <118419398+araqueno@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: learn-build-service-prod[bot] <113403604+learn-build-service-prod[bot]@users.noreply.github.com> Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Shlomo Sagir <51323195+shsagir@users.noreply.github.com> Co-authored-by: Matthew M. Co-authored-by: Yuvalabiri <154335961+Yuvalabiri@users.noreply.github.com> Co-authored-by: Ruth Waithera Co-authored-by: Jarbas Horst Co-authored-by: Jarbas Horst Co-authored-by: Learn Build Service GitHub App Co-authored-by: Jarbas Horst <26866873+JarbasHorst@users.noreply.github.com> Co-authored-by: Ryutaro Koma Co-authored-by: Micah Warren <26724012+MicahWW@users.noreply.github.com> Co-authored-by: Vipul <84970543+VipulMSFT@users.noreply.github.com> Co-authored-by: masonw1211 <31712004+masonw1211@users.noreply.github.com> Co-authored-by: Mason Wolff Co-authored-by: srinivaspadala-msft Co-authored-by: Anton Vanco <254866915+antonvano@users.noreply.github.com> Co-authored-by: Copilot Co-authored-by: Samuel Mwangi Co-authored-by: Samuel Mwangi (from Dev Box) Co-authored-by: Kimani Mwangi Co-authored-by: danny1718 Co-authored-by: Danni Zhao Co-authored-by: angiechen22 <111081743+angiechen22@users.noreply.github.com> Co-authored-by: Daniela Bonilla Montero <92937694+Danielabom@users.noreply.github.com> Co-authored-by: Daniela Bonilla Montero Co-authored-by: araqueno Co-authored-by: araqueno <118419398+araqueno@users.noreply.github.com> From d1f080689a7a94bb69744aca15e627f36783aa6a Mon Sep 17 00:00:00 2001 From: Danipocket <88507770+Danipocket@users.noreply.github.com> Date: Wed, 24 Jun 2026 11:27:26 -0600 Subject: [PATCH 45/52] Merge to publish. (#29156) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit * Add force user logoff option and policy update status API for Cloud PC provisioning policy (#28989) * add new property and function * remove generated files * add change log * Address Copilot review feedback * Address Copilot review feedback * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * resolve merge connflict and update accordingly * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Danni Zhao Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Windows Updates New Enrollment States (#24135) * updatecategoryenrollmetninformation.md * updatemanagementenrollment.md * azureaddevice.md * changelog * cleanup * acrolinx * Update api-reference/beta/resources/windowsupdates-updatecategoryenrollmentinformation.md Co-authored-by: Daniela Bonilla Montero <92937694+Danielabom@users.noreply.github.com> * Update api-reference/beta/resources/windowsupdates-updatecategoryenrollmentinformation.md Co-authored-by: Daniela Bonilla Montero <92937694+Danielabom@users.noreply.github.com> * reviewer suggestions * typo fix * fixed build error * created enums.md file * heading change * build errors * Fixed build errors. * Fixing build issues. * Build issues * Apply suggestions from code review * Apply suggestions from code review * Update windowsupdates-enums.md * Apply suggestions from code review * Update windowsupdates-enums.md * Apply suggestions from code review * Updated response. * reverted changelog issues * reverted changelog to commit 37f2366 * reverted changelog to commit c4f4d79cfa76e4c41b5cf8da4f7e751d3c41c5e3 * re-added changelog entries for this PR * Update Microsoft.WindowsUpdates.json The changelog was showing incorrect entries. * Apply suggestions from code review * Apply suggestions from code review * Update changelog * Revert "Update changelog" This reverts commit df0209779bae59e2dbc398837f334e521dba546f. * update changelog attempt 2 * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Minor fixes. * Delete api-reference/beta/resources/windowsupdates-enums.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update enums-windowsupdates.md * Minor fixes. * Remove unintended changelog update * minor fixes * Update windowsupdates-azureaddevice.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update toc.mapping.json * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update windowsupdates-updatableassetenrollment.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update Microsoft.WindowsUpdates.json * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update reference TOC * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update reference TOC * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Daniela Bonilla Montero <92937694+Danielabom@users.noreply.github.com> Co-authored-by: Daniela Bonilla Montero Co-authored-by: araqueno Co-authored-by: araqueno <118419398+araqueno@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Microsoft Graph DevX Tooling * Fix unsafe test.com domain in TLS inspection doc examples (#29134) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * docs: add appRoleAssignmentRequired to agentIdentity resource (beta) (#29020) * docs: add appRoleAssignmentRequired to agentIdentity properties (beta) Adds `appRoleAssignmentRequired` to the Properties table and JSON representation of the agentIdentity resource type. The property is now included in the default projection following schema-Prod-beta.csdl PR 15981723 (Work Item 48856). Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * docs: add changelog entry for agentIdentity.appRoleAssignmentRequired (beta) Adds changelog entry for the `appRoleAssignmentRequired` property added to `agentIdentity` in the Microsoft Graph beta endpoint (schema-Prod-beta.csdl PR 15981723, Work Item 48856). Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * docs: update changelog WorkloadArea/SubArea for agentIdentity.appRoleAssignmentRequired Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * docs: add What's New entry for agentIdentity.appRoleAssignmentRequired (June 2026 beta) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestion from @FaithOmbongi * docs: rebase PR changes onto latest main (resolve merge conflicts) * Readd what's new --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Resolve syncing conflicts from repo_sync_working_branch to main (#29136) * Use contractions in backuprestoreroot-list-onedriveforbusinessbrowsesessions * Use contractions in backuprestoreroot-list-sharepointbrowsesessions * Use contractions in basesitepage-list * Use contractions in bitlocker-list-recoverykeys * Use contractions in bookingappointment-update * Use contractions in bookingbusiness-list * Use contractions in bookingcustomer-get * Use contractions in bundle-removeitem * Use contractions in bundle-update * Use contractions in calendar-list-calendarview * Use contractions in call-keepalive * Use contractions in call-list-participants * Use contractions in call-reject * Use contractions in channel-get-members * Use contractions in chat-delete * Use contractions in chat-get * Use contractions in chat-get-members * Use contractions in chat-list-members * Use contractions in contenttype-delete * Use contractions in conversationmember-list * Use contractions in directory-list-customsecurityattributedefinitions * Use contractions in directoryobject-delta * Use contractions in domain-delete * Use contractions in domain-get-rootdomain * Use contractions in domain-list-federationconfiguration * Use contractions in drive-get-specialfolder * Use contractions in driveitem-copy * Use contractions in driveitem-createlink * Use contractions in driveitem-search * Use contractions in driveitemversion-get * Use contractions in educationclass-delta * Use contractions in educationclass-post * Use contractions in entitlementmanagementsettings-get * Use contractions in externalauthenticationmethodconfiguration-get * Use contractions in externalconnectors-externalgroup-update * Use contractions in externalconnectors-externalitem-get * Use contractions in externalconnectors-schema-get * Use contractions in fido2authenticationmethod-list * Use contractions in group-delta * Use contractions in group-list-acceptedsenders * Use contractions in group-list-calendarview * Use contractions in group-post-members * Use contractions in group-update * Use contractions in identitygovernance-insights-workflowsprocessedsummary * Use contractions in identitygovernance-task-get * Use contractions in identitygovernance-workflowtemplate-get * Use contractions in identityuserflowattributeassignment-update * Use contractions in inferenceclassification-list-overrides * Use contractions in internaldomainfederation-get * Use contractions in learningcourseactivity-update * Use contractions in list-get * Use contractions in listitem-delete * Use contractions in listitem-update * Use contractions in mailfolder-list-childfolders * Use contractions in message-createreply * Use contractions in message-createreplyall * Use contractions in message-delta * Use contractions in message-reply * Use contractions in message-replyall * Use contractions in offershiftrequest-get * Use contractions in onlinemeeting-createorget * Use contractions in orgcontact-delta * Use contractions in outlookuser-supportedtimezones * Use contractions in permissiongrantpolicy-update * Use contractions in permission-update * Use contractions in phoneauthenticationmethod-update * Use contractions in plannerassignedtotaskboardtaskformat-update * Use contractions in post-post-attachments * Use contractions in printdocument-createuploadsession * Use contractions in printer-update * Use contractions in printjob-cancel * Use contractions in projectrome-put-activity * Use contractions in qrcode-get * Use contractions in reportroot-getemailactivitycounts * Use contractions in reportroot-getemailactivityusercounts * Use contractions in reportroot-getemailactivityuserdetail * Use contractions in reportroot-getemailappusageappsusercounts * Use contractions in reportroot-getemailappusageusercounts * Use contractions in reportroot-getemailappusageuserdetail * Use contractions in reportroot-getm365appplatformusercounts * Use contractions in reportroot-getm365appusercounts * Use contractions in reportroot-getm365appuserdetail * Use contractions in reportroot-getmailboxusagedetail * Use contractions in reportroot-getmailboxusagemailboxcounts * Use contractions in reportroot-getmailboxusagequotastatusmailboxcounts * Use contractions in reportroot-getmailboxusagestorage * Use contractions in reportroot-getoffice365activationcounts * Use contractions in reportroot-getoffice365activationsuserdetail * Use contractions in reportroot-getoffice365activeusercounts * Use contractions in reportroot-getoffice365activeuserdetail * Use contractions in reportroot-getoffice365groupsactivitycounts * Use contractions in reportroot-getoffice365groupsactivitydetail * Use contractions in reportroot-getoffice365groupsactivityfilecounts * Use contractions in reportroot-getoffice365groupsactivitystorage * Use contractions in reportroot-getoffice365servicesusercounts * Use contractions in reportroot-getonedriveactivityfilecounts * Use contractions in reportroot-getonedriveactivityusercounts * Use contractions in reportroot-getonedriveactivityuserdetail * Use contractions in reportroot-getonedriveusageaccountcounts * Use contractions in reportroot-getonedriveusageaccountdetail * Use contractions in reportroot-getonedriveusagefilecounts * Use contractions in reportroot-getsharepointactivityfilecounts * Use contractions in reportroot-getsharepointactivitypages * Use contractions in reportroot-getsharepointactivityuserdetail * Use contractions in reportroot-getsharepointsiteusagedetail * Use contractions in reportroot-getsharepointsiteusagefilecounts * Use contractions in reportroot-getsharepointsiteusagepages * Use contractions in reportroot-getsharepointsiteusagesitecounts * Use contractions in reportroot-getsharepointsiteusagestorage * Use contractions in reportroot-getskypeforbusinessactivitycounts * Use contractions in reportroot-getskypeforbusinessactivityusercounts * Use contractions in reportroot-getskypeforbusinessactivityuserdetail * Use contractions in reportroot-getskypeforbusinessdeviceusagedistributionusercounts * Use contractions in reportroot-getskypeforbusinessdeviceusageuserdetail * Use contractions in reportroot-getskypeforbusinessorganizeractivityminutecounts * Use contractions in reportroot-getskypeforbusinessparticipantactivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivitycounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityusercounts * Use contractions in reportroot-getteamsdeviceusageusercounts * Use contractions in reportroot-getteamsuseractivityusercounts * Use contractions in reportroot-getteamsuseractivityuserdetail * Use contractions in reportroot-getyammeractivitycounts * Use contractions in reportroot-getyammeractivityusercounts * Use contractions in reportroot-getyammeractivityuserdetail * Use contractions in reportroot-getyammerdeviceusagedistributionusercounts * Use contractions in reportroot-getyammerdeviceusageusercounts * Use contractions in reportroot-getyammerdeviceusageuserdetail * Use contractions in reportroot-getyammergroupsactivitycounts * Use contractions in reportroot-getyammergroupsactivitydetail * Use contractions in riskdetection-get * Use contractions in riskyuser-get * Use contractions in schedulinggroup-delete * Use contractions in schemaextension-delete * Use contractions in security-ediscoverysearch-list-lastestimatestatisticsoperation * Use contractions in security-host-list-childhostpairs * Use contractions in security-host-list-parenthostpairs * Use contractions in security-hostpair-get * Use contractions in security-threatintelligence-list-sslcertificates * Use contractions in servicehealthissue-get * Use contractions in servicehealthissue-incidentreport * Use contractions in serviceprincipal-get * Use contractions in serviceupdatemessage-get * Use contractions in sharedwithchannelteaminfo-get * Use contractions in sharedwithchannelteaminfo-list-allowedmembers * Use contractions in simulationautomation-get * Use contractions in simulation-get * Use contractions in singlevaluelegacyextendedproperty-get * Use contractions in sitepage-publish * Use contractions in sitepage-update * Use contractions in site-search * Use contractions in subjectrightsrequest-list-notes * Use contractions in subscribedsku-list * Use contractions in synchronization-synchronizationschema-delete * Use contractions in synchronization-synchronizationschema-update * Use contractions in teamsapp-delete * Use contractions in teamsapp-publish * Use contractions in teamsapp-update * Use contractions in teamworktag-get * Use contractions in tenantappmanagementpolicy-update * Use contractions in tenantdatasecurityandgovernance-processcontentasync * Use contractions in timeoffrequest-get * Use contractions in todotask-delta * Use contractions in todotask-list-checklistitems * Use contractions in todotask-post-attachments * Use contractions in userdatasecurityandgovernance-processcontent * Use contractions in user-delta * Use contractions in user-findmeetingtimes * Use contractions in user-list-calendarview * Use contractions in user-list-mailfolders * Use contractions in user-list-messages * Use contractions in userregistrationdetails-get * Use contractions in user-sendmail * Use contractions in verticalsection-update * Use contractions in virtualeventregistrationconfiguration-list-questions * Use contractions in virtualeventregistration-list * Use contractions in virtualeventregistration-list-sessions * Use contractions in virtualeventwebinar-post-registrations * Use contractions in webpart-delete * Use contractions in workbook-tablerowoperationresult * Use contractions in x509certificateauthenticationmethodconfiguration-get * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * Update simulation-update.md for requirement around simuation state (#9936) * Update simulation-update.md for requirement around simuation state Clarified simulation state as draft as required and updated description. * Minor fixes --------- Co-authored-by: Faith Moraa Ombongi * Publish main to live - reconcile divergence 2026-06-17 Sets live content identical to main to clear the squash-induced divergence. No manual live hotfixes existed. * Reconcile live to main (unblock auto-publish #29094) (#29095) * Publish main to live - reconcile divergence (refresh 2026-06-17 18:25) Sets live content identical to current main. main is authoritative; no live-only hotfixes. * Update tenantappmanagementpolicy-get.md --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Remove license-type availability banner from Graph beta eDiscovery overview Replaces preview/SKU-specific note in ediscovery-ediscoveryapioverview.md with neutral guidance pointing to Microsoft Purview eDiscovery documentation. Addresses customer confusion (IcM 51000001064141) about creating searches in standard eDiscovery cases via Graph. * Merge to publish. (#29097) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update reference TOC (#29058) Co-authored-by: Microsoft Graph DevX Tooling * Update profilePropertySetting docs (#29038) * Updated according to KnutB's spec * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update peopleadminsettings-list-profilepropertysettings.md * Update profilepropertysetting.md * Move extended Delete description from resource table to API topic * Apply suggestion from @MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222741 (#29057) Co-authored-by: Microsoft Graph DevX Tooling * Update generated permissions tables with build 222558 (#29051) Co-authored-by: Microsoft Graph DevX Tooling * Revise traceRouteHop availability in callRecord docs (#29055) * Revise traceRouteHop availability in callRecord docs * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update whats-new-overview.md (#29010) * Update whats-new-overview.md * Update whats-new-overview.md --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update pull request template to remove documentation plan requirement (#29069) Removed the requirement to attach the documentation plan for AI-assisted docs authoring. * 2026-06-15: Automated permissions reference update (#29068) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Update generated permissions tables with build 222982 (#29067) Co-authored-by: Microsoft Graph DevX Tooling * Update whats-new-overview.md (#29064) * Update whats-new-overview.md * Update whats-new-overview.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add tenantId property to userAccount resource (#28845) * Add tenantId field to security user account resource Added tenantId field to user account resource details. * Update userAccount resource date and add tenantId * Update date for security userAccount resource * Update changelog with new API changes Added new changelog entries for tenantId and categories properties in userAccount resource. * Apply review suggestions: update changelog dates and add What's New entry for tenantId on userAccount * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi --------- Co-authored-by: Faith Moraa Ombongi Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Add mergeIncidents and moveAlerts v1.0 API docs (#28851) * Add mergeIncidents and moveAlerts v1.0 API docs Add v1.0 documentation for security action endpoints: - API pages: security-incident-mergeincidents.md, security-alert-movealerts.md - Resource pages: security-mergeresponse.md, security-correlationreason.md - Permission and RBAC include files - Update security-incident.md and security-alert.md Methods tables - Update v1.0 toc.mapping.json with new complex types - Add v1.0 changelog entries for all new artifacts Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Fix comments * Apply suggestion from @FaithOmbongi * Update what's new --------- Co-authored-by: Harel Damti Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * Update reference TOC (#29071) Co-authored-by: Microsoft Graph DevX Tooling * Update people doc (#29023) * Updated people & workplace intelligence document according to Knut Brandrud's proposal reviewed within our team. * Minor typo Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Address review comments in social intelligence overview * Apply remaining review thread doc fixes * minor date fix Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * date --------- Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add isVisible property to lpc v1.0 (#28915) * Add isVisible property to lpc v1.0 * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update Microsoft.People.json * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @Danipocket --------- Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply simulation-update v1.0 PR #9936 changes to beta file (#29077) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Remove unsupported expand query from getRetentionLabel docs (#29080) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated files with build 223158 (#29075) Co-authored-by: Microsoft Graph DevX Tooling * Resolve syncing conflicts from repo_sync_working_branch to main (#29076) * Enhance clarity in API documentation by updating request and response example phrasing across multiple files * Apply suggestions from code review Co-authored-by: Jarbas Horst * Fix trailing pipe tables 1.0 (#9930) * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudclipboardroot-list-items * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in itemactivitystat-getactivitybyinterval * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in tablecolumncollection-add * Fix trailing pipe formatting in user-findmeetingtimes * Apply suggestions from code review Co-authored-by: Jarbas Horst --------- Co-authored-by: Jarbas Horst * Fix missing closing codeblock beta (#9919) * Fix formatting of HTTP request example in accesspackageresource-list-uploadsessions.md * Fix missing closing code block in security-labelsroot-delete-citations.md * Fix missing closing code block in singlevaluelegacyextendedproperty-get.md * Fix missing closing code block in usersettings-list-windows.md * Fix missing closing code block in webapplicationfirewallprovider-verify.md * Fix missing closing code block in windowssetting-get.md * Fix missing closing code block in windowssetting-list-instances.md * fix(beta api): close malformed http code fence in windowssettinginstance-get * Apply suggestions from code review Co-authored-by: Jarbas Horst --------- Co-authored-by: Jarbas Horst * Update synchronization-synchronization-list-templates.md (#9922) Update headings from H3 to H2. * Update https://github.com/microsoftgraph/microsoft-graph-docs-contrib/edit/main/api-reference/v1.0/api/synchronization-synchronizationtemplate-get.md (#9923) Update headings from H3 to H2. * Update synchronization-synchronizationtemplate-update.md (#9924) Update headings from H3 to H2. * Update eventmessage-post-attachments.md (#9926) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update event-post-attachments.md (#9925) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update educationassignment-list-resources.md (#9927) Update formatting * Update provisioningobjectsummary-list.md (#9928) Fix typo in error response example section * Fix trailing pipe tables beta (#9929) * Fix trailing pipe formatting in b2cidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bookingbusiness-update * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudpc-retrievecloudpccountbystatus * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in contenttype-associatewithhubsites * Fix trailing pipe formatting in customdataprovidedresourceuploadsession-uploadfile * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in ediscovery-noncustodialdatasource-post * Fix trailing pipe formatting in get-device-command-status * Fix trailing pipe formatting in governancerolesetting-update * Fix trailing pipe formatting in industrydata-inboundapiflow-post * Fix trailing pipe formatting in itemactivity-getbyinterval * Fix trailing pipe formatting in listitem-createlink * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in message-createreply * Fix trailing pipe formatting in networkaccess-reports-getdestinationsummaries * Fix trailing pipe formatting in networkaccess-reports-getdeviceusagesummary * Fix trailing pipe formatting in pagetemplate-delete * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in rbacapplication-post-roleassignmentschedulerequests * Fix trailing pipe formatting in security-collaborationroot-list-analyzedemails * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in send-device-command * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in team-sendactivitynotification * Fix trailing pipe formatting in termstore-relation-post * Fix trailing pipe formatting in user-list-devices * Fix trailing pipe formatting in user-sendmail * Fix trailing pipe formatting in webpart-delete --------- Co-authored-by: Jarbas Horst * Fix missing closing codeblock 1.0 (#9920) * Fix missing closing http fence in security-auditlogquery-list-records * Fix missing closing http fence in userprotectionscopecontainer-compute * Fix missing closing http fence in usersettings-list-windows --------- Co-authored-by: Jarbas Horst * Update date range (#9931) When requesting a date over 28 days the API returns: "Invalid date value specified: 2026-04-06. Only support data for the past 28 days." * Correct date range for email activity report (#9932) https://github.com/microsoftgraph/microsoft-graph-docs-contrib/pull/9931/changes * Change user ID to placeholder in processContent API (#9921) * Change user ID to placeholder in processContent API Updated user ID placeholder in processContent API calls. * Update userdatasecurityandgovernance-processcontent.md Updated example user ID in processContent API calls. * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code revi… * Update generated permissions tables with build 224227 (#29143) Co-authored-by: Microsoft Graph DevX Tooling * Update generated files with build 224254 (#29144) Co-authored-by: Microsoft Graph DevX Tooling * Update reference TOC (#29145) Co-authored-by: Microsoft Graph DevX Tooling * Revert "Planner Task History API documentation" (#29122) * Revert "Planner Task History API documentation (#28891)" This reverts commit 8fdeef761a2952c33b156a9c9f4833f726bc4001. * Create plannerplan-list-historyitems-permissions.md * Delete api-reference/beta/includes/permissions/plannerplan-list-historyitems-permissions.md * Add permissions table for planner plan history items * Update plannerplan-list-historyitems.md * Add permissions documentation for planner plan history * Delete api-reference/beta/includes/permissions/plannerplan-list-historyitems-permissions.md * Delete api-reference/beta/api/plannerplan-list-historyitems.md --------- Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Enhanced Restore- Structured Artifact Query Document changes (#29018) * Enhanced Restore- Structured Artifact Query Document changes * Adding example * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Resolving copilot comments * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix enum JSON code block formatting * Fixed changelog issue. * Update restorepoint-search.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fix TOC complex type ordering * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: schapagain Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * reportRoot: getSharePointApiUsage API documentation (#28658) * Add SharePoint API usage report to beta getSharePointApiUsage doc Fix API Doctor validation in examples: set truncated:true on JSON examples 4-5 (strict @odata.type requirement) and use a single appId in the filter example (comma-separated values break the function-param parser). * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update changelog/Microsoft.FileServices.json Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update getSharePointApiUsage doc and whats-new entries Fix request/response metadata blocks, refresh sample dates, reorganize whats-new sections, and correct changelog CreatedDateTime. * fix comment Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update getSharePointApiUsage doc and FileServices changelog * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * address comments * address comments * fix invalid links Updated the description of the getSharePointApiUsage method in the changelog. * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Irene Ren Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update generated permissions tables with build 224438 (#29151) Co-authored-by: Microsoft Graph DevX Tooling * Add getHuntingSchema API documentation (beta) (#28923) * Add getHuntingSchema API documentation for beta Add API reference and resource type documentation for the new security.getHuntingSchema function in Microsoft Defender XDR. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * fix: reorder Properties table alphabetically in security-huntingschemasavedfunction.md Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/5bd4707a-884e-4377-a34b-56c5319d654b Co-authored-by: Nnachtomy <258772109+Nnachtomy@users.noreply.github.com> * fix: reorder huntingschematable properties alphabetically Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/57c19e12-c979-4821-a78c-d32e9773a9d6 Co-authored-by: Nnachtomy <258772109+Nnachtomy@users.noreply.github.com> * Reorder huntingSchemaFunctionParameter properties alphabetically Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/28913e21-1ea7-4ad0-89cf-59ab7cefb07c Co-authored-by: Nnachtomy <258772109+Nnachtomy@users.noreply.github.com> * fix: reorder huntingSchemaResult properties alphabetically Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/4928ddfa-2026-4d75-9389-ff06df60a757 Co-authored-by: Nnachtomy <258772109+Nnachtomy@users.noreply.github.com> * Fix: inline permissions table to resolve include-not-found build error Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add May 2026 preview What's New entry for getHuntingSchema Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/10112a86-a3ed-44f0-88d4-ce15b09d5ca2 Co-authored-by: Nnachtomy <258772109+Nnachtomy@users.noreply.github.com> * Fix huntingSchemaBuiltInFunction property ordering Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/65d811d2-e53d-4d6a-928e-7883e65d016f Co-authored-by: Nnachtomy <258772109+Nnachtomy@users.noreply.github.com> * Address review feedback from FaithOmbongi - Surface getHuntingSchema in security resource Methods table - Add admin roles requirement after permissions block - Add Function parameters section (no OData params supported) - Restore schema-style JSON representation in resource topics - Reorder properties alphabetically (TableColumn, BuiltInFunction) - Reset changelog file (don't edit existing records) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Fix: remove duplicate opening brace in huntingSchemaBuiltInFunction JSON Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Add autogenerated changelog entry; link parent security resource in whats-new * Restore permissions table to standard format * Add autogenerated permissions include file * Fix permissions include link + Upgrade RBAC note * Apply suggestion from @FaithOmbongi * Normalize lowercase changelog URL paths --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Nnachtomy <258772109+Nnachtomy@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * Clean up ODSP acronym in cross-tenant migration docs (#29153) * Clean up ODSP mentions in cross-tenant migration docs * Apply suggestion from @FaithOmbongi --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * promote analyzedemail docs to v1.0 (#28963) * promote analyzedemail docs to v1.0 * address comments * Address PR review #6: startTime/endTime are optional; fix /analyzedEmails URL casing - Reframe Query parameters section: startTime/endTime are optional (workload confirmed), not required. - Fix /analyzedemails -> /analyzedEmails (camelCase) in 3 example URLs to match the CSDL navigation property and the HTTP request on line 35. - Fix &filter= -> &$filter= in 2 example URLs (OData query options require the $ prefix; the prose above explicitly references $filter). Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update Microsoft.MDO.AnalyzedMessages.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Address PR review: fix deprecated property placement and add complex type backlinks Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Fix typo: analzed email -> analyzed email Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Address Acrolinx issues in security-compromiseindicator.md Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Address Acrolinx clarity issues in security-detonationobservables.md Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi * Move analyzedEmail What's New entry to June 2026 preview section * fix link --------- Co-authored-by: Amar Koni (from Dev Box) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Add identityAnalytics Groups (beta) reference docs (Feature 3408675) (#29042) * Add identityAnalytics Groups (beta) reference documentation Document the Microsoft Entra identity analytics Groups public preview API (/reports/identityAnalytics/groups): - New resources: identityAnalyticsRoot and groupAnalytics (with the groupType enum) - New methods: List groupAnalytics, Get groupAnalytics - reportRoot: add the identityAnalytics relationship - Permissions: Reports.Read.All (least) / Directory.Read.All (higher) - Document supported query parameters: \ operators and string functions, \, and @odata.nextLink paging - Changelog, What's New (June 2026 preview), and TOC updates Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Address review feedback on identityAnalytics Groups docs - groupAnalytics: document per-property query capabilities (\ operators and \) inline; fix property alphabetical order (memberTransitiveUserCount) and mirror in JSON - List groupAnalytics: defer per-property query support to the groupAnalytics table to avoid overclaiming - identityAnalyticsRoot: set Methods to None (methods belong to the groupAnalytics resource) - Add usage-insights RBAC role include to both API topics - What's New: lead with the action verb and link the root entry point - TOC: order resources alphabetically Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Add groupTypeEnum changelog entry Adds the missing groupTypeEnum enum-type entry to the Microsoft.AAD.Reporting changelog record so the schema PR ChangelogEntryMissing validator clears. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Oversight - enum name Co-authored-by: Faith Moraa Ombongi * Fix groupAnalytics.groupType type label to groupTypeEnum The groupType property's documented type was labeled groupType, which collides with the pre-existing microsoft.graph.groupType enum (unifiedGroups/azureAD). The actual metadata type is groupTypeEnum (isCloudGroup/isOnPremiseGroup/isSoftDeletedGroup). Relabel the property type and its inline values section to groupTypeEnum so API Doctor validates against the correct published metadata type. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestion from @FaithOmbongi --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * Update reference TOC (#29154) Co-authored-by: Microsoft Graph DevX Tooling * subjectLifecycle-V1-Fixes (#29052) * Add Get and Update methods for accessPackageSubject to v1.0 - Create accesspackagesubject-get.md and accesspackagesubject-update.md API topics - Create corresponding permissions include files - Uncomment Methods table in accesspackagesubject.md resource topic Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Minor edit * rbac added * fix rbac link * Whats New entry * Changelog added * Update What's New accessPackageSubject entry Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update concepts/whats-new-overview.md Co-authored-by: Eunice Waweru <73849846+msewaweru@users.noreply.github.com> * Update api-reference/v1.0/api/accesspackagesubject-update.md Co-authored-by: Eunice Waweru <73849846+msewaweru@users.noreply.github.com> * Update api-reference/v1.0/api/accesspackagesubject-update.md Co-authored-by: Eunice Waweru <73849846+msewaweru@users.noreply.github.com> * Update api-reference/v1.0/api/accesspackagesubject-update.md Co-authored-by: Eunice Waweru <73849846+msewaweru@users.noreply.github.com> * update * updates * Update * Trying to fix link again * Test * Fix malformed RBAC INCLUDE in accesspackagesubject-update v1.0 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Eunice Waweru <73849846+msewaweru@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Resolve syncing conflicts from repo_sync_working_branch to main (#29152) * Use contractions in basesitepage-list * Use contractions in bitlocker-list-recoverykeys * Use contractions in bookingappointment-update * Use contractions in bookingbusiness-list * Use contractions in bookingcustomer-get * Use contractions in bundle-removeitem * Use contractions in bundle-update * Use contractions in calendar-list-calendarview * Use contractions in call-keepalive * Use contractions in call-list-participants * Use contractions in call-reject * Use contractions in channel-get-members * Use contractions in chat-delete * Use contractions in chat-get * Use contractions in chat-get-members * Use contractions in chat-list-members * Use contractions in contenttype-delete * Use contractions in conversationmember-list * Use contractions in directory-list-customsecurityattributedefinitions * Use contractions in directoryobject-delta * Use contractions in domain-delete * Use contractions in domain-get-rootdomain * Use contractions in domain-list-federationconfiguration * Use contractions in drive-get-specialfolder * Use contractions in driveitem-copy * Use contractions in driveitem-createlink * Use contractions in driveitem-search * Use contractions in driveitemversion-get * Use contractions in educationclass-delta * Use contractions in educationclass-post * Use contractions in entitlementmanagementsettings-get * Use contractions in externalauthenticationmethodconfiguration-get * Use contractions in externalconnectors-externalgroup-update * Use contractions in externalconnectors-externalitem-get * Use contractions in externalconnectors-schema-get * Use contractions in fido2authenticationmethod-list * Use contractions in group-delta * Use contractions in group-list-acceptedsenders * Use contractions in group-list-calendarview * Use contractions in group-post-members * Use contractions in group-update * Use contractions in identitygovernance-insights-workflowsprocessedsummary * Use contractions in identitygovernance-task-get * Use contractions in identitygovernance-workflowtemplate-get * Use contractions in identityuserflowattributeassignment-update * Use contractions in inferenceclassification-list-overrides * Use contractions in internaldomainfederation-get * Use contractions in learningcourseactivity-update * Use contractions in list-get * Use contractions in listitem-delete * Use contractions in listitem-update * Use contractions in mailfolder-list-childfolders * Use contractions in message-createreply * Use contractions in message-createreplyall * Use contractions in message-delta * Use contractions in message-reply * Use contractions in message-replyall * Use contractions in offershiftrequest-get * Use contractions in onlinemeeting-createorget * Use contractions in orgcontact-delta * Use contractions in outlookuser-supportedtimezones * Use contractions in permissiongrantpolicy-update * Use contractions in permission-update * Use contractions in phoneauthenticationmethod-update * Use contractions in plannerassignedtotaskboardtaskformat-update * Use contractions in post-post-attachments * Use contractions in printdocument-createuploadsession * Use contractions in printer-update * Use contractions in printjob-cancel * Use contractions in projectrome-put-activity * Use contractions in qrcode-get * Use contractions in reportroot-getemailactivitycounts * Use contractions in reportroot-getemailactivityusercounts * Use contractions in reportroot-getemailactivityuserdetail * Use contractions in reportroot-getemailappusageappsusercounts * Use contractions in reportroot-getemailappusageusercounts * Use contractions in reportroot-getemailappusageuserdetail * Use contractions in reportroot-getm365appplatformusercounts * Use contractions in reportroot-getm365appusercounts * Use contractions in reportroot-getm365appuserdetail * Use contractions in reportroot-getmailboxusagedetail * Use contractions in reportroot-getmailboxusagemailboxcounts * Use contractions in reportroot-getmailboxusagequotastatusmailboxcounts * Use contractions in reportroot-getmailboxusagestorage * Use contractions in reportroot-getoffice365activationcounts * Use contractions in reportroot-getoffice365activationsuserdetail * Use contractions in reportroot-getoffice365activeusercounts * Use contractions in reportroot-getoffice365activeuserdetail * Use contractions in reportroot-getoffice365groupsactivitycounts * Use contractions in reportroot-getoffice365groupsactivitydetail * Use contractions in reportroot-getoffice365groupsactivityfilecounts * Use contractions in reportroot-getoffice365groupsactivitystorage * Use contractions in reportroot-getoffice365servicesusercounts * Use contractions in reportroot-getonedriveactivityfilecounts * Use contractions in reportroot-getonedriveactivityusercounts * Use contractions in reportroot-getonedriveactivityuserdetail * Use contractions in reportroot-getonedriveusageaccountcounts * Use contractions in reportroot-getonedriveusageaccountdetail * Use contractions in reportroot-getonedriveusagefilecounts * Use contractions in reportroot-getsharepointactivityfilecounts * Use contractions in reportroot-getsharepointactivitypages * Use contractions in reportroot-getsharepointactivityuserdetail * Use contractions in reportroot-getsharepointsiteusagedetail * Use contractions in reportroot-getsharepointsiteusagefilecounts * Use contractions in reportroot-getsharepointsiteusagepages * Use contractions in reportroot-getsharepointsiteusagesitecounts * Use contractions in reportroot-getsharepointsiteusagestorage * Use contractions in reportroot-getskypeforbusinessactivitycounts * Use contractions in reportroot-getskypeforbusinessactivityusercounts * Use contractions in reportroot-getskypeforbusinessactivityuserdetail * Use contractions in reportroot-getskypeforbusinessdeviceusagedistributionusercounts * Use contractions in reportroot-getskypeforbusinessdeviceusageuserdetail * Use contractions in reportroot-getskypeforbusinessorganizeractivityminutecounts * Use contractions in reportroot-getskypeforbusinessparticipantactivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivitycounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityusercounts * Use contractions in reportroot-getteamsdeviceusageusercounts * Use contractions in reportroot-getteamsuseractivityusercounts * Use contractions in reportroot-getteamsuseractivityuserdetail * Use contractions in reportroot-getyammeractivitycounts * Use contractions in reportroot-getyammeractivityusercounts * Use contractions in reportroot-getyammeractivityuserdetail * Use contractions in reportroot-getyammerdeviceusagedistributionusercounts * Use contractions in reportroot-getyammerdeviceusageusercounts * Use contractions in reportroot-getyammerdeviceusageuserdetail * Use contractions in reportroot-getyammergroupsactivitycounts * Use contractions in reportroot-getyammergroupsactivitydetail * Use contractions in riskdetection-get * Use contractions in riskyuser-get * Use contractions in schedulinggroup-delete * Use contractions in schemaextension-delete * Use contractions in security-ediscoverysearch-list-lastestimatestatisticsoperation * Use contractions in security-host-list-childhostpairs * Use contractions in security-host-list-parenthostpairs * Use contractions in security-hostpair-get * Use contractions in security-threatintelligence-list-sslcertificates * Use contractions in servicehealthissue-get * Use contractions in servicehealthissue-incidentreport * Use contractions in serviceprincipal-get * Use contractions in serviceupdatemessage-get * Use contractions in sharedwithchannelteaminfo-get * Use contractions in sharedwithchannelteaminfo-list-allowedmembers * Use contractions in simulationautomation-get * Use contractions in simulation-get * Use contractions in singlevaluelegacyextendedproperty-get * Use contractions in sitepage-publish * Use contractions in sitepage-update * Use contractions in site-search * Use contractions in subjectrightsrequest-list-notes * Use contractions in subscribedsku-list * Use contractions in synchronization-synchronizationschema-delete * Use contractions in synchronization-synchronizationschema-update * Use contractions in teamsapp-delete * Use contractions in teamsapp-publish * Use contractions in teamsapp-update * Use contractions in teamworktag-get * Use contractions in tenantappmanagementpolicy-update * Use contractions in tenantdatasecurityandgovernance-processcontentasync * Use contractions in timeoffrequest-get * Use contractions in todotask-delta * Use contractions in todotask-list-checklistitems * Use contractions in todotask-post-attachments * Use contractions in userdatasecurityandgovernance-processcontent * Use contractions in user-delta * Use contractions in user-findmeetingtimes * Use contractions in user-list-calendarview * Use contractions in user-list-mailfolders * Use contractions in user-list-messages * Use contractions in userregistrationdetails-get * Use contractions in user-sendmail * Use contractions in verticalsection-update * Use contractions in virtualeventregistrationconfiguration-list-questions * Use contractions in virtualeventregistration-list * Use contractions in virtualeventregistration-list-sessions * Use contractions in virtualeventwebinar-post-registrations * Use contractions in webpart-delete * Use contractions in workbook-tablerowoperationresult * Use contractions in x509certificateauthenticationmethodconfiguration-get * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * Update simulation-update.md for requirement around simuation state (#9936) * Update simulation-update.md for requirement around simuation state Clarified simulation state as draft as required and updated description. * Minor fixes --------- Co-authored-by: Faith Moraa Ombongi * Publish main to live - reconcile divergence 2026-06-17 Sets live content identical to main to clear the squash-induced divergence. No manual live hotfixes existed. * Reconcile live to main (unblock auto-publish #29094) (#29095) * Publish main to live - reconcile divergence (refresh 2026-06-17 18:25) Sets live content identical to current main. main is authoritative; no live-only hotfixes. * Update tenantappmanagementpolicy-get.md --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Remove license-type availability banner from Graph beta eDiscovery overview Replaces preview/SKU-specific note in ediscovery-ediscoveryapioverview.md with neutral guidance pointing to Microsoft Purview eDiscovery documentation. Addresses customer confusion (IcM 51000001064141) about creating searches in standard eDiscovery cases via Graph. * Merge to publish. (#29097) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update reference TOC (#29058) Co-authored-by: Microsoft Graph DevX Tooling * Update profilePropertySetting docs (#29038) * Updated according to KnutB's spec * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update peopleadminsettings-list-profilepropertysettings.md * Update profilepropertysetting.md * Move extended Delete description from resource table to API topic * Apply suggestion from @MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222741 (#29057) Co-authored-by: Microsoft Graph DevX Tooling * Update generated permissions tables with build 222558 (#29051) Co-authored-by: Microsoft Graph DevX Tooling * Revise traceRouteHop availability in callRecord docs (#29055) * Revise traceRouteHop availability in callRecord docs * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update whats-new-overview.md (#29010) * Update whats-new-overview.md * Update whats-new-overview.md --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update pull request template to remove documentation plan requirement (#29069) Removed the requirement to attach the documentation plan for AI-assisted docs authoring. * 2026-06-15: Automated permissions reference update (#29068) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Update generated permissions tables with build 222982 (#29067) Co-authored-by: Microsoft Graph DevX Tooling * Update whats-new-overview.md (#29064) * Update whats-new-overview.md * Update whats-new-overview.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add tenantId property to userAccount resource (#28845) * Add tenantId field to security user account resource Added tenantId field to user account resource details. * Update userAccount resource date and add tenantId * Update date for security userAccount resource * Update changelog with new API changes Added new changelog entries for tenantId and categories properties in userAccount resource. * Apply review suggestions: update changelog dates and add What's New entry for tenantId on userAccount * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi --------- Co-authored-by: Faith Moraa Ombongi Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Add mergeIncidents and moveAlerts v1.0 API docs (#28851) * Add mergeIncidents and moveAlerts v1.0 API docs Add v1.0 documentation for security action endpoints: - API pages: security-incident-mergeincidents.md, security-alert-movealerts.md - Resource pages: security-mergeresponse.md, security-correlationreason.md - Permission and RBAC include files - Update security-incident.md and security-alert.md Methods tables - Update v1.0 toc.mapping.json with new complex types - Add v1.0 changelog entries for all new artifacts Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Fix comments * Apply suggestion from @FaithOmbongi * Update what's new --------- Co-authored-by: Harel Damti Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * Update reference TOC (#29071) Co-authored-by: Microsoft Graph DevX Tooling * Update people doc (#29023) * Updated people & workplace intelligence document according to Knut Brandrud's proposal reviewed within our team. * Minor typo Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Address review comments in social intelligence overview * Apply remaining review thread doc fixes * minor date fix Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * date --------- Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add isVisible property to lpc v1.0 (#28915) * Add isVisible property to lpc v1.0 * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update Microsoft.People.json * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @Danipocket --------- Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply simulation-update v1.0 PR #9936 changes to beta file (#29077) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Remove unsupported expand query from getRetentionLabel docs (#29080) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated files with build 223158 (#29075) Co-authored-by: Microsoft Graph DevX Tooling * Resolve syncing conflicts from repo_sync_working_branch to main (#29076) * Enhance clarity in API documentation by updating request and response example phrasing across multiple files * Apply suggestions from code review Co-authored-by: Jarbas Horst * Fix trailing pipe tables 1.0 (#9930) * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudclipboardroot-list-items * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in itemactivitystat-getactivitybyinterval * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in tablecolumncollection-add * Fix trailing pipe formatting in user-findmeetingtimes * Apply suggestions from code review Co-authored-by: Jarbas Horst --------- Co-authored-by: Jarbas Horst * Fix missing closing codeblock beta (#9919) * Fix formatting of HTTP request example in accesspackageresource-list-uploadsessions.md * Fix missing closing code block in security-labelsroot-delete-citations.md * Fix missing closing code block in singlevaluelegacyextendedproperty-get.md * Fix missing closing code block in usersettings-list-windows.md * Fix missing closing code block in webapplicationfirewallprovider-verify.md * Fix missing closing code block in windowssetting-get.md * Fix missing closing code block in windowssetting-list-instances.md * fix(beta api): close malformed http code fence in windowssettinginstance-get * Apply suggestions from code review Co-authored-by: Jarbas Horst --------- Co-authored-by: Jarbas Horst * Update synchronization-synchronization-list-templates.md (#9922) Update headings from H3 to H2. * Update https://github.com/microsoftgraph/microsoft-graph-docs-contrib/edit/main/api-reference/v1.0/api/synchronization-synchronizationtemplate-get.md (#9923) Update headings from H3 to H2. * Update synchronization-synchronizationtemplate-update.md (#9924) Update headings from H3 to H2. * Update eventmessage-post-attachments.md (#9926) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update event-post-attachments.md (#9925) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update educationassignment-list-resources.md (#9927) Update formatting * Update provisioningobjectsummary-list.md (#9928) Fix typo in error response example section * Fix trailing pipe tables beta (#9929) * Fix trailing pipe formatting in b2cidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bookingbusiness-update * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudpc-retrievecloudpccountbystatus * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in contenttype-associatewithhubsites * Fix trailing pipe formatting in customdataprovidedresourceuploadsession-uploadfile * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in ediscovery-noncustodialdatasource-post * Fix trailing pipe formatting in get-device-command-status * Fix trailing pipe formatting in governancerolesetting-update * Fix trailing pipe formatting in industrydata-inboundapiflow-post * Fix trailing pipe formatting in itemactivity-getbyinterval * Fix trailing pipe formatting in listitem-createlink * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in message-createreply * Fix trailing pipe formatting in networkaccess-reports-getdestinationsummaries * Fix trailing pipe formatting in networkaccess-reports-getdeviceusagesummary * Fix trailing pipe formatting in pagetemplate-delete * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in rbacapplication-post-roleassignmentschedulerequests * Fix trailing pipe formatting in security-collaborationroot-list-analyzedemails * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in send-device-command * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in team-sendactivitynotification * Fix trailing pipe formatting in termstore-relation-post * Fix trailing pipe formatting in user-list-devices * Fix trailing pipe formatting in user-sendmail * Fix trailing pipe formatting in webpart-delete --------- Co-authored-by: Jarbas Horst * Fix missing closing codeblock 1.0 (#9920) * Fix missing closing http fence in security-auditlogquery-list-records * Fix missing closing http fence in userprotectionscopecontainer-compute * Fix missing closing http fence in usersettings-list-windows --------- Co-authored-by: Jarbas Horst * Update date range (#9931) When requesting a date over 28 days the API returns: "Invalid date value specified: 2026-04-06. Only support data for the past 28 days." * Correct date range for email activity report (#9932) https://github.com/microsoftgraph/microsoft-graph-docs-contrib/pull/9931/changes * Change user ID to placeholder in processContent API (#9921) * Change user ID to placeholder in processContent API Updated user ID placeholder in processContent API calls. * Update userdatasecurityandgovernance-processcontent.md Updated example user ID in processContent API calls. * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <17… * Resolve conflicts between live and main (#29157) * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * Publish main to live - reconcile divergence 2026-06-17 Sets live content identical to main to clear the squash-induced divergence. No manual live hotfixes existed. * Reconcile live to main (unblock auto-publish #29094) (#29095) * Publish main to live - reconcile divergence (refresh 2026-06-17 18:25) Sets live content identical to current main. main is authoritative; no live-only hotfixes. * Update tenantappmanagementpolicy-get.md --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Merge to publish. (#29097) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update reference TOC (#29058) Co-authored-by: Microsoft Graph DevX Tooling * Update profilePropertySetting docs (#29038) * Updated according to KnutB's spec * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update peopleadminsettings-list-profilepropertysettings.md * Update profilepropertysetting.md * Move extended Delete description from resource table to API topic * Apply suggestion from @MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222741 (#29057) Co-authored-by: Microsoft Graph DevX Tooling * Update generated permissions tables with build 222558 (#29051) Co-authored-by: Microsoft Graph DevX Tooling * Revise traceRouteHop availability in callRecord docs (#29055) * Revise traceRouteHop availability in callRecord docs * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update whats-new-overview.md (#29010) * Update whats-new-overview.md * Update whats-new-overview.md --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update pull request template to remove documentation plan requirement (#29069) Removed the requirement to attach the documentation plan for AI-assisted docs authoring. * 2026-06-15: Automated permissions reference update (#29068) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Update generated permissions tables with build 222982 (#29067) Co-authored-by: Microsoft Graph DevX Tooling * Update whats-new-overview.md (#29064) * Update whats-new-overview.md * Update whats-new-overview.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add tenantId property to userAccount resource (#28845) * Add tenantId field to security user account resource Added tenantId field to user account resource details. * Update userAccount resource date and add tenantId * Update date for security userAccount resource * Update changelog with new API changes Added new changelog entries for tenantId and categories properties in userAccount resource. * Apply review suggestions: update changelog dates and add What's New entry for tenantId on userAccount * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi --------- Co-authored-by: Faith Moraa Ombongi Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Add mergeIncidents and moveAlerts v1.0 API docs (#28851) * Add mergeIncidents and moveAlerts v1.0 API docs Add v1.0 documentation for security action endpoints: - API pages: security-incident-mergeincidents.md, security-alert-movealerts.md - Resource pages: security-mergeresponse.md, security-correlationreason.md - Permission and RBAC include files - Update security-incident.md and security-alert.md Methods tables - Update v1.0 toc.mapping.json with new complex types - Add v1.0 changelog entries for all new artifacts Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Fix comments * Apply suggestion from @FaithOmbongi * Update what's new --------- Co-authored-by: Harel Damti Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * Update reference TOC (#29071) Co-authored-by: Microsoft Graph DevX Tooling * Update people doc (#29023) * Updated people & workplace intelligence document according to Knut Brandrud's proposal reviewed within our team. * Minor typo Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Address review comments in social intelligence overview * Apply remaining review thread doc fixes * minor date fix Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * date --------- Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add isVisible property to lpc v1.0 (#28915) * Add isVisible property to lpc v1.0 * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update Microsoft.People.json * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @Danipocket --------- Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply simulation-update v1.0 PR #9936 changes to beta file (#29077) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Remove unsupported expand query from getRetentionLabel docs (#29080) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated files with build 223158 (#29075) Co-authored-by: Microsoft Graph DevX Tooling * Resolve syncing conflicts from repo_sync_working_branch to main (#29076) * Enhance clarity in API documentation by updating request and response example phrasing across multiple files * Apply suggestions from code review Co-authored-by: Jarbas Horst * Fix trailing pipe tables 1.0 (#9930) * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudclipboardroot-list-items * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in itemactivitystat-getactivitybyinterval * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in tablecolumncollection-add * Fix trailing pipe formatting in user-findmeetingtimes * Apply suggestions from code review Co-authored-by: Jarbas Horst --------- Co-authored-by: Jarbas Horst * Fix missing closing codeblock beta (#9919) * Fix formatting of HTTP request example in accesspackageresource-list-uploadsessions.md * Fix missing closing code block in security-labelsroot-delete-citations.md * Fix missing closing code block in singlevaluelegacyextendedproperty-get.md * Fix missing closing code block in usersettings-list-windows.md * Fix missing closing code block in webapplicationfirewallprovider-verify.md * Fix missing closing code block in windowssetting-get.md * Fix missing closing code block in windowssetting-list-instances.md * fix(beta api): close malformed http code fence in windowssettinginstance-get * Apply suggestions from code review Co-authored-by: Jarbas Horst --------- Co-authored-by: Jarbas Horst * Update synchronization-synchronization-list-templates.md (#9922) Update headings from H3 to H2. * Update https://github.com/microsoftgraph/microsoft-graph-docs-contrib/edit/main/api-reference/v1.0/api/synchronization-synchronizationtemplate-get.md (#9923) Update headings from H3 to H2. * Update synchronization-synchronizationtemplate-update.md (#9924) Update headings from H3 to H2. * Update eventmessage-post-attachments.md (#9926) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update event-post-attachments.md (#9925) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update educationassignment-list-resources.md (#9927) Update formatting * Update provisioningobjectsummary-list.md (#9928) Fix typo in error response example section * Fix trailing pipe tables beta (#9929) * Fix trailing pipe formatting in b2cidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bookingbusiness-update * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudpc-retrievecloudpccountbystatus * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in contenttype-associatewithhubsites * Fix trailing pipe formatting in customdataprovidedresourceuploadsession-uploadfile * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in ediscovery-noncustodialdatasource-post * Fix trailing pipe formatting in get-device-command-status * Fix trailing pipe formatting in governancerolesetting-update * Fix trailing pipe formatting in industrydata-inboundapiflow-post * Fix trailing pipe formatting in itemactivity-getbyinterval * Fix trailing pipe formatting in listitem-createlink * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in message-createreply * Fix trailing pipe formatting in networkaccess-reports-getdestinationsummaries * Fix trailing pipe formatting in networkaccess-reports-getdeviceusagesummary * Fix trailing pipe formatting in pagetemplate-delete * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in rbacapplication-post-roleassignmentschedulerequests * Fix trailing pipe formatting in security-collaborationroot-list-analyzedemails * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in send-device-command * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in team-sendactivitynotification * Fix trailing pipe formatting in termstore-relation-post * Fix trailing pipe formatting in user-list-devices * Fix trailing pipe formatting in user-sendmail * Fix trailing pipe formatting in webpart-delete --------- Co-authored-by: Jarbas Horst * Fix missing closing codeblock 1.0 (#9920) * Fix missing closing http fence in security-auditlogquery-list-records * Fix missing closing http fence in userprotectionscopecontainer-compute * Fix missing closing http fence in usersettings-list-windows --------- Co-authored-by: Jarbas Horst * Update date range (#9931) When requesting a date over 28 days the API returns: "Invalid date value specified: 2026-04-06. Only support data for the past 28 days." * Correct date range for email activity report (#9932) https://github.com/microsoftgraph/microsoft-graph-docs-contrib/pull/9931/changes * Change user ID to placeholder in processContent API (#9921) * Change user ID to placeholder in processContent API Updated user ID placeholder in processContent API calls. * Update userdatasecurityandgovernance-processcontent.md Updated example user ID in processContent API calls. * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-aut… --------- Signed-off-by: dependabot[bot] Co-authored-by: danny1718 Co-authored-by: Danni Zhao Co-authored-by: MSFT-Andrea Co-authored-by: angiechen22 <111081743+angiechen22@users.noreply.github.com> Co-authored-by: Daniela Bonilla Montero <92937694+Danielabom@users.noreply.github.com> Co-authored-by: Daniela Bonilla Montero Co-authored-by: araqueno Co-authored-by: araqueno <118419398+araqueno@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: learn-build-service-prod[bot] <113403604+learn-build-service-prod[bot]@users.noreply.github.com> Co-authored-by: Jarbas Horst <26866873+JarbasHorst@users.noreply.github.com> Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Learn Build Service GitHub App Co-authored-by: Vipul <84970543+VipulMSFT@users.noreply.github.com> Co-authored-by: Shlomo Sagir <51323195+shsagir@users.noreply.github.com> Co-authored-by: Nick Robinson Co-authored-by: Matthew M. Co-authored-by: Yuvalabiri <154335961+Yuvalabiri@users.noreply.github.com> Co-authored-by: Ruth Waithera Co-authored-by: Jarbas Horst Co-authored-by: Jarbas Horst Co-authored-by: Ryutaro Koma Co-authored-by: Micah Warren <26724012+MicahWW@users.noreply.github.com> Co-authored-by: masonw1211 <31712004+masonw1211@users.noreply.github.com> Co-authored-by: Mason Wolff Co-authored-by: srinivaspadala-msft Co-authored-by: Anton Vanco <254866915+antonvano@users.noreply.github.com> Co-authored-by: Copilot Co-authored-by: Samuel Mwangi Co-authored-by: Samuel Mwangi (from Dev Box) Co-authored-by: Kimani Mwangi Co-authored-by: Hiro7 <75809971+garchiro7@users.noreply.github.com> Co-authored-by: Simran Moolchandaney <66736756+simoolchandaney@users.noreply.github.com> Co-authored-by: Simran Moolchandaney (from Dev Box) Co-authored-by: Jason Johnston Co-authored-by: myra-ramdenbourg <108485108+myra-ramdenbourg@users.noreply.github.com> Co-authored-by: Alexander Filipin Co-authored-by: Alexander Filipin Co-authored-by: Eunice Waweru <73849846+msewaweru@users.noreply.github.com> Co-authored-by: Ortagus Winfrey <85191667+OWinfreyATL@users.noreply.github.com> Co-authored-by: prasadpatil111 <284865846+prasadpatil111@users.noreply.github.com> Co-authored-by: Prasad Patil Co-authored-by: VISHNU VARDHAN PACHVA <67050501+Vishnu369@users.noreply.github.com> Co-authored-by: Vishnu Vardhan Pachva Co-authored-by: Reeza Ali <223746809+ReezaAli149@users.noreply.github.com> Co-authored-by: Yossi Bruss <287477490+yossibruss-ms@users.noreply.github.com> Co-authored-by: Yossi Bruss Co-authored-by: Yossi Bruss Co-authored-by: aditiijj Co-authored-by: Aditi Jain Co-authored-by: aditiijj <232662544+aditiijj@users.noreply.github.com> Co-authored-by: Ch@ps <61343268+Subham-RKB@users.noreply.github.com> Co-authored-by: schapagain Co-authored-by: ireneren0123 Co-authored-by: Irene Ren Co-authored-by: Nnachtomy Co-authored-by: Nnachtomy <258772109+Nnachtomy@users.noreply.github.com> Co-authored-by: Amar Koni <160498064+akgraph@users.noreply.github.com> Co-authored-by: Amar Koni (from Dev Box) Co-authored-by: Luca Spolidoro [MSFT] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/api-doctor.yml | 2 +- .github/workflows/changelog-validation.yml | 2 +- .github/workflows/cloud-support.yml | 6 +- .github/workflows/community.yml | 2 +- .github/workflows/generate-ref-toc.yml | 4 +- .../workflows/permissions-reference-gen.yml | 2 +- .../permissions-tables-generation-pr.yml | 2 +- .github/workflows/snippet-generation-pr.yml | 2 +- .../workflows/temp-docstubs-validation.yml | 2 +- .../beta/api/accesspackagesubject-update.md | 3 + ...ccessreviewinstance-filterbycurrentuser.md | 2 - ...nstancedecisionitem-filterbycurrentuser.md | 1 - .../api/cloudpcprovisioningpolicy-apply.md | 27 + .../api/crosstenantmigrationjob-migrate.md | 34 +- .../api/crosstenantmigrationjob-validate.md | 2 - .../beta/api/distributionlist-addmembers.md | 7 + .../beta/api/distributionlist-delete.md | 7 + .../api/distributionlist-deletemembers.md | 7 + ...ributionlist-get-distributionlistmember.md | 7 + .../beta/api/distributionlist-get.md | 7 + ...butionlist-list-distributionlistmembers.md | 7 + .../beta/api/distributionlist-update.md | 7 + api-reference/beta/api/groupanalytics-get.md | 112 ++++ .../api/identityanalyticsroot-list-groups.md | 170 ++++++ ...ss-tlsinspectionpolicy-list-policyrules.md | 2 +- .../networkaccess-tlsinspectionrule-get.md | 2 +- .../beta/api/plannerplan-list-historyitems.md | 6 +- .../api/reportroot-getsharepointapiusage.md | 521 ++++++++++++++++++ api-reference/beta/api/restorepoint-search.md | 124 +++-- .../beta/api/security-detectionrule-get.md | 9 +- .../beta/api/security-detectionrule-update.md | 8 +- ...ecurity-rulesroot-delete-detectionrules.md | 10 +- .../security-rulesroot-list-detectionrules.md | 8 +- .../security-rulesroot-post-detectionrules.md | 8 +- .../api/security-security-gethuntingschema.md | 183 ++++++ .../beta/api/teamworksection-post-items.md | 27 + .../beta/api/user-list-distributionlists.md | 7 + .../beta/api/user-post-distributionlists.md | 7 + ...ates-deploymentaudience-list-exclusions.md | 2 +- ...package-filterbycurrentuser-permissions.md | 2 +- ...pplicablepolicyrequirements-permissions.md | 2 +- ...ignment-filterbycurrentuser-permissions.md | 2 +- ...ageassignmentrequest-cancel-permissions.md | 2 +- ...request-filterbycurrentuser-permissions.md | 2 +- ...estions-filterbycurrentuser-permissions.md | 3 +- ...age-list-resourcerolescopes-permissions.md | 5 +- ...sspackageassignmentrequests-permissions.md | 2 +- ...ent-post-assignmentrequests-permissions.md | 2 +- .../groupanalytics-get-permissions.md | 5 + ...tyanalyticsroot-list-groups-permissions.md | 5 + ...annerplan-list-historyitems-permissions.md | 6 +- ...troot-getsharepointapiusage-permissions.md | 12 + ...sroot-delete-detectionrules-permissions.md | 1 - ...lesroot-list-detectionrules-permissions.md | 1 - ...lesroot-post-detectionrules-permissions.md | 1 - ...y-security-gethuntingschema-permissions.md | 12 + ...rksectionitem-community-csharp-snippets.md | 24 + ...sioningpolicy-frontline-csharp-snippets.md | 6 + ...y-frontline-forcelogoff-csharp-snippets.md | 27 + .../create-detectionrule-csharp-snippets.md | 134 +++++ ...-or-get-onlinemeeting-2-csharp-snippets.md | 6 + ...migrationjobthismigrate-csharp-snippets.md | 13 + ...igrationjobthisvalidate-csharp-snippets.md | 28 +- .../get-req-for-given-user-csharp-snippets.md | 32 -- ...=> list-detectionrules-csharp-snippets.md} | 5 +- .../update-detectionrule-csharp-snippets.md | 30 + ...nantappmanagementpolicy-csharp-snippets.md | 148 +++++ ...amworksectionitem-community-go-snippets.md | 34 ++ ...olicy-frontline-forcelogoff-go-snippets.md | 31 ++ ...rovisioningpolicy-frontline-go-snippets.md | 5 + ...eate-or-get-onlinemeeting-2-go-snippets.md | 4 + ...nantmigrationjobthismigrate-go-snippets.md | 22 + ...antmigrationjobthisvalidate-go-snippets.md | 28 +- .../go/get-req-for-given-user-go-snippets.md | 31 -- ....md => list-detectionrules-go-snippets.md} | 12 +- .../go/update-detectionrule-go-snippets.md | 32 ++ ...e-tenantappmanagementpolicy-go-snippets.md | 135 +++++ ...worksectionitem-community-java-snippets.md | 18 + ...icy-frontline-forcelogoff-java-snippets.md | 19 + ...visioningpolicy-frontline-java-snippets.md | 3 + .../create-detectionrule-java-snippets.md | 72 +++ ...te-or-get-onlinemeeting-2-java-snippets.md | 3 + ...ntmigrationjobthismigrate-java-snippets.md | 14 + ...tmigrationjobthisvalidate-java-snippets.md | 18 +- .../get-req-for-given-user-java-snippets.md | 20 - ...d => list-detectionrules-java-snippets.md} | 4 +- .../update-detectionrule-java-snippets.md | 21 + ...tenantappmanagementpolicy-java-snippets.md | 109 ++++ ...ctionitem-community-javascript-snippets.md | 21 + ...ontline-forcelogoff-javascript-snippets.md | 22 + ...ingpolicy-frontline-javascript-snippets.md | 1 + ...ackage-subscription-javascript-snippets.md | 8 +- ...reate-detectionrule-javascript-snippets.md | 71 +++ ...te-distributionlist-javascript-snippets.md | 33 ++ ...get-onlinemeeting-2-javascript-snippets.md | 3 +- ...irtualeventtownhall-javascript-snippets.md | 1 + ...virtualeventwebinar-javascript-snippets.md | 1 + ...ationjobthismigrate-javascript-snippets.md | 17 + ...tionjobthisvalidate-javascript-snippets.md | 20 +- ...elete-detectionrule-javascript-snippets.md | 2 +- ...te-distributionlist-javascript-snippets.md | 17 + ...tionlist-addmembers-javascript-snippets.md | 28 + ...nlist-deletemembers-javascript-snippets.md | 27 + .../get-detectionrule-javascript-snippets.md | 2 +- ...et-distributionlist-javascript-snippets.md | 17 + ...tributionlistmember-javascript-snippets.md | 17 + ...-req-for-given-user-javascript-snippets.md | 23 - ...ist-detectionrules-javascript-snippets.md} | 1 - ...ributionlistmembers-javascript-snippets.md | 17 + ...t-distributionlists-javascript-snippets.md | 17 + .../post-chatmessage-5-javascript-snippets.md | 22 +- ...pdate-detectionrule-javascript-snippets.md | 24 + ...te-distributionlist-javascript-snippets.md | 21 + ...appmanagementpolicy-javascript-snippets.md | 109 ++++ ...mworksectionitem-community-php-snippets.md | 26 + ...licy-frontline-forcelogoff-php-snippets.md | 23 + ...ovisioningpolicy-frontline-php-snippets.md | 4 + .../php/create-detectionrule-php-snippets.md | 83 +++ ...ate-or-get-onlinemeeting-2-php-snippets.md | 4 + ...antmigrationjobthismigrate-php-snippets.md | 16 + ...ntmigrationjobthisvalidate-php-snippets.md | 15 +- .../get-req-for-given-user-php-snippets.md | 24 - .../php/list-detectionrule-php-snippets.md | 22 - .../php/list-detectionrules-php-snippets.md | 16 + .../php/update-detectionrule-php-snippets.md | 26 + ...-tenantappmanagementpolicy-php-snippets.md | 76 +++ ...reate-detectionrule-powershell-snippets.md | 65 +++ ...ationjobthismigrate-powershell-snippets.md | 11 + ...tionjobthisvalidate-powershell-snippets.md | 11 + ...-req-for-given-user-powershell-snippets.md | 17 - ...ist-detectionrules-powershell-snippets.md} | 2 +- ...pdate-detectionrule-powershell-snippets.md | 18 + ...appmanagementpolicy-powershell-snippets.md | 109 ++++ ...rksectionitem-community-python-snippets.md | 24 + ...y-frontline-forcelogoff-python-snippets.md | 21 + ...sioningpolicy-frontline-python-snippets.md | 3 + .../create-detectionrule-python-snippets.md | 79 +++ ...-or-get-onlinemeeting-2-python-snippets.md | 3 + ...migrationjobthismigrate-python-snippets.md | 14 + ...igrationjobthisvalidate-python-snippets.md | 21 +- .../get-req-for-given-user-python-snippets.md | 22 - .../list-detectionrule-python-snippets.md | 23 - .../list-detectionrules-python-snippets.md | 14 + .../update-detectionrule-python-snippets.md | 24 + ...nantappmanagementpolicy-python-snippets.md | 121 ++++ api-reference/beta/resources/agentidentity.md | 2 + api-reference/beta/resources/artifactquery.md | 8 +- .../crosstenant-migration-overview.md | 10 +- .../beta/resources/granularrestoreitems.md | 46 ++ .../beta/resources/groupanalytics.md | 131 +++++ .../beta/resources/identityanalyticsroot.md | 50 ++ api-reference/beta/resources/reportroot.md | 7 + .../restoresearchartifactqueryexpression.md | 57 ++ .../security-huntingschemabuiltinfunction.md | 51 ++ ...security-huntingschemafunctionparameter.md | 45 ++ .../security-huntingschemafunctions.md | 43 ++ .../resources/security-huntingschemaresult.md | 43 ++ .../security-huntingschemasavedfunction.md | 57 ++ .../resources/security-huntingschematable.md | 45 ++ .../security-huntingschematablecolumn.md | 45 ++ api-reference/beta/resources/security.md | 1 + .../resources/sharepointapiusagedatapoint.md | 61 ++ .../resources/sharepointapiusagereport.md | 52 ++ .../beta/toc/backup-and-recovery/toc.yml | 2 + .../toc/device-and-app-management/toc.yml | 4 + api-reference/beta/toc/reports/toc.yml | 8 + api-reference/beta/toc/security/toc.yml | 16 + api-reference/beta/toc/toc.mapping.json | 14 +- .../v1.0/api/accesspackagesubject-get.md | 91 +++ .../v1.0/api/accesspackagesubject-update.md | 83 +++ .../v1.0/api/security-analyzedemail-get.md | 259 +++++++++ .../api/security-analyzedemail-remediate.md | 114 ++++ ...y-collaborationroot-list-analyzedemails.md | 192 +++++++ .../v1.0/api/security-retentionlabel-get.md | 2 +- ...package-filterbycurrentuser-permissions.md | 2 +- ...pplicablepolicyrequirements-permissions.md | 2 +- ...ignment-filterbycurrentuser-permissions.md | 2 +- ...ageassignmentrequest-cancel-permissions.md | 2 +- ...request-filterbycurrentuser-permissions.md | 2 +- .../accesspackagesubject-get-permissions.md | 5 + ...accesspackagesubject-update-permissions.md | 5 + ...ent-post-assignmentrequests-permissions.md | 2 +- .../security-analyzedemail-get-permissions.md | 12 + ...ity-analyzedemail-remediate-permissions.md | 12 + ...ionroot-list-analyzedemails-permissions.md | 12 + ...quests-management-group-csharp-snippets.md | 38 ++ ...s-subscription-resource-csharp-snippets.md | 38 ++ ...esspackage-subscription-csharp-snippets.md | 56 ++ ...ption-management-active-csharp-snippets.md | 56 ++ ...iption-management-group-csharp-snippets.md | 57 ++ ...cerequests-management-group-go-snippets.md | 44 ++ ...uests-subscription-resource-go-snippets.md | 44 ++ ...-accesspackage-subscription-go-snippets.md | 68 +++ ...scription-management-active-go-snippets.md | 68 +++ ...bscription-management-group-go-snippets.md | 70 +++ ...requests-management-group-java-snippets.md | 28 + ...sts-subscription-resource-java-snippets.md | 28 + ...ccesspackage-subscription-java-snippets.md | 42 ++ ...ription-management-active-java-snippets.md | 42 ++ ...cription-management-group-java-snippets.md | 43 ++ ...ts-management-group-javascript-snippets.md | 30 + ...bscription-resource-javascript-snippets.md | 30 + ...ackage-subscription-javascript-snippets.md | 42 ++ ...n-management-active-javascript-snippets.md | 42 ++ ...on-management-group-javascript-snippets.md | 43 ++ .../post-chatmessage-5-javascript-snippets.md | 22 +- ...erequests-management-group-php-snippets.md | 35 ++ ...ests-subscription-resource-php-snippets.md | 35 ++ ...cription-management-active-php-snippets.md | 50 ++ ...scription-management-group-php-snippets.md | 51 ++ ...accesspackage-subscription-php-snippets.md | 50 ++ ...ts-management-group-powershell-snippets.md | 25 + ...bscription-resource-powershell-snippets.md | 25 + ...n-management-active-powershell-snippets.md | 37 ++ ...on-management-group-powershell-snippets.md | 38 ++ ...ackage-subscription-powershell-snippets.md | 37 ++ ...quests-management-group-python-snippets.md | 33 ++ ...s-subscription-resource-python-snippets.md | 33 ++ ...ption-management-active-python-snippets.md | 47 ++ ...iption-management-group-python-snippets.md | 48 ++ ...esspackage-subscription-python-snippets.md | 47 ++ .../v1.0/resources/accesspackagesubject.md | 8 +- .../v1.0/resources/enums-security.md | 108 ++++ .../v1.0/resources/security-analyzedemail.md | 165 ++++++ .../security-analyzedemailattachment.md | 57 ++ ...urity-analyzedemailauthenticationdetail.md | 46 ++ .../security-analyzedemaildeliverydetail.md | 71 +++ .../security-analyzedemaildlpruleinfo.md | 42 ++ ...-analyzedemailexchangetransportruleinfo.md | 41 ++ .../security-analyzedemailrecipientdetail.md | 43 ++ .../security-analyzedemailsenderdetail.md | 55 ++ .../resources/security-analyzedemailurl.md | 49 ++ .../resources/security-collaborationroot.md | 43 ++ .../resources/security-compromiseindicator.md | 56 ++ .../security-detonationbehaviourdetails.md | 57 ++ .../resources/security-detonationchain.md | 45 ++ .../resources/security-detonationdetails.md | 73 +++ .../security-detonationobservables.md | 49 ++ .../security-threatdetectiondetail.md | 44 ++ .../v1.0/resources/security-timelineevent.md | 76 +++ api-reference/v1.0/toc/toc.mapping.json | 6 + changelog/Microsoft.AAD.Reporting.json | 68 ++- changelog/Microsoft.DirectoryServices.json | 18 + changelog/Microsoft.EnhancedRestore.json | 42 ++ changelog/Microsoft.FileServices.json | 34 ++ changelog/Microsoft.IGAELM.json | 26 + changelog/Microsoft.M365.Defender.json | 108 +++- changelog/Microsoft.MDO.AnalyzedMessages.json | 238 +++++++- concepts/whats-new-overview.md | 50 +- 249 files changed, 8275 insertions(+), 542 deletions(-) create mode 100644 api-reference/beta/api/groupanalytics-get.md create mode 100644 api-reference/beta/api/identityanalyticsroot-list-groups.md create mode 100644 api-reference/beta/api/reportroot-getsharepointapiusage.md create mode 100644 api-reference/beta/api/security-security-gethuntingschema.md create mode 100644 api-reference/beta/includes/permissions/groupanalytics-get-permissions.md create mode 100644 api-reference/beta/includes/permissions/identityanalyticsroot-list-groups-permissions.md create mode 100644 api-reference/beta/includes/permissions/reportroot-getsharepointapiusage-permissions.md create mode 100644 api-reference/beta/includes/permissions/security-security-gethuntingschema-permissions.md create mode 100644 api-reference/beta/includes/snippets/csharp/add-teamworksectionitem-community-csharp-snippets.md create mode 100644 api-reference/beta/includes/snippets/csharp/apply-cloudpcprovisioningpolicy-frontline-forcelogoff-csharp-snippets.md create mode 100644 api-reference/beta/includes/snippets/csharp/create-detectionrule-csharp-snippets.md create mode 100644 api-reference/beta/includes/snippets/csharp/crosstenantmigrationjobthismigrate-csharp-snippets.md delete mode 100644 api-reference/beta/includes/snippets/csharp/get-req-for-given-user-csharp-snippets.md rename api-reference/beta/includes/snippets/csharp/{list-detectionrule-csharp-snippets.md => list-detectionrules-csharp-snippets.md} (80%) create mode 100644 api-reference/beta/includes/snippets/csharp/update-detectionrule-csharp-snippets.md create mode 100644 api-reference/beta/includes/snippets/go/add-teamworksectionitem-community-go-snippets.md create mode 100644 api-reference/beta/includes/snippets/go/apply-cloudpcprovisioningpolicy-frontline-forcelogoff-go-snippets.md create mode 100644 api-reference/beta/includes/snippets/go/crosstenantmigrationjobthismigrate-go-snippets.md delete mode 100644 api-reference/beta/includes/snippets/go/get-req-for-given-user-go-snippets.md rename api-reference/beta/includes/snippets/go/{list-detectionrule-go-snippets.md => list-detectionrules-go-snippets.md} (55%) create mode 100644 api-reference/beta/includes/snippets/go/update-detectionrule-go-snippets.md create mode 100644 api-reference/beta/includes/snippets/java/add-teamworksectionitem-community-java-snippets.md create mode 100644 api-reference/beta/includes/snippets/java/apply-cloudpcprovisioningpolicy-frontline-forcelogoff-java-snippets.md create mode 100644 api-reference/beta/includes/snippets/java/create-detectionrule-java-snippets.md create mode 100644 api-reference/beta/includes/snippets/java/crosstenantmigrationjobthismigrate-java-snippets.md delete mode 100644 api-reference/beta/includes/snippets/java/get-req-for-given-user-java-snippets.md rename api-reference/beta/includes/snippets/java/{list-detectionrule-java-snippets.md => list-detectionrules-java-snippets.md} (82%) create mode 100644 api-reference/beta/includes/snippets/java/update-detectionrule-java-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/add-teamworksectionitem-community-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/apply-cloudpcprovisioningpolicy-frontline-forcelogoff-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/create-detectionrule-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/create-distributionlist-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/crosstenantmigrationjobthismigrate-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/delete-distributionlist-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/distributionlist-addmembers-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/distributionlist-deletemembers-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/get-distributionlist-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/get-distributionlistmember-javascript-snippets.md delete mode 100644 api-reference/beta/includes/snippets/javascript/get-req-for-given-user-javascript-snippets.md rename api-reference/beta/includes/snippets/javascript/{list-detectionrule-javascript-snippets.md => list-detectionrules-javascript-snippets.md} (96%) create mode 100644 api-reference/beta/includes/snippets/javascript/list-distributionlistmembers-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/list-distributionlists-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/update-detectionrule-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/javascript/update-distributionlist-javascript-snippets.md create mode 100644 api-reference/beta/includes/snippets/php/add-teamworksectionitem-community-php-snippets.md create mode 100644 api-reference/beta/includes/snippets/php/apply-cloudpcprovisioningpolicy-frontline-forcelogoff-php-snippets.md create mode 100644 api-reference/beta/includes/snippets/php/create-detectionrule-php-snippets.md create mode 100644 api-reference/beta/includes/snippets/php/crosstenantmigrationjobthismigrate-php-snippets.md delete mode 100644 api-reference/beta/includes/snippets/php/get-req-for-given-user-php-snippets.md delete mode 100644 api-reference/beta/includes/snippets/php/list-detectionrule-php-snippets.md create mode 100644 api-reference/beta/includes/snippets/php/list-detectionrules-php-snippets.md create mode 100644 api-reference/beta/includes/snippets/php/update-detectionrule-php-snippets.md create mode 100644 api-reference/beta/includes/snippets/powershell/create-detectionrule-powershell-snippets.md create mode 100644 api-reference/beta/includes/snippets/powershell/crosstenantmigrationjobthismigrate-powershell-snippets.md create mode 100644 api-reference/beta/includes/snippets/powershell/crosstenantmigrationjobthisvalidate-powershell-snippets.md delete mode 100644 api-reference/beta/includes/snippets/powershell/get-req-for-given-user-powershell-snippets.md rename api-reference/beta/includes/snippets/powershell/{list-detectionrule-powershell-snippets.md => list-detectionrules-powershell-snippets.md} (75%) create mode 100644 api-reference/beta/includes/snippets/powershell/update-detectionrule-powershell-snippets.md create mode 100644 api-reference/beta/includes/snippets/python/add-teamworksectionitem-community-python-snippets.md create mode 100644 api-reference/beta/includes/snippets/python/apply-cloudpcprovisioningpolicy-frontline-forcelogoff-python-snippets.md create mode 100644 api-reference/beta/includes/snippets/python/create-detectionrule-python-snippets.md create mode 100644 api-reference/beta/includes/snippets/python/crosstenantmigrationjobthismigrate-python-snippets.md delete mode 100644 api-reference/beta/includes/snippets/python/get-req-for-given-user-python-snippets.md delete mode 100644 api-reference/beta/includes/snippets/python/list-detectionrule-python-snippets.md create mode 100644 api-reference/beta/includes/snippets/python/list-detectionrules-python-snippets.md create mode 100644 api-reference/beta/includes/snippets/python/update-detectionrule-python-snippets.md create mode 100644 api-reference/beta/resources/granularrestoreitems.md create mode 100644 api-reference/beta/resources/groupanalytics.md create mode 100644 api-reference/beta/resources/identityanalyticsroot.md create mode 100644 api-reference/beta/resources/restoresearchartifactqueryexpression.md create mode 100644 api-reference/beta/resources/security-huntingschemabuiltinfunction.md create mode 100644 api-reference/beta/resources/security-huntingschemafunctionparameter.md create mode 100644 api-reference/beta/resources/security-huntingschemafunctions.md create mode 100644 api-reference/beta/resources/security-huntingschemaresult.md create mode 100644 api-reference/beta/resources/security-huntingschemasavedfunction.md create mode 100644 api-reference/beta/resources/security-huntingschematable.md create mode 100644 api-reference/beta/resources/security-huntingschematablecolumn.md create mode 100644 api-reference/beta/resources/sharepointapiusagedatapoint.md create mode 100644 api-reference/beta/resources/sharepointapiusagereport.md create mode 100644 api-reference/v1.0/api/accesspackagesubject-get.md create mode 100644 api-reference/v1.0/api/accesspackagesubject-update.md create mode 100644 api-reference/v1.0/api/security-analyzedemail-get.md create mode 100644 api-reference/v1.0/api/security-analyzedemail-remediate.md create mode 100644 api-reference/v1.0/api/security-collaborationroot-list-analyzedemails.md create mode 100644 api-reference/v1.0/includes/permissions/accesspackagesubject-get-permissions.md create mode 100644 api-reference/v1.0/includes/permissions/accesspackagesubject-update-permissions.md create mode 100644 api-reference/v1.0/includes/permissions/security-analyzedemail-get-permissions.md create mode 100644 api-reference/v1.0/includes/permissions/security-analyzedemail-remediate-permissions.md create mode 100644 api-reference/v1.0/includes/permissions/security-collaborationroot-list-analyzedemails-permissions.md create mode 100644 api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-csharp-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-csharp-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerolescope-from-accesspackage-subscription-csharp-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-csharp-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-csharp-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-go-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-go-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerolescope-from-accesspackage-subscription-go-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-go-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-go-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-java-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-java-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerolescope-from-accesspackage-subscription-java-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-java-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-java-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-javascript-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-javascript-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerolescope-from-accesspackage-subscription-javascript-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-javascript-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-javascript-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-php-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-php-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-php-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-php-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerolescope-from-accesspackage-subscription-php-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-powershell-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-powershell-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-powershell-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-powershell-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerolescope-from-accesspackage-subscription-powershell-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-python-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-python-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-python-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-python-snippets.md create mode 100644 api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerolescope-from-accesspackage-subscription-python-snippets.md create mode 100644 api-reference/v1.0/resources/security-analyzedemail.md create mode 100644 api-reference/v1.0/resources/security-analyzedemailattachment.md create mode 100644 api-reference/v1.0/resources/security-analyzedemailauthenticationdetail.md create mode 100644 api-reference/v1.0/resources/security-analyzedemaildeliverydetail.md create mode 100644 api-reference/v1.0/resources/security-analyzedemaildlpruleinfo.md create mode 100644 api-reference/v1.0/resources/security-analyzedemailexchangetransportruleinfo.md create mode 100644 api-reference/v1.0/resources/security-analyzedemailrecipientdetail.md create mode 100644 api-reference/v1.0/resources/security-analyzedemailsenderdetail.md create mode 100644 api-reference/v1.0/resources/security-analyzedemailurl.md create mode 100644 api-reference/v1.0/resources/security-collaborationroot.md create mode 100644 api-reference/v1.0/resources/security-compromiseindicator.md create mode 100644 api-reference/v1.0/resources/security-detonationbehaviourdetails.md create mode 100644 api-reference/v1.0/resources/security-detonationchain.md create mode 100644 api-reference/v1.0/resources/security-detonationdetails.md create mode 100644 api-reference/v1.0/resources/security-detonationobservables.md create mode 100644 api-reference/v1.0/resources/security-threatdetectiondetail.md create mode 100644 api-reference/v1.0/resources/security-timelineevent.md diff --git a/.github/workflows/api-doctor.yml b/.github/workflows/api-doctor.yml index e5484dfcdb5..dd05a6737f1 100644 --- a/.github/workflows/api-doctor.yml +++ b/.github/workflows/api-doctor.yml @@ -26,7 +26,7 @@ jobs: # Also required by Windows - run: git config --global core.longpaths true - name: Checkout docs repo - uses: actions/checkout@v6 + uses: actions/checkout@v7 - name: Setup .NET uses: actions/setup-dotnet@v5 with: diff --git a/.github/workflows/changelog-validation.yml b/.github/workflows/changelog-validation.yml index ee18ae17e42..0ce9567e82d 100644 --- a/.github/workflows/changelog-validation.yml +++ b/.github/workflows/changelog-validation.yml @@ -9,7 +9,7 @@ jobs: verify-json-validation: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - name: Validate Changelog JSONs with Schema run: | ./scripts/validate-changelog-json.ps1 diff --git a/.github/workflows/cloud-support.yml b/.github/workflows/cloud-support.yml index 66ef985968f..d8dac12d7dd 100644 --- a/.github/workflows/cloud-support.yml +++ b/.github/workflows/cloud-support.yml @@ -16,16 +16,16 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout docs repo - uses: actions/checkout@v6 + uses: actions/checkout@v7 with: path: docs - name: Checkout metadata repo - uses: actions/checkout@v6 + uses: actions/checkout@v7 with: repository: microsoftgraph/msgraph-metadata path: metadata - name: Checkout tool repo - uses: actions/checkout@v6 + uses: actions/checkout@v7 with: repository: microsoftgraph/msgraph-cloud-support path: tool diff --git a/.github/workflows/community.yml b/.github/workflows/community.yml index 3d77503ba04..dbccd45eee0 100644 --- a/.github/workflows/community.yml +++ b/.github/workflows/community.yml @@ -15,5 +15,5 @@ jobs: GH_TOKEN: ${{ github.token }} runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - run: gh pr edit ${{ github.event.number }} --milestone "Community Contributions" diff --git a/.github/workflows/generate-ref-toc.yml b/.github/workflows/generate-ref-toc.yml index b96c4ab5fab..c228f3a84a6 100644 --- a/.github/workflows/generate-ref-toc.yml +++ b/.github/workflows/generate-ref-toc.yml @@ -31,12 +31,12 @@ jobs: result: ${{ steps.commit-if-needed.outputs.result }} steps: - name: Checkout docs repo - uses: actions/checkout@v6 + uses: actions/checkout@v7 with: ref: ${{ inputs.target }} path: docs - name: Checkout tool repo - uses: actions/checkout@v6 + uses: actions/checkout@v7 with: repository: microsoftgraph/msgraph-toc-gen path: tool diff --git a/.github/workflows/permissions-reference-gen.yml b/.github/workflows/permissions-reference-gen.yml index f12d7c0bfce..897e29d16f2 100644 --- a/.github/workflows/permissions-reference-gen.yml +++ b/.github/workflows/permissions-reference-gen.yml @@ -20,7 +20,7 @@ jobs: run: git config --system core.longpaths true - name: Checkout microsoft-graph-docs - uses: actions/checkout@v6 + uses: actions/checkout@v7 with: path: docs diff --git a/.github/workflows/permissions-tables-generation-pr.yml b/.github/workflows/permissions-tables-generation-pr.yml index 98f7885c480..872c9fb50bf 100644 --- a/.github/workflows/permissions-tables-generation-pr.yml +++ b/.github/workflows/permissions-tables-generation-pr.yml @@ -21,7 +21,7 @@ jobs: runs-on: ubuntu-latest # https://github.com/actions/virtual-environments/blob/master/images/linux/Ubuntu1804-README.md steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 with: fetch-depth: 10 # number of commits to fetch so that we can query history diff --git a/.github/workflows/snippet-generation-pr.yml b/.github/workflows/snippet-generation-pr.yml index 23b1e8ff7f7..e0d51001dea 100644 --- a/.github/workflows/snippet-generation-pr.yml +++ b/.github/workflows/snippet-generation-pr.yml @@ -22,7 +22,7 @@ jobs: runs-on: ubuntu-latest # https://github.com/actions/virtual-environments/blob/master/images/linux/Ubuntu1804-README.md steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 with: fetch-depth: 10 # number of commits to fetch so that we can query history diff --git a/.github/workflows/temp-docstubs-validation.yml b/.github/workflows/temp-docstubs-validation.yml index d70e9ecf093..00a74f29a31 100644 --- a/.github/workflows/temp-docstubs-validation.yml +++ b/.github/workflows/temp-docstubs-validation.yml @@ -9,7 +9,7 @@ jobs: verify-temp-docstubs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - name: Validate temp-docstubs folder run: | ./scripts/validate-temp-docstubs.ps1 diff --git a/api-reference/beta/api/accesspackagesubject-update.md b/api-reference/beta/api/accesspackagesubject-update.md index 4d35a7223de..a7ed9a991c2 100644 --- a/api-reference/beta/api/accesspackagesubject-update.md +++ b/api-reference/beta/api/accesspackagesubject-update.md @@ -24,6 +24,9 @@ Choose the permission or permissions marked as least privileged for this API. Us [!INCLUDE [permissions-table](../includes/permissions/accesspackagesubject-update-permissions.md)] +[!INCLUDE [rbac-entitlement-catalog-owner-write](../includes/rbac-for-apis/rbac-entitlement-management-catalog-owner-apis-write.md)] + + ## HTTP request +[!INCLUDE [permissions-table](../includes/permissions/groupanalytics-get-permissions.md)] + +[!INCLUDE [rbac-usage-insights-apis](../includes/rbac-for-apis/rbac-usage-insights-apis.md)] + +## HTTP request + + +```http +GET /reports/identityAnalytics/groups/{groupAnalyticsId} +``` + +## Optional query parameters + +This method supports the `$select` OData query parameter to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). + +## Request headers + +| Name | Description | +| :------------ | :------------- | +| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts). | + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a [groupAnalytics](../resources/groupanalytics.md) object in the response body. + +## Examples + +### Request + +The following example shows a request. + + +```http +GET https://graph.microsoft.com/beta/reports/identityAnalytics/groups/1f3a3b9c-6e2c-4f0a-9b2c-9a6d4d2e8f10 +``` + +### Response + +The following example shows the response. + +>**Note:** The response object shown here might be shortened for readability. + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/beta/$metadata#reports/identityAnalytics/groups/$entity", + "id": "1f3a3b9c-6e2c-4f0a-9b2c-9a6d4d2e8f10", + "tenantId": "5d6f7a8b-1c2d-3e4f-5a6b-7c8d9e0f1a2b", + "displayName": "Sales Team", + "calculatedDateTime": "2026-06-08T00:00:00Z", + "createdDateTime": "2023-02-15T10:30:00Z", + "groupType": "isCloudGroup", + "dynamicMembershipType": "None", + "isValidGroup": true, + "isCloudM365Group": true, + "isCloudDistributionListGroup": false, + "isCloudMailEnabledSecurityGroup": false, + "isCloudSecurityGroup": false, + "isDynamicGroup": false, + "isOnPremiseDistributionListGroup": false, + "isOnPremiseMailEnabledSecurityGroup": false, + "isOnPremiseSecurityGroup": false, + "directGroupMemberCount": 3, + "transitiveUserCount": 412, + "memberTransitiveUserCount": 405, + "guestTransitiveUserCount": 7, + "transitiveServicePrincipalCount": 2, + "assignedRoleCount": 1, + "sensitivityLabelCount": 1, + "guestOwnerCount": 0, + "memberOwnerCount": 2, + "servicePrincipalOwnerCount": 0 +} +``` diff --git a/api-reference/beta/api/identityanalyticsroot-list-groups.md b/api-reference/beta/api/identityanalyticsroot-list-groups.md new file mode 100644 index 00000000000..b0cb6cc516a --- /dev/null +++ b/api-reference/beta/api/identityanalyticsroot-list-groups.md @@ -0,0 +1,170 @@ +--- +title: "List groupAnalytics" +doc_type: apiPageType +description: "Get a list of the groupAnalytics objects and their properties for groups in a Microsoft Entra tenant." +ms.localizationpriority: medium +author: "Licantrop0" +ms.subservice: "reports" +ms.date: 06/09/2026 +--- + +# List groupAnalytics + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Get a list of the [groupAnalytics](../resources/groupanalytics.md) objects and their properties for a Microsoft Entra tenant. Each object holds point-in-time [identity analytics](../resources/identityanalyticsroot.md) for one group. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/identityanalyticsroot-list-groups-permissions.md)] + +[!INCLUDE [rbac-usage-insights-apis](../includes/rbac-for-apis/rbac-usage-insights-apis.md)] + +## HTTP request + + +```http +GET /reports/identityAnalytics/groups +``` + +## Optional query parameters + +This method supports the `$count`, `$filter`, `$orderby`, `$select`, and `$top` OData query parameters to help customize the response. The `$filter` operators and `$orderby` support available for each property are listed in the [groupAnalytics](../resources/groupanalytics.md) properties table. + +Across the resource, `$filter` supports the `eq`, `ne`, `gt`, `ge`, `lt`, and `le` operators, the `and` and `or` logical operators, and the `startsWith`, `endsWith`, and `contains` string functions, depending on the property type. The `not` and `has` operators aren't supported. + +To get the number of matching groups, append `/$count` to the request URL (for example, `GET /reports/identityAnalytics/groups/$count`) or add the `$count=true` query parameter to return the count inline as the `@odata.count` property. Large result sets are paged; follow the `@odata.nextLink` URL in the response to retrieve the next page. For general information, see [OData query parameters](/graph/query-parameters). + +## Request headers + +| Name | Description | +| :------------ | :------------- | +| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts). | + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a collection of [groupAnalytics](../resources/groupanalytics.md) objects in the response body. + +## Examples + +### Example 1: Get a list of groupAnalytics objects + +#### Request + +The following example shows a request. + + +```http +GET https://graph.microsoft.com/beta/reports/identityAnalytics/groups +``` + +#### Response + +The following example shows the response. + +>**Note:** The response object shown here might be shortened for readability. + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/beta/$metadata#reports/identityAnalytics/groups", + "value": [ + { + "id": "1f3a3b9c-6e2c-4f0a-9b2c-9a6d4d2e8f10", + "tenantId": "5d6f7a8b-1c2d-3e4f-5a6b-7c8d9e0f1a2b", + "displayName": "Sales Team", + "calculatedDateTime": "2026-06-08T00:00:00Z", + "createdDateTime": "2023-02-15T10:30:00Z", + "groupType": "isCloudGroup", + "isValidGroup": true, + "isCloudM365Group": true, + "isDynamicGroup": false, + "directGroupMemberCount": 3, + "transitiveUserCount": 412, + "memberTransitiveUserCount": 405, + "guestTransitiveUserCount": 7, + "assignedRoleCount": 1 + }, + { + "id": "9a8b7c6d-5e4f-3a2b-1c0d-9e8f7a6b5c4d", + "tenantId": "5d6f7a8b-1c2d-3e4f-5a6b-7c8d9e0f1a2b", + "displayName": "Engineering - All", + "calculatedDateTime": "2026-06-08T00:00:00Z", + "createdDateTime": "2021-11-03T08:00:00Z", + "groupType": "isCloudGroup", + "isValidGroup": true, + "isCloudM365Group": false, + "isCloudSecurityGroup": true, + "isDynamicGroup": true, + "directGroupMemberCount": 12, + "transitiveUserCount": 1890, + "memberTransitiveUserCount": 1890, + "guestTransitiveUserCount": 0, + "assignedRoleCount": 0 + } + ] +} +``` + +### Example 2: Get valid groups that contain guests, with selected properties + +#### Request + +The following example uses `$filter` to return only valid groups that contain at least one transitive guest user. It uses `$select` to limit the returned properties, `$orderby` to sort the results by creation date, and `$top` to return at most 10 results. + + +```http +GET https://graph.microsoft.com/beta/reports/identityAnalytics/groups?$filter=isValidGroup eq true and guestTransitiveUserCount gt 0&$select=id,displayName,createdDateTime,groupType,transitiveUserCount,guestTransitiveUserCount&$orderby=createdDateTime desc&$top=10 +``` + +#### Response + +The following example shows the response. + +>**Note:** The response object shown here might be shortened for readability. + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/beta/$metadata#reports/identityAnalytics/groups(id,displayName,createdDateTime,groupType,transitiveUserCount,guestTransitiveUserCount)", + "value": [ + { + "id": "1f3a3b9c-6e2c-4f0a-9b2c-9a6d4d2e8f10", + "displayName": "Sales Team", + "createdDateTime": "2023-02-15T10:30:00Z", + "groupType": "isCloudGroup", + "transitiveUserCount": 412, + "guestTransitiveUserCount": 7 + } + ] +} +``` diff --git a/api-reference/beta/api/networkaccess-tlsinspectionpolicy-list-policyrules.md b/api-reference/beta/api/networkaccess-tlsinspectionpolicy-list-policyrules.md index 8548e23b40b..e9bcf2574e3 100644 --- a/api-reference/beta/api/networkaccess-tlsinspectionpolicy-list-policyrules.md +++ b/api-reference/beta/api/networkaccess-tlsinspectionpolicy-list-policyrules.md @@ -133,7 +133,7 @@ Content-Type: application/json { "@odata.type": "#microsoft.graph.networkaccess.tlsInspectionFqdnDestination", "values": [ - "www.contoso.test.com", + "www.contoso.com", "*.contoso.org" ] }, diff --git a/api-reference/beta/api/networkaccess-tlsinspectionrule-get.md b/api-reference/beta/api/networkaccess-tlsinspectionrule-get.md index 9a74c968e70..373a9676448 100644 --- a/api-reference/beta/api/networkaccess-tlsinspectionrule-get.md +++ b/api-reference/beta/api/networkaccess-tlsinspectionrule-get.md @@ -130,7 +130,7 @@ Content-Type: application/json { "@odata.type": "#microsoft.graph.networkaccess.tlsInspectionFqdnDestination", "values": [ - "www.contoso.test.com", + "www.contoso.com", "*.contoso.org" ] }, diff --git a/api-reference/beta/api/plannerplan-list-historyitems.md b/api-reference/beta/api/plannerplan-list-historyitems.md index c62086f9377..3bb11ce6b7d 100644 --- a/api-reference/beta/api/plannerplan-list-historyitems.md +++ b/api-reference/beta/api/plannerplan-list-historyitems.md @@ -20,7 +20,11 @@ Get the [history](../resources/plannerhistoryitem.md) of changes made to tasks w Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/plannerplan-list-historyitems-permissions.md)] ## HTTP request diff --git a/api-reference/beta/api/reportroot-getsharepointapiusage.md b/api-reference/beta/api/reportroot-getsharepointapiusage.md new file mode 100644 index 00000000000..5a34d78b83b --- /dev/null +++ b/api-reference/beta/api/reportroot-getsharepointapiusage.md @@ -0,0 +1,521 @@ +--- +title: "reportRoot: getSharePointApiUsage" +description: "Retrieve OneDrive and SharePoint API usage metrics for a tenant." +author: "ireneren" +ms.localizationpriority: medium +ms.subservice: "reports" +doc_type: apiPageType +ms.date: 06/19/2026 +--- + +# reportRoot: getSharePointApiUsage + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Get aggregated usage data for all applications in a tenant. This API retrieves usage data by predefined period or by specific date (you may specify a period or a date, but not both). The response format differs by content type: JSON returns a structured format with separate `summary` and `details` properties, while CSV returns a flat structure with the summary as the first data row. + +The API supports two query patterns: + +- **Period-based**: Get usage for the last N days (`D1`, `D7`, or `D30`). +- **Date-based**: Get usage for a specific date. + +Results can be optionally filtered by application ID(s). Data is returned in CSV format by default, or JSON format when explicitly requested via the `$format` query parameter. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/reportroot-getsharepointapiusage-permissions.md)] + +## HTTP request + + +``` http +GET /reports/getSharePointApiUsage(period='{period_value}') +GET /reports/getSharePointApiUsage(date={date_value}) +GET /reports/getSharePointApiUsage(period='{period_value}',appId='{appId_value}') +GET /reports/getSharePointApiUsage(date={date_value},appId='{appId_value}') +GET /reports/getSharePointApiUsage(period='{period_value}')?$format={format} +``` + +## Function parameters + +In the request URL, provide the following parameters with values. + +| Parameter | Type | Description | +|:----------|:-----------------|:----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| +| appId | String | Optional. A comma-separated list of application GUIDs to filter results. When specified, only detail rows for the specified applications are returned and the summary row is excluded. | +| date | Date | Required if **period** isn't specified. Specifies the date for the report. Accepts `YYYY-MM-DD` format (for example, `2026-02-05`). Can't be used with **period**. Can't be a future date. | +| period | String | Required if **date** isn't specified. Specifies the length of time over which the report is aggregated. The supported values are: `D1`, `D7`, `D30`. Can't be used with **date**. | + +## Optional query parameters + +This method supports the `$format`, `$skip`, and `$top` [OData query parameters](/graph/query-parameters) to customize the response. + +| Parameter | Type | Description | +|:-----------|:-------|:---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| +| `$format` | String | The response format. Supported values: `csv`, `text/csv`, `json`, `application/json`. Default: `text/csv`. | +| `$skip` | Int32 | JSON only. The number of items to skip for pagination. Not supported with CSV format. | +| `$top` | Int32 | JSON only. The number of items to return per page. Not supported with CSV format. | + +## Request headers + +| Name | Description | +|:--------------|:------------------------------------------------------------------------------------------------------| +| Authorization | Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts). | + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and usage data in the requested format. + +If no usage data is available for the specified period or date, this method returns a `204 No Content` response with an empty response body. + +### CSV format + +If successful with CSV format, this method returns a `200 OK` response with content type `text/csv`. The CSV data is returned directly in the response body. + +> **Note:** Unlike most other Microsoft Graph reports APIs that return a `302 Found` redirect to a preauthenticated download URL, this API returns the CSV data directly in the response body with a `200 OK` response. + +The CSV file has the following column headers: + +`UsageDateTime,ServiceArea,TenantId,AppId,UsageMB,UsageRequests,ActiveApps` + +The first data row is a summary row with **ActiveApps** populated and **AppId** empty. Subsequent rows are per-app, per-date details with **AppId** populated and **ActiveApps** empty. Data points are ordered by **UsageDateTime** descending (most recent first). + +### JSON format + +If successful with JSON format, this method returns a structured object with `summary` and `details` properties. The `summary` contains aggregated totals, and `details` contains an array of per-application, per-date details. The `summary` is `null` when an `appId` filter is specified. The `details` array supports pagination via `$skip` and `$top` query parameters. + +## Examples + +### Example 1: Get usage for last 7 days (CSV format, default) + +#### Request + +The following example shows a request. + + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(period='D7')?$format=text/csv +``` + +#### Response + +The following example shows the response. + + +``` http +HTTP/1.1 200 OK +Content-Type: text/csv + +UsageDateTime,ServiceArea,TenantId,AppId,UsageMB,UsageRequests,ActiveApps +2026-02-04T00:00:00Z,OneDrive and SharePoint,12345678-1234-1234-1234-123456789abc,,128000,15000,5 +2026-02-04T00:00:00Z,OneDrive and SharePoint,12345678-1234-1234-1234-123456789abc,00000003-0000-0ff1-ce00-000000000000,82000,8500, +2026-02-04T00:00:00Z,OneDrive and SharePoint,12345678-1234-1234-1234-123456789abc,ab9b8c07-8f02-4f72-87fa-80105867a763,46000,4500, +2026-02-03T00:00:00Z,OneDrive and SharePoint,12345678-1234-1234-1234-123456789abc,00000003-0000-0ff1-ce00-000000000000,75000,7000, +2026-02-03T00:00:00Z,OneDrive and SharePoint,12345678-1234-1234-1234-123456789abc,ab9b8c07-8f02-4f72-87fa-80105867a763,38000,3500, +``` + +### Example 2: Get usage for a specific date (JSON format) + +#### Request + +The following example shows a request. + + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(date=2026-02-04)?$format=application/json +``` + +#### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "summary": { + "usageDateTime": "2026-02-04T00:00:00Z", + "serviceArea": "OneDrive and SharePoint", + "tenantId": "12345678-1234-1234-1234-123456789abc", + "appId": null, + "usageMB": 128000, + "usageRequests": 15000, + "activeApps": 5 + }, + "details": [ + { + "usageDateTime": "2026-02-04T00:00:00Z", + "serviceArea": "OneDrive and SharePoint", + "tenantId": "12345678-1234-1234-1234-123456789abc", + "appId": "00000003-0000-0ff1-ce00-000000000000", + "usageMB": 82000, + "usageRequests": 8500, + "activeApps": null + }, + { + "usageDateTime": "2026-02-04T00:00:00Z", + "serviceArea": "OneDrive and SharePoint", + "tenantId": "12345678-1234-1234-1234-123456789abc", + "appId": "ab9b8c07-8f02-4f72-87fa-80105867a763", + "usageMB": 46000, + "usageRequests": 4500, + "activeApps": null + } + ] +} +``` + +### Example 3: Filter by application ID + +#### Request + +The following example shows a request. + + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(period='D7',appId='75b613ff-af8b-48bb-b872-e06048ccf8ea')?$format=text/csv +``` + +#### Response + +The following example shows the response. + + +``` http +HTTP/1.1 200 OK +Content-Type: text/csv + +UsageDateTime,ServiceArea,TenantId,AppId,UsageMB,UsageRequests,ActiveApps +2025-08-28T00:00:00Z,OneDrive and SharePoint,12345678-1234-1234-1234-123456789abc,75b613ff-af8b-48bb-b872-e06048ccf8ea,2432,1500, +``` + +### Example 4: Get JSON response + +#### Request + +The following example shows a request. + + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(period='D7')?$format=application/json +``` + +#### Response + +The following example shows the response. + + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "summary": { + "usageDateTime": "2026-02-04T00:00:00Z", + "serviceArea": "OneDrive and SharePoint", + "tenantId": "12345678-1234-1234-1234-123456789abc", + "appId": null, + "usageMB": 128000, + "usageRequests": 15000, + "activeApps": 5 + }, + "details": [ + { + "usageDateTime": "2026-02-04T00:00:00Z", + "serviceArea": "OneDrive and SharePoint", + "tenantId": "12345678-1234-1234-1234-123456789abc", + "appId": "00000003-0000-0ff1-ce00-000000000000", + "usageMB": 82000, + "usageRequests": 8500, + "activeApps": null + }, + { + "usageDateTime": "2026-02-04T00:00:00Z", + "serviceArea": "OneDrive and SharePoint", + "tenantId": "12345678-1234-1234-1234-123456789abc", + "appId": "ab9b8c07-8f02-4f72-87fa-80105867a763", + "usageMB": 46000, + "usageRequests": 4500, + "activeApps": null + } + ] +} +``` + +> **Note:** JSON format returns a structured object with `summary` containing aggregated totals and `details` containing per-application details. The `details` array supports pagination via `$skip` and `$top` query parameters. + +### Example 5: Get JSON response with appId filter + +#### Request + +The following example shows a request. + + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(period='D7',appId='00000003-0000-0ff1-ce00-000000000000')?$format=application/json +``` + +#### Response + +The following example shows the response. + + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "summary": null, + "details": [ + { + "usageDateTime": "2026-02-04T00:00:00Z", + "serviceArea": "OneDrive and SharePoint", + "tenantId": "12345678-1234-1234-1234-123456789abc", + "appId": "00000003-0000-0ff1-ce00-000000000000", + "usageMB": 82000, + "usageRequests": 8500, + "activeApps": null + }, + { + "usageDateTime": "2026-02-03T00:00:00Z", + "serviceArea": "OneDrive and SharePoint", + "tenantId": "12345678-1234-1234-1234-123456789abc", + "appId": "00000003-0000-0ff1-ce00-000000000000", + "usageMB": 75000, + "usageRequests": 7000, + "activeApps": null + } + ] +} +``` + +> **Note:** When an `appId` filter is specified, the `summary` property is `null` and only filtered detail rows appear in the `details` array. + + +### Example 6: No data available + +#### Request + +The following example shows a request. + + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(date=2026-02-01) +``` + +#### Response + +The following example shows the response. + + +``` http +HTTP/1.1 204 No Content +``` + +### Example 7: Error - Missing both parameters + +#### Request + +The following example shows a request. + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage +``` + +#### Response + +The following example shows the response. + +```http +HTTP/1.1 400 Bad Request +Content-Type: application/json + +{ + "error": { + "code": "invalidRequest", + "message": "Either 'period' OR 'date' parameter must be provided." + } +} +``` + +### Example 8: Error - Both parameters provided + +#### Request + +The following example shows a request. + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(period='D7',date=2026-02-01) +``` + +#### Response + +The following example shows the response. + +```http +HTTP/1.1 400 Bad Request +Content-Type: application/json + +{ + "error": { + "code": "invalidRequest", + "message": "Cannot specify both 'period' and 'date' parameters. Provide only one." + } +} +``` + +### Example 9: Error - Invalid period + +#### Request + +The following example shows a request. + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(period='D90') +``` + +#### Response + +The following example shows the response. + +```http +HTTP/1.1 400 Bad Request +Content-Type: application/json + +{ + "error": { + "code": "invalidRequest", + "message": "Invalid period 'D90'. Allowed values: D1, D7, D30." + } +} +``` + +### Example 10: Error - Tenant not onboarded for preview + +#### Request + +The following example shows a request. + +```msgraph-interactive +GET https://graph.microsoft.com/beta/reports/getSharePointApiUsage(period='D7') +``` + +#### Response + +The following example shows the response. + +```http +HTTP/1.1 403 Forbidden +Content-Type: application/json + +{ + "error": { + "code": "accessDenied", + "message": "Tenant {tenantId} is not enabled for this preview feature." + } +} +``` diff --git a/api-reference/beta/api/restorepoint-search.md b/api-reference/beta/api/restorepoint-search.md index 2432c846f86..f9b5937656f 100644 --- a/api-reference/beta/api/restorepoint-search.md +++ b/api-reference/beta/api/restorepoint-search.md @@ -80,7 +80,7 @@ For a list of possible error responses, see [Backup Storage API error responses] #### Request The following example shows a request. -# [HTTP](#tab/http) + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.context": "/solutions/backupRestore/$metadata#restorePoints", + "searchResponseId": "M2UyZDAwMDAwMDMxMzkzYTMyNj", + "searchResults": [ + { + "artifactHitCount": 26, + "restorePoint": { + "@odata.type": "#microsoft.graph.restorePoint", + "id": "1f1fccc3-a642-4f61-bf49-f37b9a888279", + "protectionDateTime": "2023-01-04T00:00:00Z", + "expirationDateTime": "2024-01-04T00:00:00Z", + "protectionUnit": { + "@odata.type": "#microsoft.graph.siteProtectionUnit", + "id": "23014d8c-71fe-4d00-a01a-31850bc5b42a", + "siteId": "344d9337-d8f0-456e-92cd-00a3abdd2093", + "policyId": "9fec8e78-bce4-4aaf-ab1b-5451cc387264" + }, + "tags": "fastRestore" + } + } + ] +} +``` -# [Java](#tab/java) -[!INCLUDE [sample-code](../includes/snippets/java/restorepoint-search-artifactquery-java-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] +### Example 3: Search with structuredQueryExpression -# [JavaScript](#tab/javascript) -[!INCLUDE [sample-code](../includes/snippets/javascript/restorepoint-search-artifactquery-javascript-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] +#### Request -# [PHP](#tab/php) -[!INCLUDE [sample-code](../includes/snippets/php/restorepoint-search-artifactquery-php-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] +The following example shows a request using the new structured query expression. -# [PowerShell](#tab/powershell) -[!INCLUDE [sample-code](../includes/snippets/powershell/restorepoint-search-artifactquery-powershell-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] + +```http +POST https://graph.microsoft.com/beta/solutions/backupRestore/restorePoints/search +Content-Type: application/json -# [Python](#tab/python) -[!INCLUDE [sample-code](../includes/snippets/python/restorepoint-search-artifactquery-python-snippets.md)] -[!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] +{ + "artifactQuery": { + "structuredQueryExpression": { + "senders": ["abc@contoso.com"], + "subjects": ["Check email", "Important"], + "hasAttachment": true, + "items": ["email"] + } + }, + "protectionUnitIds": ["23014d8c-71fe-4d00-a01a-31850bc5b42a"], + "protectionTimePeriod": { + "startDateTime": "2021-01-01T00:00:00Z", + "endDateTime": "2021-01-30T00:00:00Z" + }, + "restorePointPreference": "oldest" +} +``` --- @@ -285,9 +301,9 @@ Content-Type: application/json "protectionDateTime": "2023-01-04T00:00:00Z", "expirationDateTime": "2024-01-04T00:00:00Z", "protectionUnit": { - "@odata.type": "#microsoft.graph.siteProtectionUnit", + "@odata.type": "#microsoft.graph.mailboxProtectionUnit", "id": "23014d8c-71fe-4d00-a01a-31850bc5b42a", - "siteId": "344d9337-d8f0-456e-92cd-00a3abdd2093", + "userId": "344d9337-d8f0-456e-92cd-00a3abdd2093", "policyId": "9fec8e78-bce4-4aaf-ab1b-5451cc387264" }, "tags": "fastRestore" diff --git a/api-reference/beta/api/security-detectionrule-get.md b/api-reference/beta/api/security-detectionrule-get.md index 571f12ab519..f69114fb817 100644 --- a/api-reference/beta/api/security-detectionrule-get.md +++ b/api-reference/beta/api/security-detectionrule-get.md @@ -18,13 +18,15 @@ Read the properties and relationships of a [detectionRule](../resources/security With custom detections, you can proactively monitor for and respond to various events and system states, including suspected breach activity and misconfigured assets in your organization's network. Custom detection rules, which are written in [Kusto query language (KQL)](/azure/data-explorer/kusto/query/), automatically trigger [alerts](../resources/security-alert.md) and automated actions when events occur that match a KQL query. -[!INCLUDE [national-cloud-support](../../includes/global-only.md)] - ## Permissions Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-detectionrule-get-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-read](../includes/rbac-for-apis/rbac-security-detection-rules-apis-read.md)] @@ -145,3 +147,4 @@ Content-Type: application/json } } ``` + diff --git a/api-reference/beta/api/security-detectionrule-update.md b/api-reference/beta/api/security-detectionrule-update.md index 943bf485323..b1df4ce144d 100644 --- a/api-reference/beta/api/security-detectionrule-update.md +++ b/api-reference/beta/api/security-detectionrule-update.md @@ -16,13 +16,15 @@ Namespace: microsoft.graph.security Update the properties of a [detectionRule](../resources/security-detectionrule.md) object. -[!INCLUDE [national-cloud-support](../../includes/global-only.md)] - ## Permissions Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-detectionrule-update-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-write](../includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md)] diff --git a/api-reference/beta/api/security-rulesroot-delete-detectionrules.md b/api-reference/beta/api/security-rulesroot-delete-detectionrules.md index 0647a4d2acb..3f1bf73f9b8 100644 --- a/api-reference/beta/api/security-rulesroot-delete-detectionrules.md +++ b/api-reference/beta/api/security-rulesroot-delete-detectionrules.md @@ -16,13 +16,16 @@ Namespace: microsoft.graph.security Delete a [detectionRule](../resources/security-detectionrule.md) object. -[!INCLUDE [national-cloud-support](../../includes/global-only.md)] - ## Permissions Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + + [!INCLUDE [permissions-table](../includes/permissions/security-rulesroot-delete-detectionrules-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-write](../includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md)] @@ -76,4 +79,5 @@ The following example shows the response. --> ``` http HTTP/1.1 204 No Content + ``` diff --git a/api-reference/beta/api/security-rulesroot-list-detectionrules.md b/api-reference/beta/api/security-rulesroot-list-detectionrules.md index e11fc9821d4..b0e2c7a96f1 100644 --- a/api-reference/beta/api/security-rulesroot-list-detectionrules.md +++ b/api-reference/beta/api/security-rulesroot-list-detectionrules.md @@ -16,13 +16,15 @@ Namespace: microsoft.graph.security Get a list of [detectionRule](../resources/security-detectionrule.md) objects and their properties. -[!INCLUDE [national-cloud-support](../../includes/global-only.md)] - ## Permissions Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-rulesroot-list-detectionrules-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-read](../includes/rbac-for-apis/rbac-security-detection-rules-apis-read.md)] diff --git a/api-reference/beta/api/security-rulesroot-post-detectionrules.md b/api-reference/beta/api/security-rulesroot-post-detectionrules.md index 5f81a4bb610..a245f6861e1 100644 --- a/api-reference/beta/api/security-rulesroot-post-detectionrules.md +++ b/api-reference/beta/api/security-rulesroot-post-detectionrules.md @@ -16,13 +16,15 @@ Namespace: microsoft.graph.security Create a new [detectionRule](../resources/security-detectionrule.md) object. -[!INCLUDE [national-cloud-support](../../includes/global-only.md)] - ## Permissions Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - + [!INCLUDE [permissions-table](../includes/permissions/security-rulesroot-post-detectionrules-permissions.md)] [!INCLUDE [rbac-security-detection-rules-apis-write](../includes/rbac-for-apis/rbac-security-detection-rules-apis-write.md)] diff --git a/api-reference/beta/api/security-security-gethuntingschema.md b/api-reference/beta/api/security-security-gethuntingschema.md new file mode 100644 index 00000000000..2f6d737e889 --- /dev/null +++ b/api-reference/beta/api/security-security-gethuntingschema.md @@ -0,0 +1,183 @@ +--- +title: "security: getHuntingSchema" +description: "Retrieve the advanced hunting schema accessible to the signed-in user." +author: "nitzanfrogel" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: apiPageType +ms.date: 05/13/2026 +--- + +# security: getHuntingSchema + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Retrieve the advanced hunting schema accessible to the signed-in user, including the tables and functions the user is authorized to query and invoke in [advanced hunting](/microsoft-365/security/defender/advanced-hunting-overview?view=o365-worldwide&preserve-view=true) with Microsoft Defender XDR. + +The returned schema reflects the user's effective permissions. Each user within a tenant may have a different effective schema depending on their role and access level. + +Common use cases include: + +- **Preventing unauthorized queries**: Determine which tables and functions a user can access before executing Kusto queries, reducing the risk of authorization failures. +- **Permission-aware query generation**: Enable applications and tools to construct queries dynamically based on the user's effective schema. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/security-security-gethuntingschema-permissions.md)] + +>[!IMPORTANT] +> The signed-in user must also be assigned a [Microsoft Defender XDR Unified RBAC role](/microsoft-365/security/defender/manage-rbac) that grants permission to run advanced hunting queries, or one of the following Microsoft Entra ID roles which provide only the least privilege necessary: **Security Reader**, **Security Operator**, **Security Administrator**. + +## HTTP request + + +```http +GET /security/getHuntingSchema +``` + +## Function parameters + +This method doesn't support any OData query parameters to customize the response. + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this function returns a `200 OK` response code and a [huntingSchemaResult](../resources/security-huntingschemaresult.md) in the response body. + +## Examples + +### Request + + +```http +GET https://graph.microsoft.com/beta/security/getHuntingSchema +``` + +### Response + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "tables": [ + { + "name": "DeviceProcessEvents", + "description": "Process creation and related events", + "columns": [ + { + "name": "Timestamp", + "dataType": "DateTime", + "description": "Date and time when the record was generated" + }, + { + "name": "DeviceId", + "dataType": "String", + "description": "Unique identifier for the device in the service" + }, + { + "name": "DeviceName", + "dataType": "String", + "description": "Fully qualified domain name (FQDN) of the device" + } + ] + }, + { + "name": "DeviceNetworkEvents", + "description": "Network connection and related events", + "columns": [ + { + "name": "Timestamp", + "dataType": "DateTime", + "description": "Date and time when the record was generated" + }, + { + "name": "DeviceId", + "dataType": "String", + "description": "Unique identifier for the device in the service" + } + ] + } + ], + "functions": { + "builtInFunctions": [ + { + "huntingFunctionId": 1, + "name": "FileProfile", + "path": "Built-in", + "documentation": "Enriches query results with file information such as file name, size, and hash.", + "inputParameters": [ + { + "name": "SHA1", + "cslType": "string", + "defaultValue": null + } + ], + "outputColumns": [ + { + "name": "SHA1", + "dataType": "String", + "description": "SHA-1 hash of the file" + }, + { + "name": "SHA256", + "dataType": "String", + "description": "SHA-256 hash of the file" + } + ] + } + ], + "savedFunctions": [ + { + "huntingFunctionId": 100, + "name": "MyCustomQuery", + "path": "Shared", + "description": "A custom query that filters device events by severity.", + "createdBy": "user@contoso.com", + "lastModifiedBy": "user@contoso.com", + "lastModifiedDateTime": "2026-04-15T10:30:00Z", + "inputParameters": [], + "outputColumns": [ + { + "name": "DeviceId", + "dataType": "String", + "description": "Unique identifier for the device" + } + ] + } + ] + } +} +``` + diff --git a/api-reference/beta/api/teamworksection-post-items.md b/api-reference/beta/api/teamworksection-post-items.md index 8184046607f..7b9b0eee789 100644 --- a/api-reference/beta/api/teamworksection-post-items.md +++ b/api-reference/beta/api/teamworksection-post-items.md @@ -157,6 +157,7 @@ The following example shows how to add a Viva Engage community to a section. The The following example shows a request. +# [HTTP](#tab/http) + +```json +{ + "@odata.type": "#microsoft.graph.granularRestoreItems" +} +``` diff --git a/api-reference/beta/resources/groupanalytics.md b/api-reference/beta/resources/groupanalytics.md new file mode 100644 index 00000000000..ba36169a14e --- /dev/null +++ b/api-reference/beta/resources/groupanalytics.md @@ -0,0 +1,131 @@ +--- +title: "groupAnalytics resource type" +description: "Represents point-in-time analytics for a group in a Microsoft Entra tenant." +ms.localizationpriority: medium +author: "Licantrop0" +ms.subservice: "reports" +doc_type: "resourcePageType" +ms.date: 06/09/2026 +--- + +# groupAnalytics resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents point-in-time analytics for a group in a Microsoft Entra tenant, including its membership, ownership, and type. This resource is part of [identity analytics](../resources/identityanalyticsroot.md), at the `/reports/identityAnalytics/groups` path. + +Each object reflects the data as of its **calculatedDateTime** value. + +## Methods + +| Method | Return type | Description | +| :----------------------------------------------------------- | :--------------------------------------------------------- | :----------------------------------------------------------------------------------------- | +| [List](../api/identityanalyticsroot-list-groups.md) | [groupAnalytics](../resources/groupanalytics.md) collection | Get a list of the [groupAnalytics](../resources/groupanalytics.md) objects and their properties for the tenant. | +| [Get](../api/groupanalytics-get.md) | [groupAnalytics](../resources/groupanalytics.md) | Read the properties of a [groupAnalytics](../resources/groupanalytics.md) object. | + +## Properties + +| Property | Type | Description | +| :------- | :--- | :---------- | +| assignedRoleCount | Int64 | The number of directory roles assigned to the group. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| calculatedDateTime | DateTimeOffset | The date and time when the analytics for the group were last calculated. The timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| createdDateTime | DateTimeOffset | The date and time when the group was created. The timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| directGroupMemberCount | Int64 | The number of direct members of the group that are themselves groups. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| displayName | String | The display name of the group. Supports `$filter` (`eq`, `ne`, `startsWith`, `endsWith`, `contains`) and `$orderby`. | +| dynamicMembershipType | String | The dynamic membership classification of the group, derived from its membership rule. Supports `$filter` (`eq`, `ne`, `startsWith`, `endsWith`, `contains`) and `$orderby`. | +| groupExpirationDateTime | DateTimeOffset | The date and time when the group expires. The timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| groupType | [groupTypeEnum](#grouptypeenum-values) | The type of the group. The possible values are mutually exclusive. For more information, see the [groupTypeEnum values](#grouptypeenum-values) section. Supports `$orderby`. | +| guestOwnerCount | Int64 | The number of owners of the group that are guest users. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| guestTransitiveUserCount | Int64 | The number of transitive user members of the group that are guest users. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| id | String | The unique identifier of the group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isCloudDistributionListGroup | Boolean | Indicates whether the group is a non-soft-deleted cloud distribution list group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isCloudM365Group | Boolean | Indicates whether the group is a non-soft-deleted cloud Microsoft 365 group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isCloudMailEnabledSecurityGroup | Boolean | Indicates whether the group is a non-soft-deleted cloud mail-enabled security group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isCloudSecurityGroup | Boolean | Indicates whether the group is a non-soft-deleted cloud security group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isDynamicGroup | Boolean | Indicates whether the group is a dynamic group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isOnPremiseDistributionListGroup | Boolean | Indicates whether the group is a non-soft-deleted on-premises distribution list group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isOnPremiseMailEnabledSecurityGroup | Boolean | Indicates whether the group is a non-soft-deleted on-premises mail-enabled security group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isOnPremiseSecurityGroup | Boolean | Indicates whether the group is a non-soft-deleted on-premises security group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| isValidGroup | Boolean | Indicates whether the group is a valid (non-soft-deleted) group. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| lastRestorationDateTime | DateTimeOffset | The date and time when the group was last restored from a soft-deleted state. The timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| memberOwnerCount | Int64 | The number of owners of the group that are member (non-guest) users. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| memberTransitiveUserCount | Int64 | The number of transitive user members of the group that are member (non-guest) users. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| membershipRuleContainsCount | Int64 | The number of `contains` expressions in the membership rule of the group. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| membershipRuleExpressionCount | Int64 | The number of expressions in the membership rule of the group. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| membershipRuleMatchCount | Int64 | The number of `match` expressions in the membership rule of the group. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| membershipRuleMemberOfCount | Int64 | The number of `memberOf` expressions in the membership rule of the group. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| membershipRuleProcessingState | String | The processing state of the membership rule of the group. Supports `$filter` (`eq`, `ne`, `startsWith`, `endsWith`, `contains`) and `$orderby`. | +| preferredDataLocation | String | The preferred data location of the group. Supports `$filter` (`eq`, `ne`, `startsWith`, `endsWith`, `contains`) and `$orderby`. | +| sensitivityLabelCount | Int64 | The number of sensitivity labels applied to the group. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| servicePrincipalOwnerCount | Int64 | The number of owners of the group that are service principals. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| softDeletionDateTime | DateTimeOffset | The date and time when the group was soft-deleted. If this property is empty, the group isn't soft-deleted. The timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| tenantId | String | The unique identifier of the tenant that the group belongs to. Supports `$filter` (`eq`, `ne`) and `$orderby`. | +| transitiveServicePrincipalCount | Int64 | The number of transitive members of the group that are service principals. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | +| transitiveUserCount | Int64 | The total number of transitive user members of the group. Supports `$filter` (`eq`, `ne`, `gt`, `ge`, `lt`, `le`) and `$orderby`. | + +### groupTypeEnum values + +| Member | Description | +| :----------------- | :--------------------------------- | +| isCloudGroup | The group is a cloud group. | +| isOnPremiseGroup | The group is an on-premises group. | +| isSoftDeletedGroup | The group is a soft-deleted group. | + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +```json +{ + "@odata.type": "#microsoft.graph.groupAnalytics", + "assignedRoleCount": "Integer", + "calculatedDateTime": "String (timestamp)", + "createdDateTime": "String (timestamp)", + "directGroupMemberCount": "Integer", + "displayName": "String", + "dynamicMembershipType": "String", + "groupExpirationDateTime": "String (timestamp)", + "groupType": "String", + "guestOwnerCount": "Integer", + "guestTransitiveUserCount": "Integer", + "id": "String (identifier)", + "isCloudDistributionListGroup": "Boolean", + "isCloudM365Group": "Boolean", + "isCloudMailEnabledSecurityGroup": "Boolean", + "isCloudSecurityGroup": "Boolean", + "isDynamicGroup": "Boolean", + "isOnPremiseDistributionListGroup": "Boolean", + "isOnPremiseMailEnabledSecurityGroup": "Boolean", + "isOnPremiseSecurityGroup": "Boolean", + "isValidGroup": "Boolean", + "lastRestorationDateTime": "String (timestamp)", + "memberOwnerCount": "Integer", + "memberTransitiveUserCount": "Integer", + "membershipRuleContainsCount": "Integer", + "membershipRuleExpressionCount": "Integer", + "membershipRuleMatchCount": "Integer", + "membershipRuleMemberOfCount": "Integer", + "membershipRuleProcessingState": "String", + "preferredDataLocation": "String", + "sensitivityLabelCount": "Integer", + "servicePrincipalOwnerCount": "Integer", + "softDeletionDateTime": "String (timestamp)", + "tenantId": "String", + "transitiveServicePrincipalCount": "Integer", + "transitiveUserCount": "Integer" +} +``` diff --git a/api-reference/beta/resources/identityanalyticsroot.md b/api-reference/beta/resources/identityanalyticsroot.md new file mode 100644 index 00000000000..08bcb655a4b --- /dev/null +++ b/api-reference/beta/resources/identityanalyticsroot.md @@ -0,0 +1,50 @@ +--- +title: "identityAnalyticsRoot resource type" +description: "Represents a container for Microsoft Entra identity analytics reports in a tenant." +ms.localizationpriority: medium +author: "Licantrop0" +ms.subservice: "reports" +doc_type: "resourcePageType" +ms.date: 06/09/2026 +--- + +# identityAnalyticsRoot resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a container for Microsoft Entra identity analytics in a tenant. Identity analytics reports point-in-time data about your directory objects, and currently covers the [groups](../resources/groupanalytics.md) in the tenant. + +Access this resource through the [reportRoot](../resources/reportroot.md) resource, at the `/reports/identityAnalytics` path. + +## Methods + +None. + +## Properties + +None. + +## Relationships + +| Relationship | Type | Description | +| :----------- | :--------------------------------------------------------- | :----------------------------------------- | +| groups | [groupAnalytics](../resources/groupanalytics.md) collection | The analytics for the groups in the tenant. | + +## JSON representation + +The following JSON representation shows the resource type. + + +```json +{ + "@odata.type": "#microsoft.graph.identityAnalyticsRoot" +} +``` diff --git a/api-reference/beta/resources/reportroot.md b/api-reference/beta/resources/reportroot.md index d381c800310..9061a1a4de1 100644 --- a/api-reference/beta/resources/reportroot.md +++ b/api-reference/beta/resources/reportroot.md @@ -214,6 +214,12 @@ For details about report views and names, see [Microsoft 365 reports - SharePoin | [Get storage](../api/reportroot-getsharepointsiteusagestorage.md) | Stream | Get the trend of storage allocated and consumed during the reporting period. | | [Get pages](../api/reportroot-getsharepointsiteusagepages.md) | Stream | Get the number of pages viewed across all sites. | +### SharePoint API usage + +| Method | Return type | Description | +| :----------------------------------------------------------------------------------------- | :---------- | :------------------------------------------------------------------------------------ | +| [Get SharePoint API usage](../api/reportroot-getsharepointapiusage.md) | Stream | Get aggregated OneDrive and SharePoint API usage metrics for a tenant. | + ### Skype for Business activity For details about report views and names, see [Skype for Business activity](/skypeforbusiness/skype-for-business-online-reporting/activity-report). @@ -311,6 +317,7 @@ None. | dailyPrintUsageByPrinter | [printUsageByPrinter](printusagebyprinter.md) collection | Retrieve a list of daily print usage summaries, grouped by printer. | | dailyPrintUsageByUser | [printUsageByUser](printusagebyuser.md) collection | Retrieve a list of daily print usage summaries, grouped by user. | | healthMonitoring | [microsoft.graph.healthMonitoring.healthMonitoringRoot](healthmonitoring-healthmonitoringroot.md) collection | Reports for Microsoft Entra Health Monitoring. | +| identityAnalytics | [identityAnalyticsRoot](../resources/identityanalyticsroot.md) | Microsoft Entra identity analytics for the tenant, including its groups. | | monthlyPrintUsageByPrinter | [printUsageByPrinter](printusagebyprinter.md) collection | Retrieve a list of monthly print usage summaries, grouped by printer. | | monthlyPrintUsageByUser | [printUsageByUser](printusagebyuser.md) collection | Retrieve a list of monthly print usage summaries, grouped by user. | | partners | [partners](partners.md) | Represents billing details for a Microsoft direct partner. | diff --git a/api-reference/beta/resources/restoresearchartifactqueryexpression.md b/api-reference/beta/resources/restoresearchartifactqueryexpression.md new file mode 100644 index 00000000000..a23a731f0e6 --- /dev/null +++ b/api-reference/beta/resources/restoresearchartifactqueryexpression.md @@ -0,0 +1,57 @@ +--- +title: "restoreSearchArtifactQueryExpression resource type" +description: "Represents a structured query expression for searching artifacts in restore operations." +author: "schapagain" +ms.date: 06/05/2026 +ms.localizationpriority: medium +ms.subservice: "m365-backup-storage" +doc_type: resourcePageType +--- + +# restoreSearchArtifactQueryExpression resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a structured query expression for searching artifacts in restore operations. This resource provides a type-safe way to construct search queries for backup artifacts. + +All properties are optional and can be combined to create more specific search queries. + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|hasAttachment|Boolean|Indicates whether the artifact has an attachment. Optional.| +|items|[granularRestoreItems](../resources/granularrestoreitems.md) collection|The types of items to include in the search. Optional.| +|recipients|String collection|The recipient email addresses to filter by. Optional.| +|senders|String collection|The sender email addresses to filter by. Optional.| +|subjects|String collection|The subject lines to filter by. Optional.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.restoreSearchArtifactQueryExpression", + "recipients": [ + "String" + ], + "senders": [ + "String" + ], + "subjects": [ + "String" + ], + "items": [ + "String" + ], + "hasAttachment": "Boolean" +} +``` diff --git a/api-reference/beta/resources/security-huntingschemabuiltinfunction.md b/api-reference/beta/resources/security-huntingschemabuiltinfunction.md new file mode 100644 index 00000000000..4d6b1639374 --- /dev/null +++ b/api-reference/beta/resources/security-huntingschemabuiltinfunction.md @@ -0,0 +1,51 @@ +--- +title: "huntingSchemaBuiltInFunction resource type" +description: "Represents a prebuilt function included with Microsoft Defender XDR advanced hunting." +author: "nitzanfrogel" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/13/2026 +--- + +# huntingSchemaBuiltInFunction resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a prebuilt function included with Microsoft Defender XDR advanced hunting. Built-in functions are available to all advanced hunting instances and can't be modified by users. Part of the [huntingSchemaFunctions](../resources/security-huntingschemafunctions.md) returned by the [getHuntingSchema](../api/security-security-gethuntingschema.md) function. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|documentation|String|Description of the function and its usage.| +|huntingFunctionId|Int64|Unique identifier for the function. Required.| +|inputParameters|[microsoft.graph.security.huntingSchemaFunctionParameter](../resources/security-huntingschemafunctionparameter.md) collection|Collection of input parameters accepted by the function.| +|name|String|Name of the function. Required.| +|outputColumns|[microsoft.graph.security.huntingSchemaTableColumn](../resources/security-huntingschematablecolumn.md) collection|Collection of columns returned by the function.| +|path|String|Folder path of the function.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "documentation": "String", + "huntingFunctionId": "Int64", + "inputParameters": [{"@odata.type": "microsoft.graph.security.huntingSchemaFunctionParameter"}], + "name": "String", + "outputColumns": [{"@odata.type": "microsoft.graph.security.huntingSchemaTableColumn"}], + "path": "String" +} +``` diff --git a/api-reference/beta/resources/security-huntingschemafunctionparameter.md b/api-reference/beta/resources/security-huntingschemafunctionparameter.md new file mode 100644 index 00000000000..ec647632414 --- /dev/null +++ b/api-reference/beta/resources/security-huntingschemafunctionparameter.md @@ -0,0 +1,45 @@ +--- +title: "huntingSchemaFunctionParameter resource type" +description: "Represents an input parameter for an advanced hunting function." +author: "nitzanfrogel" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/13/2026 +--- + +# huntingSchemaFunctionParameter resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents an input parameter for an advanced hunting function. Parameters allow callers to provide arguments when invoking a function. Used by both [huntingSchemaBuiltInFunction](../resources/security-huntingschemabuiltinfunction.md) and [huntingSchemaSavedFunction](../resources/security-huntingschemasavedfunction.md) resource types. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|cslType|String|Data type of the parameter in Kusto Query Language (KQL) CSL format. Required.| +|defaultValue|String|Default value used when the caller doesn't provide a value for this parameter.| +|name|String|Name of the parameter. Required.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "cslType": "String", + "defaultValue": "String", + "name": "String" +} +``` diff --git a/api-reference/beta/resources/security-huntingschemafunctions.md b/api-reference/beta/resources/security-huntingschemafunctions.md new file mode 100644 index 00000000000..c85c694c193 --- /dev/null +++ b/api-reference/beta/resources/security-huntingschemafunctions.md @@ -0,0 +1,43 @@ +--- +title: "huntingSchemaFunctions resource type" +description: "Contains the two categories of advanced hunting functions accessible to the user: built-in functions and saved functions." +author: "nitzanfrogel" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/13/2026 +--- + +# huntingSchemaFunctions resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Contains the two categories of advanced hunting functions accessible to the user: built-in functions and saved functions. Part of the [huntingSchemaResult](../resources/security-huntingschemaresult.md) returned by the [getHuntingSchema](../api/security-security-gethuntingschema.md) function. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|builtInFunctions|[microsoft.graph.security.huntingSchemaBuiltInFunction](../resources/security-huntingschemabuiltinfunction.md) collection|Prebuilt functions included with Microsoft Defender XDR advanced hunting.| +|savedFunctions|[microsoft.graph.security.huntingSchemaSavedFunction](../resources/security-huntingschemasavedfunction.md) collection|Custom functions created by users, including shared functions accessible to all tenant users and personal functions visible only to their creator.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "builtInFunctions": [{"@odata.type": "microsoft.graph.security.huntingSchemaBuiltInFunction"}], + "savedFunctions": [{"@odata.type": "microsoft.graph.security.huntingSchemaSavedFunction"}] +} +``` diff --git a/api-reference/beta/resources/security-huntingschemaresult.md b/api-reference/beta/resources/security-huntingschemaresult.md new file mode 100644 index 00000000000..3cb4ebd00fc --- /dev/null +++ b/api-reference/beta/resources/security-huntingschemaresult.md @@ -0,0 +1,43 @@ +--- +title: "huntingSchemaResult resource type" +description: "Contains the advanced hunting schema accessible to the signed-in user, including tables and functions." +author: "nitzanfrogel" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/13/2026 +--- + +# huntingSchemaResult resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Contains the advanced hunting schema accessible to the signed-in user, including tables and functions. Returned by the [getHuntingSchema](../api/security-security-gethuntingschema.md) function. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|functions|[microsoft.graph.security.huntingSchemaFunctions](../resources/security-huntingschemafunctions.md)|Object containing the built-in functions and saved functions available to the user.| +|tables|[microsoft.graph.security.huntingSchemaTable](../resources/security-huntingschematable.md) collection|Collection of advanced hunting tables the user is authorized to query.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "tables": [{"@odata.type": "microsoft.graph.security.huntingSchemaTable"}], + "functions": {"@odata.type": "microsoft.graph.security.huntingSchemaFunctions"} +} +``` diff --git a/api-reference/beta/resources/security-huntingschemasavedfunction.md b/api-reference/beta/resources/security-huntingschemasavedfunction.md new file mode 100644 index 00000000000..592715a394d --- /dev/null +++ b/api-reference/beta/resources/security-huntingschemasavedfunction.md @@ -0,0 +1,57 @@ +--- +title: "huntingSchemaSavedFunction resource type" +description: "Represents a custom function created by a user in advanced hunting." +author: "nitzanfrogel" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/13/2026 +--- + +# huntingSchemaSavedFunction resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a custom function created by a user in advanced hunting. Custom functions allow users to save reusable query logic that can be invoked in other queries. Includes both shared functions accessible to all tenant users and personal functions visible only to their creator. Part of the [huntingSchemaFunctions](../resources/security-huntingschemafunctions.md) returned by the [getHuntingSchema](../api/security-security-gethuntingschema.md) function. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|createdBy|String|Identity of the user who created the function.| +|description|String|Description of the function purpose and usage.| +|huntingFunctionId|Int64|Unique identifier for the function. Required.| +|inputParameters|[microsoft.graph.security.huntingSchemaFunctionParameter](../resources/security-huntingschemafunctionparameter.md) collection|Collection of input parameters accepted by the function.| +|lastModifiedBy|String|Identity of the user who last modified the function.| +|lastModifiedDateTime|DateTimeOffset|Date and time when the function was last modified.| +|name|String|Name of the function. Required.| +|outputColumns|[microsoft.graph.security.huntingSchemaTableColumn](../resources/security-huntingschematablecolumn.md) collection|Collection of columns returned by the function.| +|path|String|Folder path where the function is saved.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "createdBy": "String", + "description": "String", + "huntingFunctionId": "Int64", + "inputParameters": [{"@odata.type": "microsoft.graph.security.huntingSchemaFunctionParameter"}], + "lastModifiedBy": "String", + "lastModifiedDateTime": "String (timestamp)", + "name": "String", + "outputColumns": [{"@odata.type": "microsoft.graph.security.huntingSchemaTableColumn"}], + "path": "String" +} +``` diff --git a/api-reference/beta/resources/security-huntingschematable.md b/api-reference/beta/resources/security-huntingschematable.md new file mode 100644 index 00000000000..a6a09188ece --- /dev/null +++ b/api-reference/beta/resources/security-huntingschematable.md @@ -0,0 +1,45 @@ +--- +title: "huntingSchemaTable resource type" +description: "Represents an advanced hunting table accessible to the user." +author: "nitzanfrogel" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/13/2026 +--- + +# huntingSchemaTable resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents an advanced hunting table accessible to the user. Part of the [huntingSchemaResult](../resources/security-huntingschemaresult.md) returned by the [getHuntingSchema](../api/security-security-gethuntingschema.md) function. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|columns|[microsoft.graph.security.huntingSchemaTableColumn](../resources/security-huntingschematablecolumn.md) collection|Collection of columns in the table with their data types.| +|description|String|Description of what data the table contains.| +|name|String|Name of the table. Required.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "name": "String", + "description": "String", + "columns": [{"@odata.type": "microsoft.graph.security.huntingSchemaTableColumn"}] +} +``` diff --git a/api-reference/beta/resources/security-huntingschematablecolumn.md b/api-reference/beta/resources/security-huntingschematablecolumn.md new file mode 100644 index 00000000000..fec535a9794 --- /dev/null +++ b/api-reference/beta/resources/security-huntingschematablecolumn.md @@ -0,0 +1,45 @@ +--- +title: "huntingSchemaTableColumn resource type" +description: "Represents a column in an advanced hunting table." +author: "nitzanfrogel" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/13/2026 +--- + +# huntingSchemaTableColumn resource type + +Namespace: microsoft.graph.security + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a column in an advanced hunting table. Part of the [huntingSchemaTable](../resources/security-huntingschematable.md) returned by the [getHuntingSchema](../api/security-security-gethuntingschema.md) function. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|dataType|String|Data type of the column (for example, `DateTime`, `String`). Required.| +|description|String|Description of the column.| +|name|String|Name of the column. Required.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "dataType": "String", + "description": "String", + "name": "String" +} +``` diff --git a/api-reference/beta/resources/security.md b/api-reference/beta/resources/security.md index dcfe88765c9..f3838755992 100644 --- a/api-reference/beta/resources/security.md +++ b/api-reference/beta/resources/security.md @@ -20,6 +20,7 @@ Connects Microsoft security products, services, and partners to streamline secur |Method|Return type|Description| |:---|:---|:---| |[Run hunting query](../api/security-security-runhuntingquery.md)|[microsoft.graph.security.huntingQueryResults](../resources/security-huntingqueryresults.md)|Queries a specified set of event, activity, or entity data supported by Microsoft 365 Defender to proactively look for specific threats in your environment.| +|[Get hunting schema](../api/security-security-gethuntingschema.md)|[microsoft.graph.security.huntingSchemaResult](../resources/security-huntingschemaresult.md)|Retrieves the advanced hunting schema accessible to the signed-in user, including the tables and functions the user is authorized to query and invoke.| ## Properties None. diff --git a/api-reference/beta/resources/sharepointapiusagedatapoint.md b/api-reference/beta/resources/sharepointapiusagedatapoint.md new file mode 100644 index 00000000000..03a36ab6edd --- /dev/null +++ b/api-reference/beta/resources/sharepointapiusagedatapoint.md @@ -0,0 +1,61 @@ +--- +title: "sharePointApiUsageDataPoint resource type" +description: "Represents a single data point in a SharePoint Online API usage report." +author: "ireneren" +ms.localizationpriority: medium +ms.subservice: "reports" +doc_type: resourcePageType +ms.date: 03/16/2026 +--- + +# sharePointApiUsageDataPoint resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a single data point in a OneDrive and SharePoint API usage report. Each data point can be either a summary row or a detail row: + +- **Summary row**: Aggregated usage across all applications for a date or period. The **appId** is `null` and **activeApps** is populated. +- **Detail row**: Usage for a specific application on a specific date. The **appId** is populated and **activeApps** is `null`. + +Data points in detail rows are ordered by **usageDateTime** descending (most recent first). + +## Properties + +| Property | Type | Description | +|:--------------|:---------------|:-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| +| activeApps | Int32 | The number of distinct applications with usage during the reporting period. Summary rows: populated with the count of active applications. Detail rows: `null`. Read-only. | +| appId | String | The unique identifier (GUID) for the application. Summary rows: `null`. Detail rows: the application GUID. Read-only. | +| serviceArea | String | The service area name. Always `OneDrive and SharePoint` for SharePoint API usage reports. Read-only. | +| tenantId | String | The unique identifier (GUID) for the tenant. Read-only. | +| usageDateTime | DateTimeOffset | The date and time for this data point in ISO 8601 format. For summary rows, this is the most recent date in the reporting period. For detail rows, this is the specific date for the usage data. Read-only. | +| usageMB | Int64 | Total usage in megabytes (MB) for this data point. Summary rows: total aggregated usage across all applications for the reporting period. Detail rows: usage for the specific application on the specific date. Read-only. | +| usageRequests | Int64 | The number of API requests. Summary rows: total requests across all applications. Detail rows: requests for the specific application on the specific date. Read-only. | + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.sharePointApiUsageDataPoint", + "activeApps": "Int32", + "appId": "String", + "serviceArea": "String", + "tenantId": "String", + "usageDateTime": "String (timestamp)", + "usageMB": "Int64", + "usageRequests": "Int64" +} +``` diff --git a/api-reference/beta/resources/sharepointapiusagereport.md b/api-reference/beta/resources/sharepointapiusagereport.md new file mode 100644 index 00000000000..a6118e0a08c --- /dev/null +++ b/api-reference/beta/resources/sharepointapiusagereport.md @@ -0,0 +1,52 @@ +--- +title: "sharePointApiUsageReport resource type" +description: "Represents aggregated SharePoint Online tenant usage data containing a collection of usage data points." +author: "ireneren" +ms.localizationpriority: medium +ms.subservice: "reports" +doc_type: resourcePageType +ms.date: 03/16/2026 +--- + +# sharePointApiUsageReport resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents aggregated OneDrive and SharePoint API usage data for a tenant. The report contains a summary aggregating usage across all applications and details showing per-application usage. + +## Properties + +| Property | Type | Description | +|:---------|:----------------------------------------------------------------------------------------|:---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| +| details | [sharePointApiUsageDataPoint](../resources/sharepointapiusagedatapoint.md) collection | The collection of per-application, per-date usage data points. Each item represents usage for a specific application on a specific date. | +| summary | [sharePointApiUsageDataPoint](../resources/sharepointapiusagedatapoint.md) | The aggregated summary of usage across all applications for the specified period or date. The **appId** is `null` and **activeApps** contains the count of distinct applications. | + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +``` json +{ + "@odata.type": "#microsoft.graph.sharePointApiUsageReport", + "summary": { + "@odata.type": "microsoft.graph.sharePointApiUsageDataPoint" + }, + "details": [ + { + "@odata.type": "microsoft.graph.sharePointApiUsageDataPoint" + } + ] +} +``` diff --git a/api-reference/beta/toc/backup-and-recovery/toc.yml b/api-reference/beta/toc/backup-and-recovery/toc.yml index 9aa81420327..37777b9972d 100644 --- a/api-reference/beta/toc/backup-and-recovery/toc.yml +++ b/api-reference/beta/toc/backup-and-recovery/toc.yml @@ -502,6 +502,8 @@ items: href: ../../resources/restorepointsearchresponse.md - name: Restore point search result href: ../../resources/restorepointsearchresult.md + - name: Restore search artifact query expression + href: ../../resources/restoresearchartifactqueryexpression.md - name: Retention setting href: ../../resources/retentionsetting.md - name: Service status diff --git a/api-reference/beta/toc/device-and-app-management/toc.yml b/api-reference/beta/toc/device-and-app-management/toc.yml index f45b5fd2dac..a1282128953 100644 --- a/api-reference/beta/toc/device-and-app-management/toc.yml +++ b/api-reference/beta/toc/device-and-app-management/toc.yml @@ -432,6 +432,8 @@ items: href: ../../api/cloudpcprovisioningpolicy-retrievepolicyapplyactionresult.md - name: Retrieve policy apply schedule href: ../../api/cloudpcprovisioningpolicy-retrievepolicyapplyschedule.md + - name: Retrieve policy update status result + href: ../../api/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult.md - name: Cloud PC report items: - name: Cloud PC report @@ -733,6 +735,8 @@ items: href: ../../resources/cloudpconpremisesconnectionsubnetIpdetail.md - name: Cloud PC partner agent install result href: ../../resources/cloudpcpartneragentinstallresult.md + - name: Cloud PC policy pending apply status result + href: ../../resources/cloudpcpolicypendingapplystatusresult.md - name: Cloud PC pool capability configuration href: ../../resources/cloudpcpoolcapabilityconfiguration.md - name: Cloud PC provisioning policy assignment diff --git a/api-reference/beta/toc/reports/toc.yml b/api-reference/beta/toc/reports/toc.yml index c0ca2c3631c..0f008efea1c 100644 --- a/api-reference/beta/toc/reports/toc.yml +++ b/api-reference/beta/toc/reports/toc.yml @@ -752,6 +752,10 @@ items: href: ../../api/reportroot-getsharepointsiteusagestorage.md - name: Get pages href: ../../api/reportroot-getsharepointsiteusagepages.md + - name: SharePoint API usage + items: + - name: Get SharePoint API usage + href: ../../api/reportroot-getsharepointapiusage.md - name: Skype for Business activity items: - name: Get user detail @@ -836,6 +840,10 @@ items: href: ../../resources/office365groupsactivitystorage.md - name: Office 365 services user counts href: ../../resources/office365servicesusercounts.md + - name: Share point API usage data point + href: ../../resources/sharepointapiusagedatapoint.md + - name: Share point API usage report + href: ../../resources/sharepointapiusagereport.md - name: Microsoft Defender for Office 365 security reports items: - name: Overview diff --git a/api-reference/beta/toc/security/toc.yml b/api-reference/beta/toc/security/toc.yml index 525b71ea4f0..aa7e5e53d1b 100644 --- a/api-reference/beta/toc/security/toc.yml +++ b/api-reference/beta/toc/security/toc.yml @@ -14,6 +14,8 @@ items: href: ../../resources/security.md - name: Run hunting query href: ../../api/security-security-runhuntingquery.md + - name: Get hunting schema + href: ../../api/security-security-gethuntingschema.md - name: Hunting query results href: ../../resources/security-huntingqueryresults.md - name: Hunting row result @@ -292,6 +294,20 @@ items: href: ../../resources/security-auditinfo.md - name: Custom detection rules items: + - name: Rules root + items: + - name: Rules root + href: ../../resources/security-rulesroot.md + - name: List + href: ../../api/security-rulesroot-list-detectionrules.md + - name: Create + href: ../../api/security-rulesroot-post-detectionrules.md + - name: Get + href: ../../api/security-detectionrule-get.md + - name: Update + href: ../../api/security-detectionrule-update.md + - name: Delete + href: ../../api/security-rulesroot-delete-detectionrules.md - name: Detection rule items: - name: Detection rule diff --git a/api-reference/beta/toc/toc.mapping.json b/api-reference/beta/toc/toc.mapping.json index c89ca4f3714..2333418203c 100644 --- a/api-reference/beta/toc/toc.mapping.json +++ b/api-reference/beta/toc/toc.mapping.json @@ -306,9 +306,10 @@ "browseQueryResponseItem", "notificationRecipients", "protectionPolicyArtifactCount", + "retentionSetting", "restorePointSearchResponse", "restorePointSearchResult", - "retentionSetting", + "restoreSearchArtifactQueryExpression", "serviceStatus", "timePeriod" ] @@ -2789,6 +2790,13 @@ "correlationError", "identityInfo" ] + }, + { + "name": "Identity analytics (preview)", + "resources": [ + "groupAnalytics", + "identityAnalyticsRoot" + ] } ] }, @@ -2815,7 +2823,9 @@ "office365GroupsActivityFileCounts", "office365GroupsActivityGroupCounts", "office365GroupsActivityStorage", - "office365ServicesUserCounts" + "office365ServicesUserCounts", + "sharePointApiUsageDataPoint", + "sharePointApiUsageReport" ] }, { diff --git a/api-reference/v1.0/api/accesspackagesubject-get.md b/api-reference/v1.0/api/accesspackagesubject-get.md new file mode 100644 index 00000000000..df9ce6655cd --- /dev/null +++ b/api-reference/v1.0/api/accesspackagesubject-get.md @@ -0,0 +1,91 @@ +--- +title: "Get accessPackageSubject" +description: "Get the properties of an accessPackageSubject object." +author: "markwahl-msft" +ms.localizationpriority: medium +ms.subservice: "entra-id-governance" +doc_type: apiPageType +ms.date: 06/11/2026 +--- + +# Get accessPackageSubject + +Namespace: microsoft.graph + +Get the properties of an external directory user represented by an existing [accessPackageSubject](../resources/accesspackagesubject.md) object. + +[!INCLUDE [national-cloud-support](../../includes/global-us.md)] + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/accesspackagesubject-get-permissions.md)] + +[!INCLUDE [rbac-entitlement-catalog-reader](../includes/rbac-for-apis/rbac-entitlement-management-catalog-reader-apis-read.md)] + +## HTTP request + +```http +GET /identityGovernance/entitlementManagement/subjects(objectId='{objectIdOfExternalDirectoryUser}') +``` + +## Request headers + +| Name |Description| +|:----------|:----------| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and the requested [accessPackageSubject](../resources/accesspackagesubject.md) object in the response body. + +## Examples + +### Request + + +```msgraph-interactive +GET https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/subjects(objectId='{objectIdOfExternalDirectoryUser}') +``` + +### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + + +```http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#identityGovernance/entitlementManagement/subjects/$entity", + "id": "120fd4a0-95a7-49d2-9389-ed6f3c025c74", + "objectId": "a382de66-b7bb-4c30-82b7-306c6ae6a4ae", + "displayName": "Accessibility Test", + "principalName": "accessibility@contoso.com", + "email": "accessibility@contoso.com", + "onPremisesSecurityIdentifier": null, + "subjectType": "user", + "subjectLifecycle": "governed" +} +``` diff --git a/api-reference/v1.0/api/accesspackagesubject-update.md b/api-reference/v1.0/api/accesspackagesubject-update.md new file mode 100644 index 00000000000..b6839d0143f --- /dev/null +++ b/api-reference/v1.0/api/accesspackagesubject-update.md @@ -0,0 +1,83 @@ +--- +title: "Update accessPackageSubject" +description: "Update the properties of an accessPackageSubject object." +author: "markwahl-msft" +ms.localizationpriority: medium +ms.subservice: "entra-id-governance" +doc_type: apiPageType +ms.date: 06/11/2026 +--- + +# Update accessPackageSubject + +Namespace: microsoft.graph + +Update an external directory user represented by an existing [accessPackageSubject](../resources/accesspackagesubject.md) object to change the subject lifecycle. + +[!INCLUDE [national-cloud-support](../../includes/global-us.md)] + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/accesspackagesubject-update-permissions.md)] + +[!INCLUDE [rbac-entitlement-catalog-owner-write](../includes/rbac-for-apis/rbac-entitlement-management-catalog-owner-apis-write.md)] + +## HTTP request + +```http +PATCH /identityGovernance/entitlementManagement/subjects(objectId='{objectIdOfExternalDirectoryUser}') +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| +|Content-Type|application/json. Required.| + +## Request body + +[!INCLUDE [table-intro](../../includes/update-property-table-intro.md)] + +|Property|Type|Description| +|:---|:---|:---| +|subjectLifecycle|accessPackageSubjectLifecycle|The lifecycle of the subject user, if a guest. The possible values are: `notDefined`, `notGoverned`, `governed`.| + +## Response + +If successful, this method returns a `204 No Content` response code. + +## Examples + +### Request + + +```http +PATCH https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/subjects(objectId='{objectIdOfExternalDirectoryUser}') +Content-Type: application/json + +{ + "subjectLifecycle":"governed" +} +``` + +### Response + + +```http +HTTP/1.1 204 No Content +``` diff --git a/api-reference/v1.0/api/security-analyzedemail-get.md b/api-reference/v1.0/api/security-analyzedemail-get.md new file mode 100644 index 00000000000..c6de5622a45 --- /dev/null +++ b/api-reference/v1.0/api/security-analyzedemail-get.md @@ -0,0 +1,259 @@ +--- +title: "Get analyzedEmail" +description: "Read the properties and relationships of an analyzedEmail object." +author: "malvika-balaraj" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: apiPageType +ms.date: 05/27/2026 +--- + +# Get analyzedEmail + +Namespace: microsoft.graph.security + + +Read the properties and relationships of an [analyzedEmail](../resources/security-analyzedemail.md) object. + + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/security-analyzedemail-get-permissions.md)] + +## HTTP request + + +```http +GET /security/collaboration/analyzedEmails/{analyzedEmailId} +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a [microsoft.graph.security.analyzedEmail](../resources/security-analyzedemail.md) object in the response body. + +## Examples + +### Example 1: Get an analyzedEmail + +#### Request + + + +```msgraph-interactive +GET https://graph.microsoft.com/v1.0/security/collaboration/analyzedEmails/{analyzedEmailId} +``` + + +#### Response + +The following example shows the response. +>**Note:** The response object shown here might be shortened for readability. + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.type": "#microsoft.graph.security.analyzedEmail", + "id": "String", + "loggedDateTime": "Datetime", + "networkMessageId": "String", + "internetMessageId": "String", + "senderDetail": { + "@odata.type": "microsoft.graph.security.analyzedEmailSenderDetail" + }, + "recipientEmailAddress": "String", + "distributionList": "String", + "subject": "String", + "returnPath": "String", + "directionality": "microsoft.graph.security.antispamDirectionality", + "originalDelivery": { + "@odata.type": "microsoft.graph.security.analyzedEmailDeliveryDetail" + }, + "latestDelivery": { + "@odata.type": "microsoft.graph.security.analyzedEmailDeliveryDetail" + }, + "attachments": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailAttachment" + } + ], + "urls": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailUrl" + } + ], + "language": "String", + "sizeInBytes": "Integer", + "alertIds": [ + "String" + ], + "exchangeTransportRules": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailExchangeTransportRuleInfo" + } + ], + "overrideSources": [ + "String" + ], + "threatTypes": [ + "microsoft.graph.security.threatType" + ], + "detectionMethods": [ + "String" + ], + "contexts": [ + "String" + ], + "authenticationDetails": { + "@odata.type": "microsoft.graph.security.analyzedEmailAuthenticationDetail" + }, + "phishConfidenceLevel": "String", + "spamConfidenceLevel": "String", + "bulkComplaintLevel": "String", + "emailClusterId": "String", + "policyAction": "String", + "policy": "String", + "timelineEvents": [ + { + "@odata.type": "microsoft.graph.security.timelineEvent" + } + ], + "threatDetectionDetails": [ + { + "@odata.type": "microsoft.graph.security.threatDetectionDetail" + } + ], + "primaryOverrideSource": "String", + "inboundConnectorFormattedName": "String", + "policyType": "String", + "clientType": "String", + "dlpRules": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailDlpRuleInfo" + } + ], + "forwardingDetail": "String", + "recipientDetail": { + "@odata.type": "microsoft.graph.security.analyzedEmailRecipientDetail" + } +} +``` + +### Example 2: Get the URLs from an analyzedEmail + +#### Request + + +```msgraph-interactive +GET https://graph.microsoft.com/v1.0/security/collaboration/analyzedEmails/{analyzedEmailId}/urls +``` + + +#### Response + +The following example shows the response. +>**Note:** The response object shown here might be shortened for readability. + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value": [ + { + "@odata.type": "#microsoft.graph.security.analyzedEmailUrl", + "url": "String", + "threatType": "String", + "detectionMethod": "String", + "tenantAllowBlockListDetailInfo": "String", + "detonationDetails": { + "@odata.type": "microsoft.graph.security.detonationDetails" + } + } + ] +} +``` + +### Example 3: Get the attachments of an analyzedEmail + +#### Request + + +```msgraph-interactive +GET https://graph.microsoft.com/v1.0/security/collaboration/analyzedEmails/{analyzedEmailId}/attachments +``` +### Response + +The following example shows the response. +>**Note:** The response object shown here might be shortened for readability. + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value": [ + { + "@odata.type": "#microsoft.graph.security.analyzedEmailAttachment", + "fileName": "String", + "fileType": "String", + "fileSize": "Integer", + "fileExtension": "String", + "threatType": "String", + "malwareFamily": "String", + "tenantAllowBlockListDetailInfo": "String", + "sha256": "String", + "detonationDetails": { + "@odata.type": "microsoft.graph.security.detonationDetails" + } + } + ] +} +``` diff --git a/api-reference/v1.0/api/security-analyzedemail-remediate.md b/api-reference/v1.0/api/security-analyzedemail-remediate.md new file mode 100644 index 00000000000..ae3077d4b6b --- /dev/null +++ b/api-reference/v1.0/api/security-analyzedemail-remediate.md @@ -0,0 +1,114 @@ +--- +title: "analyzedEmail: remediate " +description: "Remove a potential threat from end users' mailboxes." +author: MishraSoumyaMS +ms.localizationpriority: medium +ms.subservice: security +doc_type: apiPageType +ms.date: 05/27/2026 +--- + +# analyzedEmail: remediate + +Namespace: microsoft.graph.security + + +Remove a potential threat from end users' mailboxes. + +Remediation means to take prescribed action against a threat. This API can trigger email purge actions like move to junk, move to deleted items, soft delete, hard delete, or move to Inbox. This API enables scenarios and use cases such as SOAR integration, playbooks, and automations. For more information read [email remediation, trigger action and track actions](/microsoft-365/security/office-365-security/remediate-malicious-email-delivered-office-365?view=o365-worldwide&preserve-view=true). If there is false positives admins can take move to inbox action. + + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/security-analyzedemail-remediate-permissions.md)] + +## HTTP request + + +```http +POST /security/collaboration/analyzedEmails/remediate +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| +|Content-Type|application/json. Required.| + +## Request body + +In the request body, supply a JSON representation of the parameters. + +The following table lists the parameters that are required when you call this action. + +|Parameter|Type|Description| +|:---|:---|:---| +|displayName|String| The name of the remediation that is used as a reference in the action center. | +|description|String| The description of the remediation. | +|severity|microsoft.graph.security.remediationSeverity| The severity of the remediation. The possible values are: `low`, `medium`, `high`, `unknownFutureValue`.| +|action|microsoft.graph.security.remediationAction|The types of move and delete actions that are supported. The possible values are: `moveToJunk`, `moveToInbox`, `hardDelete`, `softDelete`, `moveToDeletedItems`, `unknownFutureValue`, `moveToQuarantine`. Use the `Prefer: include-unknown-enum-members` request header to get the following members from this [evolvable enum](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations): `moveToQuarantine`. | +|remediateSendersCopy|Boolean| For internal or outbound email, indicates whether to remediate the sender's copy of an email. | +|analyzedEmails|[microsoft.graph.security.analyzedEmail](../resources/security-analyzedemail.md) collection| Contains the **networkMessageId** and **recipientEmailAddress** values of the analyzed emails. | + +## Response + +If successful, this action returns a `202 Accepted` response code and a `Location` header with a link to the tracking information. + +>**Note:** The response to the action can be tracked in https://security.microsoft.com/action-center/history. To learn more, see [Use the Action center](/microsoft-365/security/defender/m365d-action-center?view=o365-worldwide&preserve-view=true). + +## Examples + +### Request + +The following example shows a request. + +```http +POST https://graph.microsoft.com/v1.0/security/collaboration/analyzedEmails/remediate +Content-Type: application/json + +{ + "displayName": "Clean up Phish email", + "description": "Delete email", + "severity": "medium", + "action": "softDelete", + "remediateSendersCopy": "false", + "analyzedEmails": [ + { + "networkMessageId": "73ca4154-58d8-43d0-a890-08dc18c52e6d", + "recipientEmailAddress": "hannah.jarvis@contoso.com" + }, + { + "networkMessageId": "73ca4154-58d8-43d0-a890-08dc18c52e6d", + "recipientEmailAddress": "preston.morales@contoso.com" + } + ] +} +``` + + +### Response + +The following example shows the response. +>**Note:** The response object shown here might be shortened for readability. + +```http +HTTP/1.1 202 Accepted +Location: https://security.microsoft.com/action-center/history?filters={"bulkId":["{bulkId}"]}&tid={tid} +Content-Type: application/json;text/plain +Content-Length: 0 +``` diff --git a/api-reference/v1.0/api/security-collaborationroot-list-analyzedemails.md b/api-reference/v1.0/api/security-collaborationroot-list-analyzedemails.md new file mode 100644 index 00000000000..4df7a62bd10 --- /dev/null +++ b/api-reference/v1.0/api/security-collaborationroot-list-analyzedemails.md @@ -0,0 +1,192 @@ +--- +title: "List analyzedEmails " +description: "Get a list of analyzedEmail objects and their properties." +author: "ajaj-shaikh" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: apiPageType +ms.date: 05/27/2026 +--- + +# List analyzedEmails + +Namespace: microsoft.graph.security + + +Get a list of [analyzedEmail](../resources/security-analyzedemail.md) objects and their properties. + +This API allows Security Operations teams to have direct access to hunt (query) for threats, IOCs, attack vectors, and evidences for a tenant. It is a powerful, near real-time tool to help Security Operations teams investigate and respond to threats. It consists of email metadata, verdict information, related underlying entities (attachments/URL), filters, and more. + + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/security-collaborationroot-list-analyzedemails-permissions.md)] + +## HTTP request + + +```http +GET /security/collaboration/analyzedEmails +``` + +## Query parameters + +In the request URL, you can optionally provide the following query parameters with values to narrow the search window. + +|Parameter|Type|Description| +|:---|:---|:---| +|startTime|DateTime|Optional. The start time of the email search.| +|endTime|DateTime|Optional. The end time of the email search.| + +### OData query parameters + +This method supports the following OData query parameters to help customize the response: `$count`, `$filter`, `$skiptoken`, `$top`. For general information, see [OData query parameters](/graph/query-parameters). + +The following example shows how to use the `$filter` parameter to customize the response. + +```http +GET /security/collaboration/analyzedEmails?startTime=2024-02-18&endTime=2024-02-20&$filter=networkMessageId eq 'bde1f764-bbf4-5673-fbba-0asdhsgfhf1' +GET /security/collaboration/analyzedEmails?startTime=2024-02-18&endTime=2024-02-20&$filter=networkMessageId eq 'bde1f764-bbf4-5673-fbba-0asdhsgfhf1' and recipientEmailAddress eq 'tomas.richardson@contoso.com' +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a collection of [microsoft.graph.security.analyzedEmail](../resources/security-analyzedemail.md) objects in the response body. + +## Examples + +### Request + +The following example shows a request. + +```http +GET https://graph.microsoft.com/v1.0/security/collaboration/analyzedEmails?startTime=2024-02-18&endTime=2024-02-20 +``` + +### Response + +The following example shows the response. +>**Note:** The response object shown here might be shortened for readability. + +```http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value": [ + { + "@odata.type": "#microsoft.graph.security.analyzedEmail", + "id": "String", + "loggedDateTime": "Datetime", + "networkMessageId": "String", + "internetMessageId": "String", + "senderDetail": { + "@odata.type": "microsoft.graph.security.analyzedEmailSenderDetail" + }, + "recipientEmailAddress": "String", + "distributionList": "String", + "subject": "String", + "returnPath": "String", + "directionality": "microsoft.graph.security.antispamDirectionality", + "originalDelivery": { + "@odata.type": "microsoft.graph.security.analyzedEmailDeliveryDetail" + }, + "latestDelivery": { + "@odata.type": "microsoft.graph.security.analyzedEmailDeliveryDetail" + }, + "attachments": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailAttachment" + } + ], + "urls": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailUrl" + } + ], + "language": "String", + "sizeInBytes": "Integer", + "alertIds": [ + "String" + ], + "exchangeTransportRules": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailExchangeTransportRuleInfo" + } + ], + "overrideSources": [ + "String" + ], + "threatTypes": [ + "microsoft.graph.security.threatType" + ], + "detectionMethods": [ + "String" + ], + "contexts": [ + "String" + ], + "authenticationDetails": { + "@odata.type": "microsoft.graph.security.analyzedEmailAuthenticationDetail" + }, + "phishConfidenceLevel": "String", + "spamConfidenceLevel": "String", + "bulkComplaintLevel": "String", + "emailClusterId": "String", + "policyAction": "String", + "policy": "String", + "timelineEvents": [ + { + "@odata.type": "microsoft.graph.security.timelineEvent" + } + ], + "threatDetectionDetails": [ + { + "@odata.type": "microsoft.graph.security.threatDetectionDetail" + } + ], + "primaryOverrideSource": "String", + "inboundConnectorFormattedName": "String", + "policyType": "String", + "clientType": "String", + "dlpRules": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailDlpRuleInfo" + } + ], + "forwardingDetail": "String", + "recipientDetail": { + "@odata.type": "microsoft.graph.security.analyzedEmailRecipientDetail" + } + } + ] +} +``` diff --git a/api-reference/v1.0/api/security-retentionlabel-get.md b/api-reference/v1.0/api/security-retentionlabel-get.md index 9b1fbb65afc..8e9694eea36 100644 --- a/api-reference/v1.0/api/security-retentionlabel-get.md +++ b/api-reference/v1.0/api/security-retentionlabel-get.md @@ -60,7 +60,7 @@ The following example shows a request. } --> ```msgraph-interactive -GET https://graph.microsoft.com/v1.0/security/labels/retentionLabels/{retentionLabelId} +GET https://graph.microsoft.com/v1.0/security/labels/retentionLabels/{retentionLabelId} ``` # [C#](#tab/csharp) diff --git a/api-reference/v1.0/includes/permissions/accesspackage-filterbycurrentuser-permissions.md b/api-reference/v1.0/includes/permissions/accesspackage-filterbycurrentuser-permissions.md index f0e3cbfe177..d22738396a4 100644 --- a/api-reference/v1.0/includes/permissions/accesspackage-filterbycurrentuser-permissions.md +++ b/api-reference/v1.0/includes/permissions/accesspackage-filterbycurrentuser-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|Not supported.|Not supported.| diff --git a/api-reference/v1.0/includes/permissions/accesspackage-getapplicablepolicyrequirements-permissions.md b/api-reference/v1.0/includes/permissions/accesspackage-getapplicablepolicyrequirements-permissions.md index f0e3cbfe177..d22738396a4 100644 --- a/api-reference/v1.0/includes/permissions/accesspackage-getapplicablepolicyrequirements-permissions.md +++ b/api-reference/v1.0/includes/permissions/accesspackage-getapplicablepolicyrequirements-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|Not supported.|Not supported.| diff --git a/api-reference/v1.0/includes/permissions/accesspackageassignment-filterbycurrentuser-permissions.md b/api-reference/v1.0/includes/permissions/accesspackageassignment-filterbycurrentuser-permissions.md index f0e3cbfe177..d22738396a4 100644 --- a/api-reference/v1.0/includes/permissions/accesspackageassignment-filterbycurrentuser-permissions.md +++ b/api-reference/v1.0/includes/permissions/accesspackageassignment-filterbycurrentuser-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|Not supported.|Not supported.| diff --git a/api-reference/v1.0/includes/permissions/accesspackageassignmentrequest-cancel-permissions.md b/api-reference/v1.0/includes/permissions/accesspackageassignmentrequest-cancel-permissions.md index 6a67754258a..6a68941027d 100644 --- a/api-reference/v1.0/includes/permissions/accesspackageassignmentrequest-cancel-permissions.md +++ b/api-reference/v1.0/includes/permissions/accesspackageassignmentrequest-cancel-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.ReadWrite.All|Not available.| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|Not supported.|Not supported.| diff --git a/api-reference/v1.0/includes/permissions/accesspackageassignmentrequest-filterbycurrentuser-permissions.md b/api-reference/v1.0/includes/permissions/accesspackageassignmentrequest-filterbycurrentuser-permissions.md index f0e3cbfe177..d22738396a4 100644 --- a/api-reference/v1.0/includes/permissions/accesspackageassignmentrequest-filterbycurrentuser-permissions.md +++ b/api-reference/v1.0/includes/permissions/accesspackageassignmentrequest-filterbycurrentuser-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.Read.All|EntitlementManagement.ReadWrite.All| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.Read.All, EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|Not supported.|Not supported.| diff --git a/api-reference/v1.0/includes/permissions/accesspackagesubject-get-permissions.md b/api-reference/v1.0/includes/permissions/accesspackagesubject-get-permissions.md new file mode 100644 index 00000000000..08570fd0ab9 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/accesspackagesubject-get-permissions.md @@ -0,0 +1,5 @@ +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|EntitlementManagement.ReadWrite.All|Not available.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|EntitlementManagement.ReadWrite.All|Not available.| \ No newline at end of file diff --git a/api-reference/v1.0/includes/permissions/accesspackagesubject-update-permissions.md b/api-reference/v1.0/includes/permissions/accesspackagesubject-update-permissions.md new file mode 100644 index 00000000000..08570fd0ab9 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/accesspackagesubject-update-permissions.md @@ -0,0 +1,5 @@ +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|EntitlementManagement.ReadWrite.All|Not available.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|EntitlementManagement.ReadWrite.All|Not available.| \ No newline at end of file diff --git a/api-reference/v1.0/includes/permissions/entitlementmanagement-post-assignmentrequests-permissions.md b/api-reference/v1.0/includes/permissions/entitlementmanagement-post-assignmentrequests-permissions.md index 606bd07c2fb..98fc3d9ed71 100644 --- a/api-reference/v1.0/includes/permissions/entitlementmanagement-post-assignmentrequests-permissions.md +++ b/api-reference/v1.0/includes/permissions/entitlementmanagement-post-assignmentrequests-permissions.md @@ -6,7 +6,7 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|EntitlementManagement.ReadWrite.All|Not available.| +|Delegated (work or school account)|EntitlementMgmt-SubjectAccess.ReadWrite|EntitlementManagement.ReadWrite.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| |Application|EntitlementManagement.ReadWrite.All|Not available.| diff --git a/api-reference/v1.0/includes/permissions/security-analyzedemail-get-permissions.md b/api-reference/v1.0/includes/permissions/security-analyzedemail-get-permissions.md new file mode 100644 index 00000000000..9232a8e04dc --- /dev/null +++ b/api-reference/v1.0/includes/permissions/security-analyzedemail-get-permissions.md @@ -0,0 +1,12 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|Not supported.|Not supported.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|SecurityAnalyzedMessage.Read.All|SecurityAnalyzedMessage.ReadWrite.All| + diff --git a/api-reference/v1.0/includes/permissions/security-analyzedemail-remediate-permissions.md b/api-reference/v1.0/includes/permissions/security-analyzedemail-remediate-permissions.md new file mode 100644 index 00000000000..e2d0caf161d --- /dev/null +++ b/api-reference/v1.0/includes/permissions/security-analyzedemail-remediate-permissions.md @@ -0,0 +1,12 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|Not supported.|Not supported.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|SecurityAnalyzedMessage.ReadWrite.All|Not available.| + diff --git a/api-reference/v1.0/includes/permissions/security-collaborationroot-list-analyzedemails-permissions.md b/api-reference/v1.0/includes/permissions/security-collaborationroot-list-analyzedemails-permissions.md new file mode 100644 index 00000000000..9232a8e04dc --- /dev/null +++ b/api-reference/v1.0/includes/permissions/security-collaborationroot-list-analyzedemails-permissions.md @@ -0,0 +1,12 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|Not supported.|Not supported.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|SecurityAnalyzedMessage.Read.All|SecurityAnalyzedMessage.ReadWrite.All| + diff --git a/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-csharp-snippets.md b/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-csharp-snippets.md new file mode 100644 index 00000000000..212be3ed206 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-csharp-snippets.md @@ -0,0 +1,38 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```csharp + +// Code snippets are only available for the latest version. Current version is 5.x + +// Dependencies +using Microsoft.Graph.Models; + +var requestBody = new AccessPackageResourceRequest +{ + RequestType = AccessPackageRequestType.AdminAdd, + Resource = new AccessPackageResource + { + DisplayName = "test-mgmtgroup", + Description = "test-mgmtgroup", + OriginId = "/providers/Microsoft.Management/managementGroups/test-mgmtgroup", + OriginSystem = "AzureResources", + AdditionalData = new Dictionary + { + { + "resourceType" , "ManagementGroup" + }, + }, + }, + Catalog = new AccessPackageCatalog + { + Id = "e8368470-afaf-44da-ba86-13a7318f1995", + }, +}; + +// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=csharp +var result = await graphClient.IdentityGovernance.EntitlementManagement.ResourceRequests.PostAsync(requestBody); + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-csharp-snippets.md b/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-csharp-snippets.md new file mode 100644 index 00000000000..d86ce7e8d3f --- /dev/null +++ b/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-csharp-snippets.md @@ -0,0 +1,38 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```csharp + +// Code snippets are only available for the latest version. Current version is 5.x + +// Dependencies +using Microsoft.Graph.Models; + +var requestBody = new AccessPackageResourceRequest +{ + RequestType = AccessPackageRequestType.AdminAdd, + Resource = new AccessPackageResource + { + DisplayName = "Dev", + Description = "Dev", + OriginId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978", + OriginSystem = "AzureResources", + AdditionalData = new Dictionary + { + { + "resourceType" , "Subscription" + }, + }, + }, + Catalog = new AccessPackageCatalog + { + Id = "e8368470-afaf-44da-ba86-13a7318f1995", + }, +}; + +// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=csharp +var result = await graphClient.IdentityGovernance.EntitlementManagement.ResourceRequests.PostAsync(requestBody); + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerolescope-from-accesspackage-subscription-csharp-snippets.md b/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerolescope-from-accesspackage-subscription-csharp-snippets.md new file mode 100644 index 00000000000..1fed55af6d3 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerolescope-from-accesspackage-subscription-csharp-snippets.md @@ -0,0 +1,56 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```csharp + +// Code snippets are only available for the latest version. Current version is 5.x + +// Dependencies +using Microsoft.Graph.Models; + +var requestBody = new AccessPackageResourceRoleScope +{ + Role = new AccessPackageResourceRole + { + OriginId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475", + DisplayName = "Access Review Operator Service Role", + Description = "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.", + Resource = new AccessPackageResource + { + Id = "b09a0288-a83e-4ae6-8a53-bc09aeb966ea", + Description = "Dev", + DisplayName = "Dev", + OriginId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978", + OriginSystem = "AzureResources", + AdditionalData = new Dictionary + { + { + "resourceType" , "Subscription" + }, + }, + }, + OriginSystem = "AzureResources", + AdditionalData = new Dictionary + { + { + "type" , "active" + }, + }, + }, + Scope = new AccessPackageResourceScope + { + Id = "e1e0ec8c-472d-4ec5-a8f9-29e0bc275640", + Description = "/resourceGroups/rg", + DisplayName = "/resourceGroups/rg", + IsRootScope = false, + OriginSystem = "AzureResources", + OriginId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/resourceGroups/rg", + }, +}; + +// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=csharp +var result = await graphClient.IdentityGovernance.EntitlementManagement.AccessPackages["{accessPackage-id}"].ResourceRoleScopes.PostAsync(requestBody); + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-csharp-snippets.md b/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-csharp-snippets.md new file mode 100644 index 00000000000..9f1ecb282ba --- /dev/null +++ b/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-csharp-snippets.md @@ -0,0 +1,56 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```csharp + +// Code snippets are only available for the latest version. Current version is 5.x + +// Dependencies +using Microsoft.Graph.Models; + +var requestBody = new AccessPackageResourceRoleScope +{ + Role = new AccessPackageResourceRole + { + OriginId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475", + DisplayName = "Access Review Operator Service Role", + Description = "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.", + Resource = new AccessPackageResource + { + Id = "b09a0288-a83e-4ae6-8a53-bc09aeb966ea", + Description = "Dev", + DisplayName = "Dev", + OriginId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978", + OriginSystem = "AzureResources", + AdditionalData = new Dictionary + { + { + "resourceType" , "Subscription" + }, + }, + }, + OriginSystem = "AzureResources", + AdditionalData = new Dictionary + { + { + "type" , "active" + }, + }, + }, + Scope = new AccessPackageResourceScope + { + Id = "c66c1e22-1093-46fb-a8a8-c0e334113ca4", + Description = "Root", + DisplayName = "Root", + IsRootScope = true, + OriginSystem = "AzureResources", + OriginId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978", + }, +}; + +// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=csharp +var result = await graphClient.IdentityGovernance.EntitlementManagement.AccessPackages["{accessPackage-id}"].ResourceRoleScopes.PostAsync(requestBody); + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-csharp-snippets.md b/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-csharp-snippets.md new file mode 100644 index 00000000000..ed79bfbebf0 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/csharp/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-csharp-snippets.md @@ -0,0 +1,57 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```csharp + +// Code snippets are only available for the latest version. Current version is 5.x + +// Dependencies +using Microsoft.Graph.Models; + +var requestBody = new AccessPackageResourceRoleScope +{ + Role = new AccessPackageResourceRole + { + Id = "055c76c1-a466-4f1a-9279-4a2ccaa7ac3e", + OriginId = "/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475", + DisplayName = "Access Review Operator Service Role", + Description = "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.", + Resource = new AccessPackageResource + { + Id = "c347ca9b-a9cc-4df9-bc3c-00c8e0297692", + Description = "test-mgmtgroup", + DisplayName = "test-mgmtgroup", + OriginId = "/providers/Microsoft.Management/managementGroups/test-mgmtgroup", + OriginSystem = "AzureResources", + AdditionalData = new Dictionary + { + { + "resourceType" , "ManagementGroup" + }, + }, + }, + OriginSystem = "AzureResources", + AdditionalData = new Dictionary + { + { + "type" , "eligible" + }, + }, + }, + Scope = new AccessPackageResourceScope + { + Id = "338613b3-b410-4c6d-b5e9-45590bc8a357", + DisplayName = "Root", + Description = "Root Scope", + IsRootScope = true, + OriginId = "/providers/Microsoft.Management/managementGroups/test-mgmtgroup", + OriginSystem = "AzureResources", + }, +}; + +// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=csharp +var result = await graphClient.IdentityGovernance.EntitlementManagement.AccessPackages["{accessPackage-id}"].ResourceRoleScopes.PostAsync(requestBody); + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-go-snippets.md b/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-go-snippets.md new file mode 100644 index 00000000000..680c20791f8 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-go-snippets.md @@ -0,0 +1,44 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```go + + +// Code snippets are only available for the latest major version. Current major version is $v1.* + +// Dependencies +import ( + "context" + msgraphsdk "github.com/microsoftgraph/msgraph-sdk-go" + graphmodels "github.com/microsoftgraph/msgraph-sdk-go/models" + //other-imports +) + +requestBody := graphmodels.NewAccessPackageResourceRequest() +requestType := graphmodels.ADMINADD_ACCESSPACKAGEREQUESTTYPE +requestBody.SetRequestType(&requestType) +resource := graphmodels.NewAccessPackageResource() +displayName := "test-mgmtgroup" +resource.SetDisplayName(&displayName) +description := "test-mgmtgroup" +resource.SetDescription(&description) +originId := "/providers/Microsoft.Management/managementGroups/test-mgmtgroup" +resource.SetOriginId(&originId) +originSystem := "AzureResources" +resource.SetOriginSystem(&originSystem) +additionalData := map[string]interface{}{ + "resourceType" : "ManagementGroup", +} +resource.SetAdditionalData(additionalData) +requestBody.SetResource(resource) +catalog := graphmodels.NewAccessPackageCatalog() +id := "e8368470-afaf-44da-ba86-13a7318f1995" +catalog.SetId(&id) +requestBody.SetCatalog(catalog) + +// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=go +resourceRequests, err := graphClient.IdentityGovernance().EntitlementManagement().ResourceRequests().Post(context.Background(), requestBody, nil) + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-go-snippets.md b/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-go-snippets.md new file mode 100644 index 00000000000..f0422a039a2 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-go-snippets.md @@ -0,0 +1,44 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```go + + +// Code snippets are only available for the latest major version. Current major version is $v1.* + +// Dependencies +import ( + "context" + msgraphsdk "github.com/microsoftgraph/msgraph-sdk-go" + graphmodels "github.com/microsoftgraph/msgraph-sdk-go/models" + //other-imports +) + +requestBody := graphmodels.NewAccessPackageResourceRequest() +requestType := graphmodels.ADMINADD_ACCESSPACKAGEREQUESTTYPE +requestBody.SetRequestType(&requestType) +resource := graphmodels.NewAccessPackageResource() +displayName := "Dev" +resource.SetDisplayName(&displayName) +description := "Dev" +resource.SetDescription(&description) +originId := "/subscriptions/828b526f-c769-4b19-9797-734b4843b978" +resource.SetOriginId(&originId) +originSystem := "AzureResources" +resource.SetOriginSystem(&originSystem) +additionalData := map[string]interface{}{ + "resourceType" : "Subscription", +} +resource.SetAdditionalData(additionalData) +requestBody.SetResource(resource) +catalog := graphmodels.NewAccessPackageCatalog() +id := "e8368470-afaf-44da-ba86-13a7318f1995" +catalog.SetId(&id) +requestBody.SetCatalog(catalog) + +// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=go +resourceRequests, err := graphClient.IdentityGovernance().EntitlementManagement().ResourceRequests().Post(context.Background(), requestBody, nil) + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerolescope-from-accesspackage-subscription-go-snippets.md b/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerolescope-from-accesspackage-subscription-go-snippets.md new file mode 100644 index 00000000000..3733a42edbd --- /dev/null +++ b/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerolescope-from-accesspackage-subscription-go-snippets.md @@ -0,0 +1,68 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```go + + +// Code snippets are only available for the latest major version. Current major version is $v1.* + +// Dependencies +import ( + "context" + msgraphsdk "github.com/microsoftgraph/msgraph-sdk-go" + graphmodels "github.com/microsoftgraph/msgraph-sdk-go/models" + //other-imports +) + +requestBody := graphmodels.NewAccessPackageResourceRoleScope() +role := graphmodels.NewAccessPackageResourceRole() +originId := "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475" +role.SetOriginId(&originId) +displayName := "Access Review Operator Service Role" +role.SetDisplayName(&displayName) +description := "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process." +role.SetDescription(&description) +resource := graphmodels.NewAccessPackageResource() +id := "b09a0288-a83e-4ae6-8a53-bc09aeb966ea" +resource.SetId(&id) +description := "Dev" +resource.SetDescription(&description) +displayName := "Dev" +resource.SetDisplayName(&displayName) +originId := "/subscriptions/828b526f-c769-4b19-9797-734b4843b978" +resource.SetOriginId(&originId) +originSystem := "AzureResources" +resource.SetOriginSystem(&originSystem) +additionalData := map[string]interface{}{ + "resourceType" : "Subscription", +} +resource.SetAdditionalData(additionalData) +role.SetResource(resource) +originSystem := "AzureResources" +role.SetOriginSystem(&originSystem) +additionalData := map[string]interface{}{ + "type" : "active", +} +role.SetAdditionalData(additionalData) +requestBody.SetRole(role) +scope := graphmodels.NewAccessPackageResourceScope() +id := "e1e0ec8c-472d-4ec5-a8f9-29e0bc275640" +scope.SetId(&id) +description := "/resourceGroups/rg" +scope.SetDescription(&description) +displayName := "/resourceGroups/rg" +scope.SetDisplayName(&displayName) +isRootScope := false +scope.SetIsRootScope(&isRootScope) +originSystem := "AzureResources" +scope.SetOriginSystem(&originSystem) +originId := "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/resourceGroups/rg" +scope.SetOriginId(&originId) +requestBody.SetScope(scope) + +// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=go +resourceRoleScopes, err := graphClient.IdentityGovernance().EntitlementManagement().AccessPackages().ByAccessPackageId("accessPackage-id").ResourceRoleScopes().Post(context.Background(), requestBody, nil) + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-go-snippets.md b/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-go-snippets.md new file mode 100644 index 00000000000..0ab935047b4 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-go-snippets.md @@ -0,0 +1,68 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```go + + +// Code snippets are only available for the latest major version. Current major version is $v1.* + +// Dependencies +import ( + "context" + msgraphsdk "github.com/microsoftgraph/msgraph-sdk-go" + graphmodels "github.com/microsoftgraph/msgraph-sdk-go/models" + //other-imports +) + +requestBody := graphmodels.NewAccessPackageResourceRoleScope() +role := graphmodels.NewAccessPackageResourceRole() +originId := "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475" +role.SetOriginId(&originId) +displayName := "Access Review Operator Service Role" +role.SetDisplayName(&displayName) +description := "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process." +role.SetDescription(&description) +resource := graphmodels.NewAccessPackageResource() +id := "b09a0288-a83e-4ae6-8a53-bc09aeb966ea" +resource.SetId(&id) +description := "Dev" +resource.SetDescription(&description) +displayName := "Dev" +resource.SetDisplayName(&displayName) +originId := "/subscriptions/828b526f-c769-4b19-9797-734b4843b978" +resource.SetOriginId(&originId) +originSystem := "AzureResources" +resource.SetOriginSystem(&originSystem) +additionalData := map[string]interface{}{ + "resourceType" : "Subscription", +} +resource.SetAdditionalData(additionalData) +role.SetResource(resource) +originSystem := "AzureResources" +role.SetOriginSystem(&originSystem) +additionalData := map[string]interface{}{ + "type" : "active", +} +role.SetAdditionalData(additionalData) +requestBody.SetRole(role) +scope := graphmodels.NewAccessPackageResourceScope() +id := "c66c1e22-1093-46fb-a8a8-c0e334113ca4" +scope.SetId(&id) +description := "Root" +scope.SetDescription(&description) +displayName := "Root" +scope.SetDisplayName(&displayName) +isRootScope := true +scope.SetIsRootScope(&isRootScope) +originSystem := "AzureResources" +scope.SetOriginSystem(&originSystem) +originId := "/subscriptions/828b526f-c769-4b19-9797-734b4843b978" +scope.SetOriginId(&originId) +requestBody.SetScope(scope) + +// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=go +resourceRoleScopes, err := graphClient.IdentityGovernance().EntitlementManagement().AccessPackages().ByAccessPackageId("accessPackage-id").ResourceRoleScopes().Post(context.Background(), requestBody, nil) + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-go-snippets.md b/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-go-snippets.md new file mode 100644 index 00000000000..9cc1aa38862 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/go/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-go-snippets.md @@ -0,0 +1,70 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```go + + +// Code snippets are only available for the latest major version. Current major version is $v1.* + +// Dependencies +import ( + "context" + msgraphsdk "github.com/microsoftgraph/msgraph-sdk-go" + graphmodels "github.com/microsoftgraph/msgraph-sdk-go/models" + //other-imports +) + +requestBody := graphmodels.NewAccessPackageResourceRoleScope() +role := graphmodels.NewAccessPackageResourceRole() +id := "055c76c1-a466-4f1a-9279-4a2ccaa7ac3e" +role.SetId(&id) +originId := "/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475" +role.SetOriginId(&originId) +displayName := "Access Review Operator Service Role" +role.SetDisplayName(&displayName) +description := "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process." +role.SetDescription(&description) +resource := graphmodels.NewAccessPackageResource() +id := "c347ca9b-a9cc-4df9-bc3c-00c8e0297692" +resource.SetId(&id) +description := "test-mgmtgroup" +resource.SetDescription(&description) +displayName := "test-mgmtgroup" +resource.SetDisplayName(&displayName) +originId := "/providers/Microsoft.Management/managementGroups/test-mgmtgroup" +resource.SetOriginId(&originId) +originSystem := "AzureResources" +resource.SetOriginSystem(&originSystem) +additionalData := map[string]interface{}{ + "resourceType" : "ManagementGroup", +} +resource.SetAdditionalData(additionalData) +role.SetResource(resource) +originSystem := "AzureResources" +role.SetOriginSystem(&originSystem) +additionalData := map[string]interface{}{ + "type" : "eligible", +} +role.SetAdditionalData(additionalData) +requestBody.SetRole(role) +scope := graphmodels.NewAccessPackageResourceScope() +id := "338613b3-b410-4c6d-b5e9-45590bc8a357" +scope.SetId(&id) +displayName := "Root" +scope.SetDisplayName(&displayName) +description := "Root Scope" +scope.SetDescription(&description) +isRootScope := true +scope.SetIsRootScope(&isRootScope) +originId := "/providers/Microsoft.Management/managementGroups/test-mgmtgroup" +scope.SetOriginId(&originId) +originSystem := "AzureResources" +scope.SetOriginSystem(&originSystem) +requestBody.SetScope(scope) + +// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=go +resourceRoleScopes, err := graphClient.IdentityGovernance().EntitlementManagement().AccessPackages().ByAccessPackageId("accessPackage-id").ResourceRoleScopes().Post(context.Background(), requestBody, nil) + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-java-snippets.md b/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-java-snippets.md new file mode 100644 index 00000000000..23e56da60e7 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-java-snippets.md @@ -0,0 +1,28 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```java + +// Code snippets are only available for the latest version. Current version is 6.x + +GraphServiceClient graphClient = new GraphServiceClient(requestAdapter); + +AccessPackageResourceRequest accessPackageResourceRequest = new AccessPackageResourceRequest(); +accessPackageResourceRequest.setRequestType(AccessPackageRequestType.AdminAdd); +AccessPackageResource resource = new AccessPackageResource(); +resource.setDisplayName("test-mgmtgroup"); +resource.setDescription("test-mgmtgroup"); +resource.setOriginId("/providers/Microsoft.Management/managementGroups/test-mgmtgroup"); +resource.setOriginSystem("AzureResources"); +HashMap additionalData = new HashMap(); +additionalData.put("resourceType", "ManagementGroup"); +resource.setAdditionalData(additionalData); +accessPackageResourceRequest.setResource(resource); +AccessPackageCatalog catalog = new AccessPackageCatalog(); +catalog.setId("e8368470-afaf-44da-ba86-13a7318f1995"); +accessPackageResourceRequest.setCatalog(catalog); +AccessPackageResourceRequest result = graphClient.identityGovernance().entitlementManagement().resourceRequests().post(accessPackageResourceRequest); + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-java-snippets.md b/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-java-snippets.md new file mode 100644 index 00000000000..71c17cf40ae --- /dev/null +++ b/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-java-snippets.md @@ -0,0 +1,28 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```java + +// Code snippets are only available for the latest version. Current version is 6.x + +GraphServiceClient graphClient = new GraphServiceClient(requestAdapter); + +AccessPackageResourceRequest accessPackageResourceRequest = new AccessPackageResourceRequest(); +accessPackageResourceRequest.setRequestType(AccessPackageRequestType.AdminAdd); +AccessPackageResource resource = new AccessPackageResource(); +resource.setDisplayName("Dev"); +resource.setDescription("Dev"); +resource.setOriginId("/subscriptions/828b526f-c769-4b19-9797-734b4843b978"); +resource.setOriginSystem("AzureResources"); +HashMap additionalData = new HashMap(); +additionalData.put("resourceType", "Subscription"); +resource.setAdditionalData(additionalData); +accessPackageResourceRequest.setResource(resource); +AccessPackageCatalog catalog = new AccessPackageCatalog(); +catalog.setId("e8368470-afaf-44da-ba86-13a7318f1995"); +accessPackageResourceRequest.setCatalog(catalog); +AccessPackageResourceRequest result = graphClient.identityGovernance().entitlementManagement().resourceRequests().post(accessPackageResourceRequest); + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerolescope-from-accesspackage-subscription-java-snippets.md b/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerolescope-from-accesspackage-subscription-java-snippets.md new file mode 100644 index 00000000000..fd3289e0c33 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerolescope-from-accesspackage-subscription-java-snippets.md @@ -0,0 +1,42 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```java + +// Code snippets are only available for the latest version. Current version is 6.x + +GraphServiceClient graphClient = new GraphServiceClient(requestAdapter); + +AccessPackageResourceRoleScope accessPackageResourceRoleScope = new AccessPackageResourceRoleScope(); +AccessPackageResourceRole role = new AccessPackageResourceRole(); +role.setOriginId("/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475"); +role.setDisplayName("Access Review Operator Service Role"); +role.setDescription("Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process."); +AccessPackageResource resource = new AccessPackageResource(); +resource.setId("b09a0288-a83e-4ae6-8a53-bc09aeb966ea"); +resource.setDescription("Dev"); +resource.setDisplayName("Dev"); +resource.setOriginId("/subscriptions/828b526f-c769-4b19-9797-734b4843b978"); +resource.setOriginSystem("AzureResources"); +HashMap additionalData = new HashMap(); +additionalData.put("resourceType", "Subscription"); +resource.setAdditionalData(additionalData); +role.setResource(resource); +role.setOriginSystem("AzureResources"); +HashMap additionalData1 = new HashMap(); +additionalData1.put("type", "active"); +role.setAdditionalData(additionalData1); +accessPackageResourceRoleScope.setRole(role); +AccessPackageResourceScope scope = new AccessPackageResourceScope(); +scope.setId("e1e0ec8c-472d-4ec5-a8f9-29e0bc275640"); +scope.setDescription("/resourceGroups/rg"); +scope.setDisplayName("/resourceGroups/rg"); +scope.setIsRootScope(false); +scope.setOriginSystem("AzureResources"); +scope.setOriginId("/subscriptions/828b526f-c769-4b19-9797-734b4843b978/resourceGroups/rg"); +accessPackageResourceRoleScope.setScope(scope); +AccessPackageResourceRoleScope result = graphClient.identityGovernance().entitlementManagement().accessPackages().byAccessPackageId("{accessPackage-id}").resourceRoleScopes().post(accessPackageResourceRoleScope); + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-java-snippets.md b/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-java-snippets.md new file mode 100644 index 00000000000..a964cce8920 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-java-snippets.md @@ -0,0 +1,42 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```java + +// Code snippets are only available for the latest version. Current version is 6.x + +GraphServiceClient graphClient = new GraphServiceClient(requestAdapter); + +AccessPackageResourceRoleScope accessPackageResourceRoleScope = new AccessPackageResourceRoleScope(); +AccessPackageResourceRole role = new AccessPackageResourceRole(); +role.setOriginId("/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475"); +role.setDisplayName("Access Review Operator Service Role"); +role.setDescription("Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process."); +AccessPackageResource resource = new AccessPackageResource(); +resource.setId("b09a0288-a83e-4ae6-8a53-bc09aeb966ea"); +resource.setDescription("Dev"); +resource.setDisplayName("Dev"); +resource.setOriginId("/subscriptions/828b526f-c769-4b19-9797-734b4843b978"); +resource.setOriginSystem("AzureResources"); +HashMap additionalData = new HashMap(); +additionalData.put("resourceType", "Subscription"); +resource.setAdditionalData(additionalData); +role.setResource(resource); +role.setOriginSystem("AzureResources"); +HashMap additionalData1 = new HashMap(); +additionalData1.put("type", "active"); +role.setAdditionalData(additionalData1); +accessPackageResourceRoleScope.setRole(role); +AccessPackageResourceScope scope = new AccessPackageResourceScope(); +scope.setId("c66c1e22-1093-46fb-a8a8-c0e334113ca4"); +scope.setDescription("Root"); +scope.setDisplayName("Root"); +scope.setIsRootScope(true); +scope.setOriginSystem("AzureResources"); +scope.setOriginId("/subscriptions/828b526f-c769-4b19-9797-734b4843b978"); +accessPackageResourceRoleScope.setScope(scope); +AccessPackageResourceRoleScope result = graphClient.identityGovernance().entitlementManagement().accessPackages().byAccessPackageId("{accessPackage-id}").resourceRoleScopes().post(accessPackageResourceRoleScope); + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-java-snippets.md b/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-java-snippets.md new file mode 100644 index 00000000000..b7be5afe8ac --- /dev/null +++ b/api-reference/v1.0/includes/snippets/java/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-java-snippets.md @@ -0,0 +1,43 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```java + +// Code snippets are only available for the latest version. Current version is 6.x + +GraphServiceClient graphClient = new GraphServiceClient(requestAdapter); + +AccessPackageResourceRoleScope accessPackageResourceRoleScope = new AccessPackageResourceRoleScope(); +AccessPackageResourceRole role = new AccessPackageResourceRole(); +role.setId("055c76c1-a466-4f1a-9279-4a2ccaa7ac3e"); +role.setOriginId("/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475"); +role.setDisplayName("Access Review Operator Service Role"); +role.setDescription("Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process."); +AccessPackageResource resource = new AccessPackageResource(); +resource.setId("c347ca9b-a9cc-4df9-bc3c-00c8e0297692"); +resource.setDescription("test-mgmtgroup"); +resource.setDisplayName("test-mgmtgroup"); +resource.setOriginId("/providers/Microsoft.Management/managementGroups/test-mgmtgroup"); +resource.setOriginSystem("AzureResources"); +HashMap additionalData = new HashMap(); +additionalData.put("resourceType", "ManagementGroup"); +resource.setAdditionalData(additionalData); +role.setResource(resource); +role.setOriginSystem("AzureResources"); +HashMap additionalData1 = new HashMap(); +additionalData1.put("type", "eligible"); +role.setAdditionalData(additionalData1); +accessPackageResourceRoleScope.setRole(role); +AccessPackageResourceScope scope = new AccessPackageResourceScope(); +scope.setId("338613b3-b410-4c6d-b5e9-45590bc8a357"); +scope.setDisplayName("Root"); +scope.setDescription("Root Scope"); +scope.setIsRootScope(true); +scope.setOriginId("/providers/Microsoft.Management/managementGroups/test-mgmtgroup"); +scope.setOriginSystem("AzureResources"); +accessPackageResourceRoleScope.setScope(scope); +AccessPackageResourceRoleScope result = graphClient.identityGovernance().entitlementManagement().accessPackages().byAccessPackageId("{accessPackage-id}").resourceRoleScopes().post(accessPackageResourceRoleScope); + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-javascript-snippets.md b/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-javascript-snippets.md new file mode 100644 index 00000000000..7194b1563a5 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-javascript-snippets.md @@ -0,0 +1,30 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```javascript + +const options = { + authProvider, +}; + +const client = Client.init(options); + +const accessPackageResourceRequest = { + requestType: 'adminAdd', + resource: { + displayName: 'test-mgmtgroup', + description: 'test-mgmtgroup', + resourceType: 'ManagementGroup', + originId: '/providers/Microsoft.Management/managementGroups/test-mgmtgroup', + originSystem: 'AzureResources' + }, + catalog: { + id: 'e8368470-afaf-44da-ba86-13a7318f1995' + } +}; + +await client.api('/identityGovernance/entitlementManagement/resourceRequests') + .post(accessPackageResourceRequest); + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-javascript-snippets.md b/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-javascript-snippets.md new file mode 100644 index 00000000000..bfadc00a55d --- /dev/null +++ b/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-javascript-snippets.md @@ -0,0 +1,30 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```javascript + +const options = { + authProvider, +}; + +const client = Client.init(options); + +const accessPackageResourceRequest = { + requestType: 'adminAdd', + resource: { + displayName: 'Dev', + description: 'Dev', + resourceType: 'Subscription', + originId: '/subscriptions/828b526f-c769-4b19-9797-734b4843b978', + originSystem: 'AzureResources' + }, + catalog: { + id: 'e8368470-afaf-44da-ba86-13a7318f1995' + } +}; + +await client.api('/identityGovernance/entitlementManagement/resourceRequests') + .post(accessPackageResourceRequest); + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerolescope-from-accesspackage-subscription-javascript-snippets.md b/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerolescope-from-accesspackage-subscription-javascript-snippets.md new file mode 100644 index 00000000000..59ea63dbd2b --- /dev/null +++ b/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerolescope-from-accesspackage-subscription-javascript-snippets.md @@ -0,0 +1,42 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```javascript + +const options = { + authProvider, +}; + +const client = Client.init(options); + +const accessPackageResourceRoleScope = { + role: { + originId: '/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475', + displayName: 'Access Review Operator Service Role', + description: 'Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.', + resource: { + id: 'b09a0288-a83e-4ae6-8a53-bc09aeb966ea', + description: 'Dev', + displayName: 'Dev', + resourceType: 'Subscription', + originId: '/subscriptions/828b526f-c769-4b19-9797-734b4843b978', + originSystem: 'AzureResources' + }, + originSystem: 'AzureResources', + type: 'active' + }, + scope: { + id: 'e1e0ec8c-472d-4ec5-a8f9-29e0bc275640', + description: '/resourceGroups/rg', + displayName: '/resourceGroups/rg', + isRootScope: false, + originSystem: 'AzureResources', + originId: '/subscriptions/828b526f-c769-4b19-9797-734b4843b978/resourceGroups/rg' + } +}; + +await client.api('/identityGovernance/entitlementManagement/accessPackages/5f7f4c7d-b3f5-4988-a17b-3f09b6f5a9ee/resourceRoleScopes') + .post(accessPackageResourceRoleScope); + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-javascript-snippets.md b/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-javascript-snippets.md new file mode 100644 index 00000000000..6f9a597ccb5 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-javascript-snippets.md @@ -0,0 +1,42 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```javascript + +const options = { + authProvider, +}; + +const client = Client.init(options); + +const accessPackageResourceRoleScope = { + role: { + originId: '/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475', + displayName: 'Access Review Operator Service Role', + description: 'Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.', + resource: { + id: 'b09a0288-a83e-4ae6-8a53-bc09aeb966ea', + description: 'Dev', + displayName: 'Dev', + resourceType: 'Subscription', + originId: '/subscriptions/828b526f-c769-4b19-9797-734b4843b978', + originSystem: 'AzureResources' + }, + originSystem: 'AzureResources', + type: 'active' + }, + scope: { + id: 'c66c1e22-1093-46fb-a8a8-c0e334113ca4', + description: 'Root', + displayName: 'Root', + isRootScope: true, + originSystem: 'AzureResources', + originId: '/subscriptions/828b526f-c769-4b19-9797-734b4843b978' + } +}; + +await client.api('/identityGovernance/entitlementManagement/accessPackages/5f7f4c7d-b3f5-4988-a17b-3f09b6f5a9ee/resourceRoleScopes') + .post(accessPackageResourceRoleScope); + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-javascript-snippets.md b/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-javascript-snippets.md new file mode 100644 index 00000000000..770e42935ac --- /dev/null +++ b/api-reference/v1.0/includes/snippets/javascript/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-javascript-snippets.md @@ -0,0 +1,43 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```javascript + +const options = { + authProvider, +}; + +const client = Client.init(options); + +const accessPackageResourceRoleScope = { + role: { + id: '055c76c1-a466-4f1a-9279-4a2ccaa7ac3e', + originId: '/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475', + displayName: 'Access Review Operator Service Role', + description: 'Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.', + resource: { + id: 'c347ca9b-a9cc-4df9-bc3c-00c8e0297692', + description: 'test-mgmtgroup', + displayName: 'test-mgmtgroup', + resourceType: 'ManagementGroup', + originId: '/providers/Microsoft.Management/managementGroups/test-mgmtgroup', + originSystem: 'AzureResources' + }, + originSystem: 'AzureResources', + type: 'eligible' + }, + scope: { + id: '338613b3-b410-4c6d-b5e9-45590bc8a357', + displayName: 'Root', + description: 'Root Scope', + isRootScope: true, + originId: '/providers/Microsoft.Management/managementGroups/test-mgmtgroup', + originSystem: 'AzureResources' + } +}; + +await client.api('/identityGovernance/entitlementManagement/accessPackages/5f7f4c7d-b3f5-4988-a17b-3f09b6f5a9ee/resourceRoleScopes') + .post(accessPackageResourceRoleScope); + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/javascript/post-chatmessage-5-javascript-snippets.md b/api-reference/v1.0/includes/snippets/javascript/post-chatmessage-5-javascript-snippets.md index cbda614862d..5956a348a90 100644 --- a/api-reference/v1.0/includes/snippets/javascript/post-chatmessage-5-javascript-snippets.md +++ b/api-reference/v1.0/includes/snippets/javascript/post-chatmessage-5-javascript-snippets.md @@ -11,17 +11,17 @@ const options = { const client = Client.init(options); const chatMessage = { - body: { - contentType: 'html', - content: 'Testing with file share link. ' - }, - attachments: [ - { - id: '668f7fa8-8129-4de7-b32b-fe1b442e6ef1', - contentType: 'reference', - contentUrl: 'https://teamsgraph-my.sharepoint.com/:w:/g/personal/test_teamsgraph_onmicrosoft_com/Eah_j2YpgedNsyv-G0QubvEBma6Sd_76UtYkXwoJ-nYVEg?e=0H2Ibm' - } - ] + body: { + contentType: 'html', + content: 'Testing with file share link. ' + }, + attachments: [ + { + id: '668f7fa8-8129-4de7-b32b-fe1b442e6ef1', + contentType: 'reference', + contentUrl: 'https://teamsgraph-my.sharepoint.com/:w:/g/personal/test_teamsgraph_onmicrosoft_com/Eah_j2YpgedNsyv-G0QubvEBma6Sd_76UtYkXwoJ-nYVEg?e=0H2Ibm' + } + ] }; await client.api('/teams/1e769eab-06a8-4b2e-ac42-1f040a4e52a1/channels/19:e28d1f9b354f4de88d2e9e4d8b983763@thread.tacv2/messages') diff --git a/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-php-snippets.md b/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-php-snippets.md new file mode 100644 index 00000000000..bd9171d1dc6 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-php-snippets.md @@ -0,0 +1,35 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```php + +setRequestType(new AccessPackageRequestType('adminAdd')); +$resource = new AccessPackageResource(); +$resource->setDisplayName('test-mgmtgroup'); +$resource->setDescription('test-mgmtgroup'); +$resource->setOriginId('/providers/Microsoft.Management/managementGroups/test-mgmtgroup'); +$resource->setOriginSystem('AzureResources'); +$additionalData = [ + 'resourceType' => 'ManagementGroup', +]; +$resource->setAdditionalData($additionalData); +$requestBody->setResource($resource); +$catalog = new AccessPackageCatalog(); +$catalog->setId('e8368470-afaf-44da-ba86-13a7318f1995'); +$requestBody->setCatalog($catalog); + +$result = $graphServiceClient->identityGovernance()->entitlementManagement()->resourceRequests()->post($requestBody)->wait(); + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-php-snippets.md b/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-php-snippets.md new file mode 100644 index 00000000000..181803ab6c6 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-php-snippets.md @@ -0,0 +1,35 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```php + +setRequestType(new AccessPackageRequestType('adminAdd')); +$resource = new AccessPackageResource(); +$resource->setDisplayName('Dev'); +$resource->setDescription('Dev'); +$resource->setOriginId('/subscriptions/828b526f-c769-4b19-9797-734b4843b978'); +$resource->setOriginSystem('AzureResources'); +$additionalData = [ + 'resourceType' => 'Subscription', +]; +$resource->setAdditionalData($additionalData); +$requestBody->setResource($resource); +$catalog = new AccessPackageCatalog(); +$catalog->setId('e8368470-afaf-44da-ba86-13a7318f1995'); +$requestBody->setCatalog($catalog); + +$result = $graphServiceClient->identityGovernance()->entitlementManagement()->resourceRequests()->post($requestBody)->wait(); + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-php-snippets.md b/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-php-snippets.md new file mode 100644 index 00000000000..dbdf30637c3 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-php-snippets.md @@ -0,0 +1,50 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```php + +setOriginId('/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475'); +$role->setDisplayName('Access Review Operator Service Role'); +$role->setDescription('Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.'); +$roleResource = new AccessPackageResource(); +$roleResource->setId('b09a0288-a83e-4ae6-8a53-bc09aeb966ea'); +$roleResource->setDescription('Dev'); +$roleResource->setDisplayName('Dev'); +$roleResource->setOriginId('/subscriptions/828b526f-c769-4b19-9797-734b4843b978'); +$roleResource->setOriginSystem('AzureResources'); +$additionalData = [ + 'resourceType' => 'Subscription', +]; +$roleResource->setAdditionalData($additionalData); +$role->setResource($roleResource); +$role->setOriginSystem('AzureResources'); +$additionalData = [ + 'type' => 'active', +]; +$role->setAdditionalData($additionalData); +$requestBody->setRole($role); +$scope = new AccessPackageResourceScope(); +$scope->setId('c66c1e22-1093-46fb-a8a8-c0e334113ca4'); +$scope->setDescription('Root'); +$scope->setDisplayName('Root'); +$scope->setIsRootScope(true); +$scope->setOriginSystem('AzureResources'); +$scope->setOriginId('/subscriptions/828b526f-c769-4b19-9797-734b4843b978'); +$requestBody->setScope($scope); + +$result = $graphServiceClient->identityGovernance()->entitlementManagement()->accessPackages()->byAccessPackageId('accessPackage-id')->resourceRoleScopes()->post($requestBody)->wait(); + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-php-snippets.md b/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-php-snippets.md new file mode 100644 index 00000000000..f72cc7c8a24 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-php-snippets.md @@ -0,0 +1,51 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```php + +setId('055c76c1-a466-4f1a-9279-4a2ccaa7ac3e'); +$role->setOriginId('/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475'); +$role->setDisplayName('Access Review Operator Service Role'); +$role->setDescription('Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.'); +$roleResource = new AccessPackageResource(); +$roleResource->setId('c347ca9b-a9cc-4df9-bc3c-00c8e0297692'); +$roleResource->setDescription('test-mgmtgroup'); +$roleResource->setDisplayName('test-mgmtgroup'); +$roleResource->setOriginId('/providers/Microsoft.Management/managementGroups/test-mgmtgroup'); +$roleResource->setOriginSystem('AzureResources'); +$additionalData = [ + 'resourceType' => 'ManagementGroup', +]; +$roleResource->setAdditionalData($additionalData); +$role->setResource($roleResource); +$role->setOriginSystem('AzureResources'); +$additionalData = [ + 'type' => 'eligible', +]; +$role->setAdditionalData($additionalData); +$requestBody->setRole($role); +$scope = new AccessPackageResourceScope(); +$scope->setId('338613b3-b410-4c6d-b5e9-45590bc8a357'); +$scope->setDisplayName('Root'); +$scope->setDescription('Root Scope'); +$scope->setIsRootScope(true); +$scope->setOriginId('/providers/Microsoft.Management/managementGroups/test-mgmtgroup'); +$scope->setOriginSystem('AzureResources'); +$requestBody->setScope($scope); + +$result = $graphServiceClient->identityGovernance()->entitlementManagement()->accessPackages()->byAccessPackageId('accessPackage-id')->resourceRoleScopes()->post($requestBody)->wait(); + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerolescope-from-accesspackage-subscription-php-snippets.md b/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerolescope-from-accesspackage-subscription-php-snippets.md new file mode 100644 index 00000000000..4f18e9ddc3f --- /dev/null +++ b/api-reference/v1.0/includes/snippets/php/create-accesspackageresourcerolescope-from-accesspackage-subscription-php-snippets.md @@ -0,0 +1,50 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```php + +setOriginId('/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475'); +$role->setDisplayName('Access Review Operator Service Role'); +$role->setDescription('Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.'); +$roleResource = new AccessPackageResource(); +$roleResource->setId('b09a0288-a83e-4ae6-8a53-bc09aeb966ea'); +$roleResource->setDescription('Dev'); +$roleResource->setDisplayName('Dev'); +$roleResource->setOriginId('/subscriptions/828b526f-c769-4b19-9797-734b4843b978'); +$roleResource->setOriginSystem('AzureResources'); +$additionalData = [ + 'resourceType' => 'Subscription', +]; +$roleResource->setAdditionalData($additionalData); +$role->setResource($roleResource); +$role->setOriginSystem('AzureResources'); +$additionalData = [ + 'type' => 'active', +]; +$role->setAdditionalData($additionalData); +$requestBody->setRole($role); +$scope = new AccessPackageResourceScope(); +$scope->setId('e1e0ec8c-472d-4ec5-a8f9-29e0bc275640'); +$scope->setDescription('/resourceGroups/rg'); +$scope->setDisplayName('/resourceGroups/rg'); +$scope->setIsRootScope(false); +$scope->setOriginSystem('AzureResources'); +$scope->setOriginId('/subscriptions/828b526f-c769-4b19-9797-734b4843b978/resourceGroups/rg'); +$requestBody->setScope($scope); + +$result = $graphServiceClient->identityGovernance()->entitlementManagement()->accessPackages()->byAccessPackageId('accessPackage-id')->resourceRoleScopes()->post($requestBody)->wait(); + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-powershell-snippets.md b/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-powershell-snippets.md new file mode 100644 index 00000000000..269e4f5852a --- /dev/null +++ b/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-powershell-snippets.md @@ -0,0 +1,25 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```powershell + +Import-Module Microsoft.Graph.Identity.Governance + +$params = @{ + requestType = "adminAdd" + resource = @{ + displayName = "test-mgmtgroup" + description = "test-mgmtgroup" + resourceType = "ManagementGroup" + originId = "/providers/Microsoft.Management/managementGroups/test-mgmtgroup" + originSystem = "AzureResources" + } + catalog = @{ + id = "e8368470-afaf-44da-ba86-13a7318f1995" + } +} + +New-MgEntitlementManagementResourceRequest -BodyParameter $params + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-powershell-snippets.md b/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-powershell-snippets.md new file mode 100644 index 00000000000..4b7b162509d --- /dev/null +++ b/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-powershell-snippets.md @@ -0,0 +1,25 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```powershell + +Import-Module Microsoft.Graph.Identity.Governance + +$params = @{ + requestType = "adminAdd" + resource = @{ + displayName = "Dev" + description = "Dev" + resourceType = "Subscription" + originId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978" + originSystem = "AzureResources" + } + catalog = @{ + id = "e8368470-afaf-44da-ba86-13a7318f1995" + } +} + +New-MgEntitlementManagementResourceRequest -BodyParameter $params + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-powershell-snippets.md b/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-powershell-snippets.md new file mode 100644 index 00000000000..a375c93d03f --- /dev/null +++ b/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-powershell-snippets.md @@ -0,0 +1,37 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```powershell + +Import-Module Microsoft.Graph.Identity.Governance + +$params = @{ + role = @{ + originId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475" + displayName = "Access Review Operator Service Role" + description = "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process." + resource = @{ + id = "b09a0288-a83e-4ae6-8a53-bc09aeb966ea" + description = "Dev" + displayName = "Dev" + resourceType = "Subscription" + originId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978" + originSystem = "AzureResources" + } + originSystem = "AzureResources" + type = "active" + } + scope = @{ + id = "c66c1e22-1093-46fb-a8a8-c0e334113ca4" + description = "Root" + displayName = "Root" + isRootScope = $true + originSystem = "AzureResources" + originId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978" + } +} + +New-MgEntitlementManagementAccessPackageResourceRoleScope -AccessPackageId $accessPackageId -BodyParameter $params + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-powershell-snippets.md b/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-powershell-snippets.md new file mode 100644 index 00000000000..07fe7ca4381 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-powershell-snippets.md @@ -0,0 +1,38 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```powershell + +Import-Module Microsoft.Graph.Identity.Governance + +$params = @{ + role = @{ + id = "055c76c1-a466-4f1a-9279-4a2ccaa7ac3e" + originId = "/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475" + displayName = "Access Review Operator Service Role" + description = "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process." + resource = @{ + id = "c347ca9b-a9cc-4df9-bc3c-00c8e0297692" + description = "test-mgmtgroup" + displayName = "test-mgmtgroup" + resourceType = "ManagementGroup" + originId = "/providers/Microsoft.Management/managementGroups/test-mgmtgroup" + originSystem = "AzureResources" + } + originSystem = "AzureResources" + type = "eligible" + } + scope = @{ + id = "338613b3-b410-4c6d-b5e9-45590bc8a357" + displayName = "Root" + description = "Root Scope" + isRootScope = $true + originId = "/providers/Microsoft.Management/managementGroups/test-mgmtgroup" + originSystem = "AzureResources" + } +} + +New-MgEntitlementManagementAccessPackageResourceRoleScope -AccessPackageId $accessPackageId -BodyParameter $params + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerolescope-from-accesspackage-subscription-powershell-snippets.md b/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerolescope-from-accesspackage-subscription-powershell-snippets.md new file mode 100644 index 00000000000..a40da50fa1a --- /dev/null +++ b/api-reference/v1.0/includes/snippets/powershell/create-accesspackageresourcerolescope-from-accesspackage-subscription-powershell-snippets.md @@ -0,0 +1,37 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```powershell + +Import-Module Microsoft.Graph.Identity.Governance + +$params = @{ + role = @{ + originId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475" + displayName = "Access Review Operator Service Role" + description = "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process." + resource = @{ + id = "b09a0288-a83e-4ae6-8a53-bc09aeb966ea" + description = "Dev" + displayName = "Dev" + resourceType = "Subscription" + originId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978" + originSystem = "AzureResources" + } + originSystem = "AzureResources" + type = "active" + } + scope = @{ + id = "e1e0ec8c-472d-4ec5-a8f9-29e0bc275640" + description = "/resourceGroups/rg" + displayName = "/resourceGroups/rg" + isRootScope = $false + originSystem = "AzureResources" + originId = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/resourceGroups/rg" + } +} + +New-MgEntitlementManagementAccessPackageResourceRoleScope -AccessPackageId $accessPackageId -BodyParameter $params + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-python-snippets.md b/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-python-snippets.md new file mode 100644 index 00000000000..7f5504fc3b7 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerequest-from-accesspackageresourcerequests-management-group-python-snippets.md @@ -0,0 +1,33 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```python + +# Code snippets are only available for the latest version. Current version is 1.x +from msgraph import GraphServiceClient +from msgraph.generated.models.access_package_resource_request import AccessPackageResourceRequest +from msgraph.generated.models.access_package_request_type import AccessPackageRequestType +from msgraph.generated.models.access_package_resource import AccessPackageResource +from msgraph.generated.models.access_package_catalog import AccessPackageCatalog +# To initialize your graph_client, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=python +request_body = AccessPackageResourceRequest( + request_type = AccessPackageRequestType.AdminAdd, + resource = AccessPackageResource( + display_name = "test-mgmtgroup", + description = "test-mgmtgroup", + origin_id = "/providers/Microsoft.Management/managementGroups/test-mgmtgroup", + origin_system = "AzureResources", + additional_data = { + "resource_type" : "ManagementGroup", + } + ), + catalog = AccessPackageCatalog( + id = "e8368470-afaf-44da-ba86-13a7318f1995", + ), +) + +result = await graph_client.identity_governance.entitlement_management.resource_requests.post(request_body) + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-python-snippets.md b/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-python-snippets.md new file mode 100644 index 00000000000..d44a77643fc --- /dev/null +++ b/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerequest-from-accesspackageresourcerequests-subscription-resource-python-snippets.md @@ -0,0 +1,33 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```python + +# Code snippets are only available for the latest version. Current version is 1.x +from msgraph import GraphServiceClient +from msgraph.generated.models.access_package_resource_request import AccessPackageResourceRequest +from msgraph.generated.models.access_package_request_type import AccessPackageRequestType +from msgraph.generated.models.access_package_resource import AccessPackageResource +from msgraph.generated.models.access_package_catalog import AccessPackageCatalog +# To initialize your graph_client, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=python +request_body = AccessPackageResourceRequest( + request_type = AccessPackageRequestType.AdminAdd, + resource = AccessPackageResource( + display_name = "Dev", + description = "Dev", + origin_id = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978", + origin_system = "AzureResources", + additional_data = { + "resource_type" : "Subscription", + } + ), + catalog = AccessPackageCatalog( + id = "e8368470-afaf-44da-ba86-13a7318f1995", + ), +) + +result = await graph_client.identity_governance.entitlement_management.resource_requests.post(request_body) + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-python-snippets.md b/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-python-snippets.md new file mode 100644 index 00000000000..e5d9b9c2d10 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-active-python-snippets.md @@ -0,0 +1,47 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```python + +# Code snippets are only available for the latest version. Current version is 1.x +from msgraph import GraphServiceClient +from msgraph.generated.models.access_package_resource_role_scope import AccessPackageResourceRoleScope +from msgraph.generated.models.access_package_resource_role import AccessPackageResourceRole +from msgraph.generated.models.access_package_resource import AccessPackageResource +from msgraph.generated.models.access_package_resource_scope import AccessPackageResourceScope +# To initialize your graph_client, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=python +request_body = AccessPackageResourceRoleScope( + role = AccessPackageResourceRole( + origin_id = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475", + display_name = "Access Review Operator Service Role", + description = "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.", + resource = AccessPackageResource( + id = "b09a0288-a83e-4ae6-8a53-bc09aeb966ea", + description = "Dev", + display_name = "Dev", + origin_id = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978", + origin_system = "AzureResources", + additional_data = { + "resource_type" : "Subscription", + } + ), + origin_system = "AzureResources", + additional_data = { + "type" : "active", + } + ), + scope = AccessPackageResourceScope( + id = "c66c1e22-1093-46fb-a8a8-c0e334113ca4", + description = "Root", + display_name = "Root", + is_root_scope = True, + origin_system = "AzureResources", + origin_id = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978", + ), +) + +result = await graph_client.identity_governance.entitlement_management.access_packages.by_access_package_id('accessPackage-id').resource_role_scopes.post(request_body) + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-python-snippets.md b/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-python-snippets.md new file mode 100644 index 00000000000..41f066d60d5 --- /dev/null +++ b/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerolescope-from-accesspackage-subscription-management-group-python-snippets.md @@ -0,0 +1,48 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```python + +# Code snippets are only available for the latest version. Current version is 1.x +from msgraph import GraphServiceClient +from msgraph.generated.models.access_package_resource_role_scope import AccessPackageResourceRoleScope +from msgraph.generated.models.access_package_resource_role import AccessPackageResourceRole +from msgraph.generated.models.access_package_resource import AccessPackageResource +from msgraph.generated.models.access_package_resource_scope import AccessPackageResourceScope +# To initialize your graph_client, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=python +request_body = AccessPackageResourceRoleScope( + role = AccessPackageResourceRole( + id = "055c76c1-a466-4f1a-9279-4a2ccaa7ac3e", + origin_id = "/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475", + display_name = "Access Review Operator Service Role", + description = "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.", + resource = AccessPackageResource( + id = "c347ca9b-a9cc-4df9-bc3c-00c8e0297692", + description = "test-mgmtgroup", + display_name = "test-mgmtgroup", + origin_id = "/providers/Microsoft.Management/managementGroups/test-mgmtgroup", + origin_system = "AzureResources", + additional_data = { + "resource_type" : "ManagementGroup", + } + ), + origin_system = "AzureResources", + additional_data = { + "type" : "eligible", + } + ), + scope = AccessPackageResourceScope( + id = "338613b3-b410-4c6d-b5e9-45590bc8a357", + display_name = "Root", + description = "Root Scope", + is_root_scope = True, + origin_id = "/providers/Microsoft.Management/managementGroups/test-mgmtgroup", + origin_system = "AzureResources", + ), +) + +result = await graph_client.identity_governance.entitlement_management.access_packages.by_access_package_id('accessPackage-id').resource_role_scopes.post(request_body) + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerolescope-from-accesspackage-subscription-python-snippets.md b/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerolescope-from-accesspackage-subscription-python-snippets.md new file mode 100644 index 00000000000..4cdd3dc77cc --- /dev/null +++ b/api-reference/v1.0/includes/snippets/python/create-accesspackageresourcerolescope-from-accesspackage-subscription-python-snippets.md @@ -0,0 +1,47 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +--- + +```python + +# Code snippets are only available for the latest version. Current version is 1.x +from msgraph import GraphServiceClient +from msgraph.generated.models.access_package_resource_role_scope import AccessPackageResourceRoleScope +from msgraph.generated.models.access_package_resource_role import AccessPackageResourceRole +from msgraph.generated.models.access_package_resource import AccessPackageResource +from msgraph.generated.models.access_package_resource_scope import AccessPackageResourceScope +# To initialize your graph_client, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=python +request_body = AccessPackageResourceRoleScope( + role = AccessPackageResourceRole( + origin_id = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/providers/Microsoft.Authorization/roleDefinitions/76cc9ee4-d5d3-4a45-a930-26add3d73475", + display_name = "Access Review Operator Service Role", + description = "Lets you grant Access Review System app permissions to discover and revoke access as needed by the access review process.", + resource = AccessPackageResource( + id = "b09a0288-a83e-4ae6-8a53-bc09aeb966ea", + description = "Dev", + display_name = "Dev", + origin_id = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978", + origin_system = "AzureResources", + additional_data = { + "resource_type" : "Subscription", + } + ), + origin_system = "AzureResources", + additional_data = { + "type" : "active", + } + ), + scope = AccessPackageResourceScope( + id = "e1e0ec8c-472d-4ec5-a8f9-29e0bc275640", + description = "/resourceGroups/rg", + display_name = "/resourceGroups/rg", + is_root_scope = False, + origin_system = "AzureResources", + origin_id = "/subscriptions/828b526f-c769-4b19-9797-734b4843b978/resourceGroups/rg", + ), +) + +result = await graph_client.identity_governance.entitlement_management.access_packages.by_access_package_id('accessPackage-id').resource_role_scopes.post(request_body) + + +``` \ No newline at end of file diff --git a/api-reference/v1.0/resources/accesspackagesubject.md b/api-reference/v1.0/resources/accesspackagesubject.md index 15b285026cb..2b7cfbf7e8d 100644 --- a/api-reference/v1.0/resources/accesspackagesubject.md +++ b/api-reference/v1.0/resources/accesspackagesubject.md @@ -17,15 +17,11 @@ In [Microsoft Entra entitlement management](entitlementmanagement-overview.md), ## Methods - +| [Get](../api/accesspackagesubject-get.md)|[accessPackageSubject](../resources/accesspackagesubject.md) | Get the properties of an **accessPackageSubject** object. | +| [Update](../api/accesspackagesubject-update.md)|None | Update the properties of an **accessPackageSubject** object. | ## Properties |Property|Type|Description| diff --git a/api-reference/v1.0/resources/enums-security.md b/api-reference/v1.0/resources/enums-security.md index 8e4d8ab8c99..bbd050b16d9 100644 --- a/api-reference/v1.0/resources/enums-security.md +++ b/api-reference/v1.0/resources/enums-security.md @@ -828,6 +828,114 @@ Namespace: microsoft.graph.security |unknown| |unknownFutureValue| + +### antispamDirectionality values + +|Member| +|:---| +|unknown| +|inbound| +|outbound| +|intraOrg| +|unknownFutureValue| + +### deliveryAction values + +|Member| +|:---| +|unknown| +|deliveredToJunk| +|delivered| +|blocked| +|replaced| +|unknownFutureValue| + +### deliveryLocation values + +|Member| +|:---| +|unknown| +|inbox_folder| +|junkFolder| +|deletedFolder| +|quarantine| +|onprem_external| +|failed| +|dropped| +|others| +|unknownFutureValue| + +### eventSource values + +|Member| +|:---| +|system| +|admin| +|user| +|unknownFutureValue| + +### remediationAction values + +|Member| +|:---| +|moveToJunk| +|moveToInbox| +|hardDelete| +|softDelete| +|moveToDeletedItems| +|unknownFutureValue| +|moveToQuarantine| + +### remediationSeverity values + +|Member| +|:---| +|low| +|medium| +|high| +|unknownFutureValue| + +### threatType values + +|Member| +|:---| +|unknown| +|spam| +|malware| +|phish| +|none| +|unknownFutureValue| + +### timelineEventType values + +|Member| +|:---| +|originalDelivery| +|systemTimeTravel| +|dynamicDelivery| +|userUrlClick| +|reprocessed| +|zap| +|quarantineRelease| +|air| +|unknown| +|unknownFutureValue| + +### verdictCategory values + +|Member| +|:---| +|none| +|malware| +|phish| +|siteUnavailable| +|spam| +|decryptionFailed| +|unsupportedUriScheme| +|unsupportedFileType| +|undefined| +|unknownFutureValue| + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmail", + "id": "String (identifier)", + "loggedDateTime": "String (timestamp)", + "networkMessageId": "String", + "internetMessageId": "String", + "senderDetail": { + "@odata.type": "microsoft.graph.security.analyzedEmailSenderDetail" + }, + "recipientEmailAddress": "String", + "distributionList": "String", + "subject": "String", + "returnPath": "String", + "directionality": "microsoft.graph.security.antispamDirectionality", + "originalDelivery": { + "@odata.type": "microsoft.graph.security.analyzedEmailDeliveryDetail" + }, + "latestDelivery": { + "@odata.type": "microsoft.graph.security.analyzedEmailDeliveryDetail" + }, + "attachments": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailAttachment" + } + ], + "urls": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailUrl" + } + ], + "language": "String", + "sizeInBytes": "Integer", + "alertIds": [ + "String" + ], + "exchangeTransportRules": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailExchangeTransportRuleInfo" + } + ], + "overrideSources": [ + "String" + ], + "threatTypes": [ + "microsoft.graph.security.threatType" + ], + "detectionMethods": [ + "String" + ], + "contexts": [ + "String" + ], + "authenticationDetails": { + "@odata.type": "microsoft.graph.security.analyzedEmailAuthenticationDetail" + }, + "phishConfidenceLevel": "String", + "spamConfidenceLevel": "String", + "bulkComplaintLevel": "String", + "emailClusterId": "String", + "policyAction": "String", + "policy": "String", + "timelineEvents": [ + { + "@odata.type": "microsoft.graph.security.timelineEvent" + } + ], + "threatDetectionDetails": [ + { + "@odata.type": "microsoft.graph.security.threatDetectionDetail" + } + ], + "primaryOverrideSource": "String", + "inboundConnectorFormattedName": "String", + "policyType": "String", + "clientType": "String", + "dlpRules": [ + { + "@odata.type": "microsoft.graph.security.analyzedEmailDlpRuleInfo" + } + ], + "forwardingDetail": "String", + "recipientDetail": { + "@odata.type": "microsoft.graph.security.analyzedEmailRecipientDetail" + } +} +``` diff --git a/api-reference/v1.0/resources/security-analyzedemailattachment.md b/api-reference/v1.0/resources/security-analyzedemailattachment.md new file mode 100644 index 00000000000..eb41df87130 --- /dev/null +++ b/api-reference/v1.0/resources/security-analyzedemailattachment.md @@ -0,0 +1,57 @@ +--- +title: "analyzedEmailAttachment resource type" +description: Represents an attachment to an analyzed email. +author: MishraSoumyaMS +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# analyzedEmailAttachment resource type + +Namespace: microsoft.graph.security + + +Represents an **attachment** to an [analyzed email](../resources/security-analyzedemail.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|detonationDetails|[microsoft.graph.security.detonationDetails](../resources/security-detonationdetails.md)|The detonation details of the attachment.| +|fileName|String|The name of the attachment in the email.| +|fileType|String|The type of the attachment in the email.| +|fileSize|Int32|Size of the file.| +|fileExtension|String|Extension of the file.| +|malwareFamily|String|The threat name associated with the threat type.| +|sha256|String|The SHA256 file hash of the attachment.| +|threatType|microsoft.graph.security.threatType|The threat type associated with the attachment. The possible values are: `unknown`, `spam`, `malware`, `phishing`, `none`, `unknownFutureValue`.| +|tenantAllowBlockListDetailInfo|String|Details of entries in tenant allow/block list configured by tenant.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmailAttachment", + "fileName": "String", + "fileType": "String", + "fileSize": "Integer", + "fileExtension": "String", + "threatType": "String", + "malwareFamily": "String", + "tenantAllowBlockListDetailInfo": "String", + "sha256": "String", + "detonationDetails": { + "@odata.type": "microsoft.graph.security.detonationDetails" + } +} +``` + diff --git a/api-reference/v1.0/resources/security-analyzedemailauthenticationdetail.md b/api-reference/v1.0/resources/security-analyzedemailauthenticationdetail.md new file mode 100644 index 00000000000..811d0887f58 --- /dev/null +++ b/api-reference/v1.0/resources/security-analyzedemailauthenticationdetail.md @@ -0,0 +1,46 @@ +--- +title: "analyzedEmailAuthenticationDetail resource type" +description: Represents a list of pass or fail verdicts by email authentication protocols. +author: MishraSoumyaMS +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# analyzedEmailAuthenticationDetail resource type + +Namespace: microsoft.graph.security + + +Represents a list of pass or fail verdicts by email authentication protocols such as DMARC, DKIM, SPF, or a combination of multiple authentication types (CompAuth). It's returned in the **authenticationDetails** property of [analyzedEmail](../resources/security-analyzedemail.md). + + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|compositeAuthentication|String|A value used by Microsoft 365 to combine email authentication such as SPF, DKIM, and DMARC, to determine whether the message is authentic.| +|dkim|String|DomainKeys identified mail (DKIM). Indicates whether it was pass/fail/soft fail.| +|dmarc|String|Domain-based Message Authentication. Indicates whether it was pass/fail/soft fail.| +|senderPolicyFramework|String|Sender Policy Framework (SPF). Indicates whether it was pass/fail/soft fail.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmailAuthenticationDetail", + "dmarc": "String", + "dkim": "String", + "senderPolicyFramework": "String", + "compositeAuthentication": "String" +} +``` + diff --git a/api-reference/v1.0/resources/security-analyzedemaildeliverydetail.md b/api-reference/v1.0/resources/security-analyzedemaildeliverydetail.md new file mode 100644 index 00000000000..f2833d9ab77 --- /dev/null +++ b/api-reference/v1.0/resources/security-analyzedemaildeliverydetail.md @@ -0,0 +1,71 @@ +--- +title: "analyzedEmailDeliveryDetail resource type" +description: Represents the delivery action and location of an analyzed email. +author: MishraSoumyaMS +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# analyzedEmailDeliveryDetail resource type + +Namespace: microsoft.graph.security + + +Represents the delivery action and location of an [analyzed email](../resources/security-analyzedemail.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|action|[microsoft.graph.security.deliveryAction](#deliveryaction-values)|The delivery action of the email. The possible values are: `unknown`, `deliveredToJunk`, `delivered`, `blocked`, `replaced`, `unknownFutureValue`.| +|location|[microsoft.graph.security.deliveryLocation](#deliverylocation-values)|The delivery location of the email. The possible values are: `unknown`, `inbox_folder`, `junkFolder`, `deletedFolder`, `quarantine`, `onprem_external`, `failed`, `dropped`, `others`, `unknownFutureValue`.| +|latestThreats|String|Latest known threat on the email.| +|originalThreats|String|Threats identified at the time of delivery.| + +### deliveryAction values + +|Member| +|:---| +|unknown| +|deliveredToJunk| +|delivered| +|blocked| +|replaced| +|unknownFutureValue| + +### deliveryLocation values + +|Member| +|:---| +|unknown| +|inbox_folder| +|junkFolder| +|deletedFolder| +|quarantine| +|onprem_external| +|failed| +|dropped| +|others| +|unknownFutureValue| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmailDeliveryDetail", + "action": "String", + "location": "String", + "originalThreats": "String", + "latestThreats": "String" +} +``` + diff --git a/api-reference/v1.0/resources/security-analyzedemaildlpruleinfo.md b/api-reference/v1.0/resources/security-analyzedemaildlpruleinfo.md new file mode 100644 index 00000000000..b8943c1501c --- /dev/null +++ b/api-reference/v1.0/resources/security-analyzedemaildlpruleinfo.md @@ -0,0 +1,42 @@ +--- +title: "analyzedEmailDlpRuleInfo resource type" +description: "Represents data loss prevention rules applied to the email." +author: akgraph +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# analyzedEmailDlpRuleInfo resource type + +Namespace: microsoft.graph.security + + +Represents data loss prevention rules applied to the email. It's returned in the **dlpRules** property of [analyzedEmail](../resources/security-analyzedemail.md). + + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|name|String|Name of the the data loss prevention rule.| +|ruleId|String|Unique identifier of the data loss prevention rule.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmailDlpRuleInfo", + "ruleId": "String", + "name": "String" +} +``` + diff --git a/api-reference/v1.0/resources/security-analyzedemailexchangetransportruleinfo.md b/api-reference/v1.0/resources/security-analyzedemailexchangetransportruleinfo.md new file mode 100644 index 00000000000..aec54bbe848 --- /dev/null +++ b/api-reference/v1.0/resources/security-analyzedemailexchangetransportruleinfo.md @@ -0,0 +1,41 @@ +--- +title: "analyzedEmailExchangeTransportRuleInfo resource type" +description: Represents mail flow rules in Exchange Online. +author: MishraSoumyaMS +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# analyzedEmailExchangeTransportRuleInfo resource type + +Namespace: microsoft.graph.security + + +Represents mail flow rules in Exchange Online. It's returned in the **exchangeTransportRules** property of [analyzedEmail](../resources/security-analyzedemail.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|name|String|Name of the Exchange transport rules (ETRs) that are part of the email.| +|ruleId|String|The ETR rule ID.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmailExchangeTransportRuleInfo", + "ruleId": "String", + "name": "String" +} +``` + diff --git a/api-reference/v1.0/resources/security-analyzedemailrecipientdetail.md b/api-reference/v1.0/resources/security-analyzedemailrecipientdetail.md new file mode 100644 index 00000000000..0fa1aa6a46c --- /dev/null +++ b/api-reference/v1.0/resources/security-analyzedemailrecipientdetail.md @@ -0,0 +1,43 @@ +--- +title: "analyzedEmailRecipientDetail resource type" +description: "Details about the recipient or recipients as mentioned in the email." +author: akgraph +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# analyzedEmailRecipientDetail resource type + +Namespace: microsoft.graph.security + + +Details about the recipient or recipients as mentioned in the email. It's returned in the **recipientDetail** property of [analyzedEmail](../resources/security-analyzedemail.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|ccRecipients|String collection|Recipient address in the cc field.| +|domainName|String|Domain name of the recipient.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmailRecipientDetail", + "domainName": "String", + "ccRecipients": [ + "String" + ] +} +``` + diff --git a/api-reference/v1.0/resources/security-analyzedemailsenderdetail.md b/api-reference/v1.0/resources/security-analyzedemailsenderdetail.md new file mode 100644 index 00000000000..ca3284eb212 --- /dev/null +++ b/api-reference/v1.0/resources/security-analyzedemailsenderdetail.md @@ -0,0 +1,55 @@ +--- +title: "analyzedEmailSenderDetail resource type" +description: Represents the sender details of an email. +author: MishraSoumyaMS +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# analyzedEmailSenderDetail resource type + +Namespace: microsoft.graph.security + + +Represents the sender details of an [analyzedEmail](../resources/security-analyzedemail.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|displayName|String|Display name of sender from address.| +|domainCreationDateTime|DateTimeOffset|Date and time of creation of the sender domain.| +|domainName|String|Registered name of the domain.| +|domainOwner|String|Owner of the domain.| +|fromAddress|String|The sender email address in the mail From header, also known as the envelope sender or the P1 sender.| +|ipv4|String|The IPv4 address of the last detected mail server that relayed the message.| +|location|String|Location of the domain.| +|mailFromAddress|String|The sender email address in the From header, which is visible to email recipients on their email clients. Also known as P2 sender.| +|mailFromDomainName|String|Domain name of sender mail from address.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmailSenderDetail", + "mailFromAddress": "String", + "fromAddress": "String", + "ipv4": "String", + "displayName": "String", + "domainName": "String", + "domainCreationDateTime": "String (timestamp)", + "domainOwner": "String", + "mailFromDomainName": "String", + "location": "String" +} +``` + diff --git a/api-reference/v1.0/resources/security-analyzedemailurl.md b/api-reference/v1.0/resources/security-analyzedemailurl.md new file mode 100644 index 00000000000..7dd08d2337f --- /dev/null +++ b/api-reference/v1.0/resources/security-analyzedemailurl.md @@ -0,0 +1,49 @@ +--- +title: "analyzedEmailUrl resource type" +description: "Represents information about URLs found in an analyzed email." +author: "MishraSoumyaMS" +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# analyzedEmailUrl resource type + +Namespace: microsoft.graph.security + + +Represents information about URLs found in an [analyzed email](../resources/security-analyzedemail.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|detectionMethod|String|The method used to detect threats in the URL.| +|detonationDetails|[microsoft.graph.security.detonationDetails](../resources/security-detonationdetails.md)|Detonation data associated with the URL.| +|tenantAllowBlockListDetailInfo|String|Details of entries in tenant allow/block list configured by tenant.| +|threatType|microsoft.graph.security.threatType|The type of threat associated with the URL. The possible values are: `unknown`, `spam`, `malware`, `phishing`, `none`, `unknownFutureValue`.| +|url|String|The URL that is found in the email. This is full URL string, including query parameters.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.analyzedEmailUrl", + "url": "String", + "threatType": "String", + "detectionMethod": "String", + "tenantAllowBlockListDetailInfo": "String", + "detonationDetails": { + "@odata.type": "microsoft.graph.security.detonationDetails" + } +} +``` + diff --git a/api-reference/v1.0/resources/security-collaborationroot.md b/api-reference/v1.0/resources/security-collaborationroot.md new file mode 100644 index 00000000000..8990536f8a9 --- /dev/null +++ b/api-reference/v1.0/resources/security-collaborationroot.md @@ -0,0 +1,43 @@ +--- +title: "collaborationRoot resource type" +description: "An abstract type that enables read and other actions on collaborative entities in Microsoft Defender." +author: "MishraSoumyaMS" +ms.localizationpriority: medium +ms.subservice: "security" +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# collaborationRoot resource type + +Namespace: microsoft.graph.security + + +An abstract type that enables read and other actions on collaborative entities in Microsoft Defender. + +## Methods + +None. + +## Properties +None. +## Relationships +|Relationship|Type|Description| +|:---|:---|:---| +|analyzedEmails|[microsoft.graph.security.analyzedEmail](../resources/security-analyzedemail.md) collection|Contains metadata for analyzed emails.| + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.collaborationRoot" +} +``` + diff --git a/api-reference/v1.0/resources/security-compromiseindicator.md b/api-reference/v1.0/resources/security-compromiseindicator.md new file mode 100644 index 00000000000..41532e09609 --- /dev/null +++ b/api-reference/v1.0/resources/security-compromiseindicator.md @@ -0,0 +1,56 @@ +--- +title: "compromiseIndicator resource type" +description: Represents the indicators that caused the email to be marked as compromised. +author: akgraph +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# compromiseIndicator resource type + +Namespace: microsoft.graph.security + + +Represents an indicator and its associated verdict that suggests whether an email is compromised. The resource combines specific indicators found in the email with categorized verdicts to help identify potential security threats like malware, phishing attempts, or spam. It is returned in the **compromiseIndicators** property of [detonationDetails](../resources/security-detonationdetails.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|value|String|Indicator.| +|verdict|[microsoft.graph.security.verdictCategory](#verdictcategory-values)|The possible values are: `none`, `malware`, `phish`, `siteUnavailable`, `spam`, `decryptionFailed`, `unsupportedUriScheme`, `unsupportedFileType`, `undefined`, `unknownFutureValue`.| + +### verdictCategory values + +|Member| +|:---| +|none| +|malware| +|phish| +|siteUnavailable| +|spam| +|decryptionFailed| +|unsupportedUriScheme| +|unsupportedFileType| +|undefined| +|unknownFutureValue| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.compromiseIndicator", + "verdict": "String", + "value": "String" +} +``` + diff --git a/api-reference/v1.0/resources/security-detonationbehaviourdetails.md b/api-reference/v1.0/resources/security-detonationbehaviourdetails.md new file mode 100644 index 00000000000..5aa0a97d43a --- /dev/null +++ b/api-reference/v1.0/resources/security-detonationbehaviourdetails.md @@ -0,0 +1,57 @@ +--- +title: "detonationBehaviourDetails resource type (deprecated)" +description: "Shows the exact events that took place during detonation." +author: akgraph +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +ROBOTS: NOINDEX +--- + +# detonationBehaviourDetails resource type (deprecated) + +Namespace: microsoft.graph.security + + +Shows the exact events that took place during detonation. It's returned in the **detonationBehaviourDetails** property of [detonationDetails](../resources/security-detonationdetails.md). + + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|actionStatus|String|The status of the action performed during detonation (e.g., "Successful", "Failed", "Blocked").| +|behaviourCapability|String|Categorizes the capability or type of behavior observed.| +|behaviourGroup|String|Groups related behaviors together for classification purposes.| +|details|String|More contextual information about the observed behavior or action.| +|eventDateTime|DateTimeOffset|The date and time when the behavior or action was observed during detonation.| +|operation|String|The specific operation or action that was performed.| +|processId|String|The unique identifier of the process involved in the behavior.| +|processName|String|The name of the process that performed or was involved in the behavior.| +|target|String|The target of the operation.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.detonationBehaviourDetails", + "behaviourCapability": "String", + "behaviourGroup": "String", + "eventDateTime": "String (timestamp)", + "processName": "String", + "processId": "String", + "operation": "String", + "target": "String", + "details": "String", + "actionStatus": "String" +} +``` + diff --git a/api-reference/v1.0/resources/security-detonationchain.md b/api-reference/v1.0/resources/security-detonationchain.md new file mode 100644 index 00000000000..6a1d9f6dc94 --- /dev/null +++ b/api-reference/v1.0/resources/security-detonationchain.md @@ -0,0 +1,45 @@ +--- +title: "detonationChain resource type" +description: Represents a detonation chain in Microsoft Defender for Office 365. +author: MishraSoumyaMS +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# detonationChain resource type + +Namespace: microsoft.graph.security + + +Represents a detonation chain in Microsoft Defender for Office 365. A single file or URL detonation can trigger multiple detonations. The detonation chain tracks the path of detonations, including the original malicious file or URL that caused the verdict, and all other files or URLs that are affected by the detonation. These URLs or attached files might not be directly present in the email, but including that analysis is important in order to determine why the file or URL was found to be malicious. It's returned in the **detonationChain** property of [detonationDetails](../resources/security-detonationdetails.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|childNodes|[microsoft.graph.security.detonationChain](../resources/security-detonationchain.md) collection|A list of all child nodes in the chain.| +|value|String|The value of the chain.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.detonationChain", + "value": "String", + "childNodes": [ + { + "@odata.type": "microsoft.graph.security.detonationChain" + } + ] +} +``` + diff --git a/api-reference/v1.0/resources/security-detonationdetails.md b/api-reference/v1.0/resources/security-detonationdetails.md new file mode 100644 index 00000000000..380cea9bbe0 --- /dev/null +++ b/api-reference/v1.0/resources/security-detonationdetails.md @@ -0,0 +1,73 @@ +--- +title: "detonationDetails resource type" +description: Represents detonation details specific to email attachments and URLs. +author: MishraSoumyaMS +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# detonationDetails resource type + +Namespace: microsoft.graph.security + + +Represents detonation details specific to email attachments and URLs. These details include the detonation chain, detonation summary, and observed behavior details to help customers understand the reason the attachment or URL is deemed malicious and detonated. It's returned in the **detonationDetails** property of [analyzedEmailAttachment](../resources/security-analyzedemailattachment.md) and [analyzedEmailUrl](../resources/security-analyzedemailurl.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|analysisDateTime|DateTimeOffset|The time of detonation.| +|compromiseIndicators|[microsoft.graph.security.compromiseIndicator](../resources/security-compromiseindicator.md) collection|Represents indicators and its associated verdict that suggests whether an email is compromised.| +|detonationChain|[microsoft.graph.security.detonationChain](../resources/security-detonationchain.md)|The chain of detonation.| +|detonationObservables|[microsoft.graph.security.detonationObservables](../resources/security-detonationobservables.md)|All observables in the detonation tree.| +|detonationVerdict|String|The verdict of the detonation.| +|detonationVerdictReason|String|The reason for the verdict of the detonation.| +|detonationBehaviourDetailsV2|String|Shows the exact events that took place during detonation, and problematic or benign observations that contain URLs, IPs, domains, and files that were found during detonation in a JSON format.| +|detonationScreenshotUri|String|Show any screenshots that were captured during detonation. No screenshots are captured if the URL opens into a link that directly downloads a file. However, you see the downloaded file in the detonation chain.| +|entityMetadata|String|Additional metadata about the entity in JSON format.| +|mitreTechniques|String|The attack techniques, as aligned with the MITRE ATT&CK framework.| +|staticAnalysis|String|The results of static analysis performed on the file or URL.| +|submissionSource|String|The source of the submission.| +|detonationBehaviourDetails (deprecated)|[microsoft.graph.security.detonationBehaviourDetails](../resources/security-detonationbehaviourdetails.md)| Shows the exact events that took place during detonation, and problematic or benign observations that contain URLs, IPs, domains, and files that were found during detonation. This property is deprecated and still stop returning data in March 2026. Use the **detonationBehaviourDetailsV2** property instead.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.detonationDetails", + "analysisDateTime": "String (timestamp)", + "detonationVerdict": "String", + "detonationVerdictReason": "String", + "detonationChain": { + "@odata.type": "microsoft.graph.security.detonationChain" + }, + "detonationObservables": { + "@odata.type": "microsoft.graph.security.detonationObservables" + }, + "detonationBehaviourDetailsV2": "String", + "detonationScreenshotUri": "String", + "compromiseIndicators": [ + { + "@odata.type": "microsoft.graph.security.compromiseIndicator" + } + ], + "submissionSource": "String", + "entityMetadata": "String", + "staticAnalysis": "String", + "mitreTechniques": "String", + "detonationBehaviourDetails": { + "@odata.type": "microsoft.graph.security.detonationBehaviourDetails" + } +} +``` + diff --git a/api-reference/v1.0/resources/security-detonationobservables.md b/api-reference/v1.0/resources/security-detonationobservables.md new file mode 100644 index 00000000000..0b075c50342 --- /dev/null +++ b/api-reference/v1.0/resources/security-detonationobservables.md @@ -0,0 +1,49 @@ +--- +title: "detonationObservables resource type" +description: Represents detonation details. +author: malvika-balaraj +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# detonationObservables resource type + +Namespace: microsoft.graph.security + + +Represents the resources that a detonation includes, such as URLs, IPs, domains, and files. These resources can be either problematic or benign. It is returned in the **detonationObservables** property of [detonationDetails](../resources/security-detonationdetails.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|contactedIps|String collection|The list of all contacted IPs in the detonation.| +|contactedUrls|String collection|The list of all URLs found in the detonation.| +|droppedfiles|String collection|The list of all dropped files in the detonation.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.detonationObservables", + "droppedfiles": [ + "String" + ], + "contactedIps": [ + "String" + ], + "contactedUrls": [ + "String" + ] +} +``` + diff --git a/api-reference/v1.0/resources/security-threatdetectiondetail.md b/api-reference/v1.0/resources/security-threatdetectiondetail.md new file mode 100644 index 00000000000..0285be14cf8 --- /dev/null +++ b/api-reference/v1.0/resources/security-threatdetectiondetail.md @@ -0,0 +1,44 @@ +--- +title: "threatDetectionDetail resource type" +description: "Represents threat analysis information from Microsoft Defender for Office 365, including threat classification, confidence levels, and priority account protection status." +author: akgraph +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# threatDetectionDetail resource type + +Namespace: microsoft.graph.security + + +Represents threat analysis information from Microsoft Defender for Office 365, including threat classification, confidence levels, and priority account protection status. It's returned in the **threatDetectionDetails** property of [analyzedEmail](../resources/security-analyzedemail.md). + + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|confidenceLevel|String|Indicates the confidence level in the threat detection.| +|priorityAccountProtection|String|Indicates if the account has priority protection enabled.| +|threats|String|Lists the detected threats.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.threatDetectionDetail", + "threats": "String", + "confidenceLevel": "String", + "priorityAccountProtection": "String" +} +``` + diff --git a/api-reference/v1.0/resources/security-timelineevent.md b/api-reference/v1.0/resources/security-timelineevent.md new file mode 100644 index 00000000000..5bb180bd601 --- /dev/null +++ b/api-reference/v1.0/resources/security-timelineevent.md @@ -0,0 +1,76 @@ +--- +title: "timelineEvent resource type" +description: "The timeline of an analyzedEmail entity." +author: akgraph +ms.localizationpriority: medium +ms.subservice: security +doc_type: resourcePageType +ms.date: 05/27/2026 +--- + +# timelineEvent resource type + +Namespace: microsoft.graph.security + + +The timeline of an [analyzedEmail](../resources/security-analyzedemail.md). + + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|eventDateTime|DateTimeOffset|The date and time when the event occurred.| +|eventDetails|String|Additional details or context about the event.| +|eventResult|String|The outcome or result of the event, such as delivery location or action taken.| +|eventSource|[microsoft.graph.security.eventSource](#eventsource-values)|The origin or actor that triggered the event. The possible values are: `system`, `admin`, `user`, `unknownFutureValue`.| +|eventThreats|String collection|Collection of threats identified or associated with this event.| +|eventType|[microsoft.graph.security.timelineEventType](#timelineeventtype-values)|The type of event that occurred. The possible values are: `originalDelivery`, `systemTimeTravel`, `dynamicDelivery`, `userUrlClick`, `reprocessed`, `zap`, `quarantineRelease`, `air`, `unknown`, `unknownFutureValue`.| + +### eventSource values + +|Member| +|:---| +|system| +|admin| +|user| +|unknownFutureValue| + +### timelineEventType values + +|Member| +|:---| +|originalDelivery| +|systemTimeTravel| +|dynamicDelivery| +|userUrlClick| +|reprocessed| +|zap| +|quarantineRelease| +|air| +|unknown| +|unknownFutureValue| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.security.timelineEvent", + "eventDateTime": "String (timestamp)", + "eventSource": "String", + "eventType": "String", + "eventResult": "String", + "eventThreats": [ + "String" + ], + "eventDetails": "String" +} +``` + diff --git a/api-reference/v1.0/toc/toc.mapping.json b/api-reference/v1.0/toc/toc.mapping.json index 95fcebd97de..d635def489f 100644 --- a/api-reference/v1.0/toc/toc.mapping.json +++ b/api-reference/v1.0/toc/toc.mapping.json @@ -1821,6 +1821,12 @@ } ] }, + { + "name": "Email and collaboration protection", + "resources": [ + "microsoft.graph.security.analyzedEmail" + ] + }, { "name": "Identities", "resources": [ diff --git a/changelog/Microsoft.AAD.Reporting.json b/changelog/Microsoft.AAD.Reporting.json index 2840c3d6c4d..6185125d5b8 100644 --- a/changelog/Microsoft.AAD.Reporting.json +++ b/changelog/Microsoft.AAD.Reporting.json @@ -1,5 +1,71 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "1fa63eb3-bbbb-4cb6-bb79-69f28c34c4ce", + "ApiChange": "Resource", + "ChangedApiName": "identityAnalyticsRoot", + "ChangeType": "Addition", + "Description": "Added the [identityAnalyticsRoot](https://learn.microsoft.com/en-us/graph/api/resources/identityanalyticsroot?view=graph-rest-beta) resource.", + "Target": "identityAnalyticsRoot" + }, + { + "Id": "1fa63eb3-bbbb-4cb6-bb79-69f28c34c4ce", + "ApiChange": "Resource", + "ChangedApiName": "groupAnalytics", + "ChangeType": "Addition", + "Description": "Added the [groupAnalytics](https://learn.microsoft.com/en-us/graph/api/resources/groupanalytics?view=graph-rest-beta) resource.", + "Target": "groupAnalytics" + }, + { + "Id": "1fa63eb3-bbbb-4cb6-bb79-69f28c34c4ce", + "ApiChange": "Enum type", + "ChangedApiName": "groupTypeEnum", + "ChangeType": "Addition", + "Description": "Added the **groupTypeEnum** enumeration type.", + "Target": "groupTypeEnum" + }, + { + "Id": "1fa63eb3-bbbb-4cb6-bb79-69f28c34c4ce", + "ApiChange": "Relationship", + "ChangedApiName": "identityAnalytics", + "ChangeType": "Addition", + "Description": "Added the **identityAnalytics** relationship to the [reportRoot](https://learn.microsoft.com/en-us/graph/api/resources/reportroot?view=graph-rest-beta) resource.", + "Target": "reportRoot" + }, + { + "Id": "1fa63eb3-bbbb-4cb6-bb79-69f28c34c4ce", + "ApiChange": "Relationship", + "ChangedApiName": "groups", + "ChangeType": "Addition", + "Description": "Added the **groups** relationship to the [identityAnalyticsRoot](https://learn.microsoft.com/en-us/graph/api/resources/identityanalyticsroot?view=graph-rest-beta) resource.", + "Target": "identityAnalyticsRoot" + }, + { + "Id": "1fa63eb3-bbbb-4cb6-bb79-69f28c34c4ce", + "ApiChange": "Method", + "ChangedApiName": "List groupAnalytics", + "ChangeType": "Addition", + "Description": "Added the [List groupAnalytics](https://learn.microsoft.com/en-us/graph/api/identityanalyticsroot-list-groups?view=graph-rest-beta) method to the [groupAnalytics](https://learn.microsoft.com/en-us/graph/api/resources/groupanalytics?view=graph-rest-beta) resource.", + "Target": "groupAnalytics" + }, + { + "Id": "1fa63eb3-bbbb-4cb6-bb79-69f28c34c4ce", + "ApiChange": "Method", + "ChangedApiName": "Get groupAnalytics", + "ChangeType": "Addition", + "Description": "Added the [Get groupAnalytics](https://learn.microsoft.com/en-us/graph/api/groupanalytics-get?view=graph-rest-beta) method to the [groupAnalytics](https://learn.microsoft.com/en-us/graph/api/resources/groupanalytics?view=graph-rest-beta) resource.", + "Target": "groupAnalytics" + } + ], + "Id": "1fa63eb3-bbbb-4cb6-bb79-69f28c34c4ce", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-25T22:00:52.5681182Z", + "WorkloadArea": "Reports", + "SubArea": "Identity and access reports" + }, { "ChangeList": [ { @@ -260,7 +326,7 @@ "WorkloadArea": "Reports", "SubArea": "Identity and access reports" }, - { + { "ChangeList": [ { "Id": "e47691c4-0416-4bcd-be07-f706d5d5350d", diff --git a/changelog/Microsoft.DirectoryServices.json b/changelog/Microsoft.DirectoryServices.json index 0581e8855af..24d87245d6e 100644 --- a/changelog/Microsoft.DirectoryServices.json +++ b/changelog/Microsoft.DirectoryServices.json @@ -15891,6 +15891,24 @@ "CreatedDateTime": "2026-03-31T15:28:36.2770719Z", "WorkloadArea": "Identity and access", "SubArea": "Directory management" + }, + { + "ChangeList": [ + { + "Id": "c327d619-2141-4517-b546-a89ffaf3929e", + "ApiChange": "Property", + "ChangedApiName": "appRoleAssignmentRequired", + "ChangeType": "Addition", + "Description": "Added the **appRoleAssignmentRequired** property to the [agentIdentity](https://learn.microsoft.com/en-us/graph/api/resources/agentidentity?view=graph-rest-beta) resource.", + "Target": "agentIdentity" + } + ], + "Id": "c327d619-2141-4517-b546-a89ffaf3929e", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-23T07:49:43.0000000Z", + "WorkloadArea": "Agents", + "SubArea": "Agent identities" } ] } \ No newline at end of file diff --git a/changelog/Microsoft.EnhancedRestore.json b/changelog/Microsoft.EnhancedRestore.json index a9aecf4095a..64c60090c2f 100644 --- a/changelog/Microsoft.EnhancedRestore.json +++ b/changelog/Microsoft.EnhancedRestore.json @@ -1,6 +1,48 @@ { "changelog": [ { + "ChangeList": [ + { + "Id": "42f3dd5e-5a3f-4a28-8b51-f8f49e9018d6", + "ApiChange": "Enumeration", + "ChangedApiName": "granularRestoreItems", + "ChangeType": "Addition", + "Description": "Added the **granularRestoreItems** enumeration type.", + "Target": "granularRestoreItems" + }, + { + "Id": "42f3dd5e-5a3f-4a28-8b51-f8f49e9018d6", + "ApiChange": "Property", + "ChangedApiName": "queryExpression", + "ChangeType": "Deprecation", + "Description": "Deprecated the **queryExpression** property of the [artifactQuery](https://learn.microsoft.com/en-us/graph/api/resources/artifactquery?view=graph-rest-beta) resource. Use the **structuredQueryExpression** property instead.", + "Target": "artifactQuery" + }, + { + "Id": "42f3dd5e-5a3f-4a28-8b51-f8f49e9018d6", + "ApiChange": "Property", + "ChangedApiName": "structuredQueryExpression", + "ChangeType": "Addition", + "Description": "Added the **structuredQueryExpression** property to the [artifactQuery](https://learn.microsoft.com/en-us/graph/api/resources/artifactquery?view=graph-rest-beta) resource.", + "Target": "artifactQuery" + }, + { + "Id": "42f3dd5e-5a3f-4a28-8b51-f8f49e9018d6", + "ApiChange": "Resource", + "ChangedApiName": "restoreSearchArtifactQueryExpression", + "ChangeType": "Addition", + "Description": "Added the [restoreSearchArtifactQueryExpression](https://learn.microsoft.com/en-us/graph/api/resources/restoresearchartifactqueryexpression?view=graph-rest-beta) resource.", + "Target": "restoreSearchArtifactQueryExpression" + } + ], + "Id": "42f3dd5e-5a3f-4a28-8b51-f8f49e9018d6", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-23T09:52:03.5646538Z", + "WorkloadArea": "Backup and recovery", + "SubArea": "Microsoft 365 backup and storage" + }, + { "ChangeList": [ { "Id": "d3dee94f-3c8b-475f-9aaf-b1a94b873b46", diff --git a/changelog/Microsoft.FileServices.json b/changelog/Microsoft.FileServices.json index 10a041e6ebe..f402db0aaf3 100644 --- a/changelog/Microsoft.FileServices.json +++ b/changelog/Microsoft.FileServices.json @@ -1,5 +1,39 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "37d03d43-f372-4979-9a1d-6a56e2d28f84", + "ApiChange": "Resource", + "ChangedApiName": "sharePointApiUsageDataPoint", + "ChangeType": "Addition", + "Description": "Added the [sharePointApiUsageDataPoint](https://learn.microsoft.com/en-us/graph/api/resources/sharepointapiusagedatapoint?view=graph-rest-beta) resource.", + "Target": "sharePointApiUsageDataPoint" + }, + { + "Id": "37d03d43-f372-4979-9a1d-6a56e2d28f84", + "ApiChange": "Resource", + "ChangedApiName": "sharePointApiUsageReport", + "ChangeType": "Addition", + "Description": "Added the [sharePointApiUsageReport](https://learn.microsoft.com/en-us/graph/api/resources/sharepointapiusagereport?view=graph-rest-beta) resource.", + "Target": "sharePointApiUsageReport" + }, + { + "Id": "37d03d43-f372-4979-9a1d-6a56e2d28f84", + "ApiChange": "Method", + "ChangedApiName": "getSharePointApiUsage", + "ChangeType": "Addition", + "Description": "Added the [getSharePointApiUsage](https://learn.microsoft.com/en-us/graph/api/reportroot-getsharepointapiusage?view=graph-rest-beta) method to the **reportRoot** resource.", + "Target": "reportRoot" + } + ], + "Id": "37d03d43-f372-4979-9a1d-6a56e2d28f84", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-23T01:49:53.4116791Z", + "WorkloadArea": "Files", + "SubArea": "" + }, { "ChangeList": [ { diff --git a/changelog/Microsoft.IGAELM.json b/changelog/Microsoft.IGAELM.json index 51a94d18fc8..fd7c557e757 100644 --- a/changelog/Microsoft.IGAELM.json +++ b/changelog/Microsoft.IGAELM.json @@ -1,5 +1,31 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "bbaab297-9f65-4f97-8abb-a67a10d5a6e1", + "ApiChange": "Method", + "ChangedApiName": "Get", + "ChangeType": "Addition", + "Description": "Added the [Get](https://learn.microsoft.com/en-us/graph/api/accesspackagesubject-get?view=graph-rest-1.0) method to the [accessPackageSubject](https://learn.microsoft.com/en-us/graph/api/resources/accesspackagesubject?view=graph-rest-1.0) resource.", + "Target": "accessPackageSubject" + }, + { + "Id": "bbaab297-9f65-4f97-8abb-a67a10d5a6e1", + "ApiChange": "Method", + "ChangedApiName": "Update", + "ChangeType": "Addition", + "Description": "Added the [Update](https://learn.microsoft.com/en-us/graph/api/accesspackagesubject-update?view=graph-rest-1.0) method to the [accessPackageSubject](https://learn.microsoft.com/en-us/graph/api/resources/accesspackagesubject?view=graph-rest-1.0) resource.", + "Target": "accessPackageSubject" + } + ], + "Id": "bbaab297-9f65-4f97-8abb-a67a10d5a6e1", + "Cloud": "Prod", + "Version": "v1.0", + "CreatedDateTime": "2026-06-23T00:00:00Z", + "WorkloadArea": "Identity and access", + "SubArea": "Governance" + }, { "Id": "a7e3b21c-5f0d-4a82-b6c9-1e8d4f7a3b5c", "Cloud": "Prod", diff --git a/changelog/Microsoft.M365.Defender.json b/changelog/Microsoft.M365.Defender.json index d1a9b3fffe7..53a34d631eb 100644 --- a/changelog/Microsoft.M365.Defender.json +++ b/changelog/Microsoft.M365.Defender.json @@ -750,6 +750,80 @@ "WorkloadArea": "Security", "SubArea": "Alerts and incidents" }, + { + "ChangeList": [ + { + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "ApiChange": "Method", + "ChangedApiName": "getHuntingSchema", + "ChangeType": "Addition", + "Description": "Added the [getHuntingSchema](https://learn.microsoft.com/en-us/graph/api/security-security-gethuntingschema?view=graph-rest-beta) method to the [security](https://learn.microsoft.com/en-us/graph/api/resources/security?view=graph-rest-beta) resource.", + "Target": "security" + }, + { + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "ApiChange": "Resource", + "ChangedApiName": "huntingSchemaResult", + "ChangeType": "Addition", + "Description": "Added the [huntingSchemaResult](https://learn.microsoft.com/en-us/graph/api/resources/security-huntingschemaresult?view=graph-rest-beta) resource.", + "Target": "huntingSchemaResult" + }, + { + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "ApiChange": "Resource", + "ChangedApiName": "huntingSchemaTable", + "ChangeType": "Addition", + "Description": "Added the [huntingSchemaTable](https://learn.microsoft.com/en-us/graph/api/resources/security-huntingschematable?view=graph-rest-beta) resource.", + "Target": "huntingSchemaTable" + }, + { + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "ApiChange": "Resource", + "ChangedApiName": "huntingSchemaTableColumn", + "ChangeType": "Addition", + "Description": "Added the [huntingSchemaTableColumn](https://learn.microsoft.com/en-us/graph/api/resources/security-huntingschematablecolumn?view=graph-rest-beta) resource.", + "Target": "huntingSchemaTableColumn" + }, + { + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "ApiChange": "Resource", + "ChangedApiName": "huntingSchemaFunctions", + "ChangeType": "Addition", + "Description": "Added the [huntingSchemaFunctions](https://learn.microsoft.com/en-us/graph/api/resources/security-huntingschemafunctions?view=graph-rest-beta) resource.", + "Target": "huntingSchemaFunctions" + }, + { + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "ApiChange": "Resource", + "ChangedApiName": "huntingSchemaBuiltInFunction", + "ChangeType": "Addition", + "Description": "Added the [huntingSchemaBuiltInFunction](https://learn.microsoft.com/en-us/graph/api/resources/security-huntingschemabuiltinfunction?view=graph-rest-beta) resource.", + "Target": "huntingSchemaBuiltInFunction" + }, + { + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "ApiChange": "Resource", + "ChangedApiName": "huntingSchemaSavedFunction", + "ChangeType": "Addition", + "Description": "Added the [huntingSchemaSavedFunction](https://learn.microsoft.com/en-us/graph/api/resources/security-huntingschemasavedfunction?view=graph-rest-beta) resource.", + "Target": "huntingSchemaSavedFunction" + }, + { + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "ApiChange": "Resource", + "ChangedApiName": "huntingSchemaFunctionParameter", + "ChangeType": "Addition", + "Description": "Added the [huntingSchemaFunctionParameter](https://learn.microsoft.com/en-us/graph/api/resources/security-huntingschemafunctionparameter?view=graph-rest-beta) resource.", + "Target": "huntingSchemaFunctionParameter" + } + ], + "Id": "59e9c275-8452-4bae-b107-28a32a278788", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-24T11:05:11.5465777Z", + "WorkloadArea": "Security", + "SubArea": "Advanced hunting" + }, { "ChangeList": [ { @@ -4353,7 +4427,7 @@ "ApiChange": "Resource", "ChangedApiName": "sensorCandidate", "ChangeType": "Addition", - "Description": "Added the [sensorCandidate](https://learn.microsoft.com/en-us/graph/api/resources/security-sensorCandidate?view=graph-rest-beta) resource.", + "Description": "Added the [sensorCandidate](https://learn.microsoft.com/en-us/graph/api/resources/security-sensorcandidate?view=graph-rest-beta) resource.", "Target": "sensorCandidate" }, { @@ -4361,7 +4435,7 @@ "ApiChange": "Resource", "ChangedApiName": "sensorCandidateActivationConfiguration", "ChangeType": "Addition", - "Description": "Added the [sensorCandidateActivationConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/security-sensorCandidateActivationConfiguration?view=graph-rest-beta) resource.", + "Description": "Added the [sensorCandidateActivationConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/security-sensorcandidateactivationconfiguration?view=graph-rest-beta) resource.", "Target": "sensorCandidateActivationConfiguration" }, { @@ -4369,7 +4443,7 @@ "ApiChange": "Method", "ChangedApiName": "activate", "ChangeType": "Addition", - "Description": "Added the [activate](https://learn.microsoft.com/en-us/graph/api/security-sensorCandidate-activate?view=graph-rest-beta) method to the [sensorCandidate](https://learn.microsoft.com/en-us/graph/api/resources/security-sensorCandidate?view=graph-rest-beta) resource.", + "Description": "Added the [activate](https://learn.microsoft.com/en-us/graph/api/security-sensorcandidate-activate?view=graph-rest-beta) method to the [sensorCandidate](https://learn.microsoft.com/en-us/graph/api/resources/security-sensorcandidate?view=graph-rest-beta) resource.", "Target": "sensorCandidate" } ], @@ -4447,7 +4521,7 @@ "ApiChange": "Resource", "ChangedApiName": "aiAgentEvidence", "ChangeType": "Addition", - "Description": "Added the [aiAgentEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-aiAgentEvidence?view=graph-rest-beta) resource type.", + "Description": "Added the [aiAgentEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-aiagentevidence?view=graph-rest-beta) resource type.", "Target": "aiAgentEvidence" } ], @@ -4473,7 +4547,7 @@ "ApiChange": "Resource", "ChangedApiName": "aiAgentEvidence", "ChangeType": "Addition", - "Description": "Added the [aiAgentEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-aiAgentEvidence?view=graph-rest-1.0) resource type.", + "Description": "Added the [aiAgentEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-aiagentevidence?view=graph-rest-1.0) resource type.", "Target": "aiAgentEvidence" } ], @@ -4491,7 +4565,7 @@ "ApiChange": "Resource", "ChangedApiName": "activeDirectoryDomainEvidence", "ChangeType": "Addition", - "Description": "Added the [activeDirectoryDomainEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-activeDirectoryDomainEvidence?view=graph-rest-1.0) resource.", + "Description": "Added the [activeDirectoryDomainEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-activedirectorydomainevidence?view=graph-rest-1.0) resource.", "Target": "activeDirectoryDomainEvidence" }, { @@ -4499,7 +4573,7 @@ "ApiChange": "Property", "ChangedApiName": "resourceAccessEvents", "ChangeType": "Addition", - "Description": "Added the **resourceAccessEvents** property to the [deviceEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-deviceEvidence?view=graph-rest-1.0) resource.", + "Description": "Added the **resourceAccessEvents** property to the [deviceEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-deviceevidence?view=graph-rest-1.0) resource.", "Target": "deviceEvidence" }, { @@ -4507,7 +4581,7 @@ "ApiChange": "Resource", "ChangedApiName": "mailboxConfigurationEvidence", "ChangeType": "Addition", - "Description": "Added the [mailboxConfigurationEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-mailboxConfigurationEvidence?view=graph-rest-1.0) resource.", + "Description": "Added the [mailboxConfigurationEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-mailboxconfigurationevidence?view=graph-rest-1.0) resource.", "Target": "mailboxConfigurationEvidence" }, { @@ -4533,7 +4607,7 @@ "ApiChange": "Property", "ChangedApiName": "resourceAccessEvents", "ChangeType": "Addition", - "Description": "Added the **resourceAccessEvents** property to the [deviceEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-deviceEvidence?view=graph-rest-beta) resource.", + "Description": "Added the **resourceAccessEvents** property to the [deviceEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-deviceevidence?view=graph-rest-beta) resource.", "Target": "deviceEvidence" }, { @@ -4541,7 +4615,7 @@ "ApiChange": "Resource", "ChangedApiName": "mailboxConfigurationEvidence", "ChangeType": "Addition", - "Description": "Added the [mailboxConfigurationEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-mailboxConfigurationEvidence?view=graph-rest-beta) resource.", + "Description": "Added the [mailboxConfigurationEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-mailboxconfigurationevidence?view=graph-rest-beta) resource.", "Target": "mailboxConfigurationEvidence" }, { @@ -4549,7 +4623,7 @@ "ApiChange": "Resource", "ChangedApiName": "activeDirectoryDomainEvidence", "ChangeType": "Addition", - "Description": "Added the [activeDirectoryDomainEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-activeDirectoryDomainEvidence?view=graph-rest-beta) resource.", + "Description": "Added the [activeDirectoryDomainEvidence](https://learn.microsoft.com/en-us/graph/api/resources/security-activedirectorydomainevidence?view=graph-rest-beta) resource.", "Target": "activeDirectoryDomainEvidence" }, { @@ -4611,7 +4685,7 @@ "ApiChange": "Resource", "ChangedApiName": "autoAuditingConfiguration", "ChangeType": "Addition", - "Description": "Added the [autoAuditingConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/security-autoAuditingConfiguration?view=graph-rest-beta) resource.", + "Description": "Added the [autoAuditingConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/security-autoauditingconfiguration?view=graph-rest-beta) resource.", "Target": "autoAuditingConfiguration" }, { @@ -4619,7 +4693,7 @@ "ApiChange": "Relationship", "ChangedApiName": "autoAuditingConfiguration", "ChangeType": "Addition", - "Description": "Added the **autoAuditingConfiguration** relationship to the [settingsContainer](https://learn.microsoft.com/en-us/graph/api/resources/security-settingsContainer?view=graph-rest-beta) resource.", + "Description": "Added the **autoAuditingConfiguration** relationship to the [settingsContainer](https://learn.microsoft.com/en-us/graph/api/resources/security-settingscontainer?view=graph-rest-beta) resource.", "Target": "settingsContainer" } ], @@ -4637,7 +4711,7 @@ "ApiChange": "Resource", "ChangedApiName": "autoAuditingConfiguration", "ChangeType": "Addition", - "Description": "Added the [autoAuditingConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/security-autoAuditingConfiguration?view=graph-rest-1.0) resource.", + "Description": "Added the [autoAuditingConfiguration](https://learn.microsoft.com/en-us/graph/api/resources/security-autoauditingconfiguration?view=graph-rest-1.0) resource.", "Target": "autoAuditingConfiguration" }, { @@ -4645,7 +4719,7 @@ "ApiChange": "Relationship", "ChangedApiName": "autoAuditingConfiguration", "ChangeType": "Addition", - "Description": "Added the **autoAuditingConfiguration** relationship to the [settingsContainer](https://learn.microsoft.com/en-us/graph/api/resources/security-settingsContainer?view=graph-rest-1.0) resource.", + "Description": "Added the **autoAuditingConfiguration** relationship to the [settingsContainer](https://learn.microsoft.com/en-us/graph/api/resources/security-settingscontainer?view=graph-rest-1.0) resource.", "Target": "settingsContainer" }, { @@ -4653,7 +4727,7 @@ "ApiChange": "Relationship", "ChangedApiName": "settings", "ChangeType": "Addition", - "Description": "Added the **settings** relationship to the [identityContainer](https://learn.microsoft.com/en-us/graph/api/resources/security-identityContainer?view=graph-rest-1.0) resource.", + "Description": "Added the **settings** relationship to the [identityContainer](https://learn.microsoft.com/en-us/graph/api/resources/security-identitycontainer?view=graph-rest-1.0) resource.", "Target": "identityContainer" }, { @@ -4661,7 +4735,7 @@ "ApiChange": "Resource", "ChangedApiName": "settingsContainer", "ChangeType": "Addition", - "Description": "Added the [settingsContainer](https://learn.microsoft.com/en-us/graph/api/resources/security-settingsContainer?view=graph-rest-1.0) resource.", + "Description": "Added the [settingsContainer](https://learn.microsoft.com/en-us/graph/api/resources/security-settingscontainer?view=graph-rest-1.0) resource.", "Target": "settingsContainer" } ], diff --git a/changelog/Microsoft.MDO.AnalyzedMessages.json b/changelog/Microsoft.MDO.AnalyzedMessages.json index c0455a01184..23898533677 100644 --- a/changelog/Microsoft.MDO.AnalyzedMessages.json +++ b/changelog/Microsoft.MDO.AnalyzedMessages.json @@ -1,4 +1,4 @@ -{ +{ "changelog": [ { "ChangeList": [ @@ -654,7 +654,7 @@ "WorkloadArea": "Security", "SubArea": "" }, - { + { "ChangeList": [ { "Id": "434ab3d3-04a9-4ee4-b70d-31e49940e98d", @@ -719,6 +719,240 @@ "CreatedDateTime": "2026-02-05T08:11:41.618548Z", "WorkloadArea": "Security", "SubArea": "" + }, + { + "ChangeList": [ + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "security", + "ChangeType": "Addition", + "Description": "Added the [security](https://learn.microsoft.com/en-us/graph/api/resources/security?view=graph-rest-1.0) resource.", + "Target": "security" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "antispamDirectionality", + "ChangeType": "Addition", + "Description": "Added the **antispamDirectionality** enumeration type.", + "Target": "antispamDirectionality" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "deliveryAction", + "ChangeType": "Addition", + "Description": "Added the **deliveryAction** enumeration type.", + "Target": "deliveryAction" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "deliveryLocation", + "ChangeType": "Addition", + "Description": "Added the **deliveryLocation** enumeration type.", + "Target": "deliveryLocation" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "eventSource", + "ChangeType": "Addition", + "Description": "Added the **eventSource** enumeration type.", + "Target": "eventSource" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "remediationAction", + "ChangeType": "Addition", + "Description": "Added the **remediationAction** enumeration type.", + "Target": "remediationAction" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "remediationSeverity", + "ChangeType": "Addition", + "Description": "Added the **remediationSeverity** enumeration type.", + "Target": "remediationSeverity" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "threatType", + "ChangeType": "Addition", + "Description": "Added the **threatType** enumeration type.", + "Target": "threatType" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "timelineEventType", + "ChangeType": "Addition", + "Description": "Added the **timelineEventType** enumeration type.", + "Target": "timelineEventType" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Enumeration", + "ChangedApiName": "verdictCategory", + "ChangeType": "Addition", + "Description": "Added the **verdictCategory** enumeration type.", + "Target": "verdictCategory" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmailAttachment", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmailAttachment](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmailAttachment?view=graph-rest-1.0) resource.", + "Target": "analyzedEmailAttachment" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmailAuthenticationDetail", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmailAuthenticationDetail](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmailAuthenticationDetail?view=graph-rest-1.0) resource.", + "Target": "analyzedEmailAuthenticationDetail" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmailDeliveryDetail", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmailDeliveryDetail](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmailDeliveryDetail?view=graph-rest-1.0) resource.", + "Target": "analyzedEmailDeliveryDetail" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmailDlpRuleInfo", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmailDlpRuleInfo](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmailDlpRuleInfo?view=graph-rest-1.0) resource.", + "Target": "analyzedEmailDlpRuleInfo" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmailExchangeTransportRuleInfo", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmailExchangeTransportRuleInfo](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmailExchangeTransportRuleInfo?view=graph-rest-1.0) resource.", + "Target": "analyzedEmailExchangeTransportRuleInfo" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmailRecipientDetail", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmailRecipientDetail](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmailRecipientDetail?view=graph-rest-1.0) resource.", + "Target": "analyzedEmailRecipientDetail" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmailSenderDetail", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmailSenderDetail](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmailSenderDetail?view=graph-rest-1.0) resource.", + "Target": "analyzedEmailSenderDetail" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmailUrl", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmailUrl](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmailUrl?view=graph-rest-1.0) resource.", + "Target": "analyzedEmailUrl" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "compromiseIndicator", + "ChangeType": "Addition", + "Description": "Added the [compromiseIndicator](https://learn.microsoft.com/en-us/graph/api/resources/security-compromiseIndicator?view=graph-rest-1.0) resource.", + "Target": "compromiseIndicator" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "detonationBehaviourDetails", + "ChangeType": "Addition", + "Description": "Added the [detonationBehaviourDetails](https://learn.microsoft.com/en-us/graph/api/resources/security-detonationBehaviourDetails?view=graph-rest-1.0) resource.", + "Target": "detonationBehaviourDetails" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "detonationChain", + "ChangeType": "Addition", + "Description": "Added the [detonationChain](https://learn.microsoft.com/en-us/graph/api/resources/security-detonationChain?view=graph-rest-1.0) resource.", + "Target": "detonationChain" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "detonationDetails", + "ChangeType": "Addition", + "Description": "Added the [detonationDetails](https://learn.microsoft.com/en-us/graph/api/resources/security-detonationDetails?view=graph-rest-1.0) resource.", + "Target": "detonationDetails" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "detonationObservables", + "ChangeType": "Addition", + "Description": "Added the [detonationObservables](https://learn.microsoft.com/en-us/graph/api/resources/security-detonationObservables?view=graph-rest-1.0) resource.", + "Target": "detonationObservables" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "threatDetectionDetail", + "ChangeType": "Addition", + "Description": "Added the [threatDetectionDetail](https://learn.microsoft.com/en-us/graph/api/resources/security-threatDetectionDetail?view=graph-rest-1.0) resource.", + "Target": "threatDetectionDetail" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "timelineEvent", + "ChangeType": "Addition", + "Description": "Added the [timelineEvent](https://learn.microsoft.com/en-us/graph/api/resources/security-timelineEvent?view=graph-rest-1.0) resource.", + "Target": "timelineEvent" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "analyzedEmail", + "ChangeType": "Addition", + "Description": "Added the [analyzedEmail](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmail?view=graph-rest-1.0) resource.", + "Target": "analyzedEmail" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Resource", + "ChangedApiName": "collaborationRoot", + "ChangeType": "Addition", + "Description": "Added the [collaborationRoot](https://learn.microsoft.com/en-us/graph/api/resources/security-collaborationRoot?view=graph-rest-1.0) resource.", + "Target": "collaborationRoot" + }, + { + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "ApiChange": "Method", + "ChangedApiName": "remediate", + "ChangeType": "Addition", + "Description": "Added the [remediate](https://learn.microsoft.com/en-us/graph/api/security-analyzedEmail-remediate?view=graph-rest-1.0) method to the [analyzedEmail](https://learn.microsoft.com/en-us/graph/api/resources/security-analyzedEmail?view=graph-rest-1.0) resource.", + "Target": "analyzedEmail" + } + ], + "Id": "dbf1a1ed-b3f2-476b-aa30-ee40ca5e269f", + "Cloud": "Prod", + "Version": "v1.0", + "CreatedDateTime": "2026-06-24T06:21:42.919633Z", + "WorkloadArea": "Security", + "SubArea": "" } ] } diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index 158cf7db6a8..93bd4215fa7 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -3,7 +3,7 @@ title: "What's new in Microsoft Graph" description: "Find out what's new in Microsoft Graph APIs, SDKs, documentation, and other resources." author: "lauragra" ms.localizationpriority: high -ms.date: 06/15/2026 +ms.date: 06/23/2026 ms.topic: whats-new --- @@ -30,15 +30,22 @@ Evaluate applications in the Microsoft Entra application gallery by using the [a ### Identity and access | Governance +- Added the [Get](/graph/api/accesspackagesubject-get) and [Update](/graph/api/accesspackagesubject-update) methods to the [accessPackageSubject](/graph/api/resources/accesspackagesubject) resource type to manage the subject lifecycle of external directory users in Microsoft Entra entitlement management. - Added the **type** property to the [accessPackageResourceRole](/graph/api/resources/accesspackageresourcerole) resource to indicate whether an Azure resource role is active or eligible, enabling PIM-based role assignments for Azure resources in access packages. - Added the [accessPackageSuggestion](/graph/api/resources/accesspackagesuggestion) resource type and related methods for discovering suggested access packages based on related people insights and assignment history. Use the [filterByCurrentUser](/graph/api/accesspackagesuggestions-filterbycurrentuser) function to retrieve personalized suggestions. - Added the **approverInformationVisibility** property to the [accessPackageApprovalStage](/graph/api/resources/accesspackageapprovalstage) resource to control whether approver information is visible to requestors. - Added the [endUserSettings](/graph/api/resources/endusersettings) resource type and related methods for configuring access package suggestion behavior, including related people insight levels and approver detail visibility. +### Files | Reports + +Added the [getSharePointApiUsage](/graph/api/reportroot-getsharepointapiusage?view=graph-rest-beta&preserve-view=true) method to the [reportRoot](/graph/api/resources/reportroot?view=graph-rest-beta&preserve-view=true) resource to retrieve aggregated OneDrive and SharePoint API usage metrics for a tenant. + + ### Identity and access | Identity and sign-in Added support for programmatic FIDO2 passkey registration. Use the [creationOptions](/graph/api/fido2authenticationmethod-creationoptions) function to get WebAuthn credential creation options, then complete registration by posting the new **publicKeyCredential** property to the [fido2AuthenticationMethod](/graph/api/resources/fido2authenticationmethod) resource. + ### People and workplace intelligence - Updated [Manage profile source precedence in Microsoft 365](/graph/profilepriority-configure-profilepropertysetting) to clarify supported data sources for HR and work position data, explain how source precedence affects single-value versus multi-value properties, and add guidance on correctly configuring and removing tenant-level settings using the Microsoft Graph API or PowerShell. @@ -60,9 +67,22 @@ Application permissions for the [user: translateExchangeIds](/graph/api/user-tra ## June 2026: New in preview only +### Security | Data security and compliance + +Added the [policyTipAction](/graph/api/resources/policytipaction?view=graph-rest-beta&preserve-view=true) resource type and the `policyTip` member to the **dlpAction** enumeration. This enables applications to receive policy tip guidance as a standalone action when DLP policies are triggered through the processContent and protectionScopes APIs. + +### Agents | Agent identities + +Added the **appRoleAssignmentRequired** property to the [agentIdentity](/graph/api/resources/agentidentity?view=graph-rest-beta&preserve-view=true) resource. This property indicates whether users or service principals must be explicitly granted an app role assignment before they can access the agent identity. + ### Backup storage -Use the new full workload backup APIs to protect entire Microsoft 365 workloads (SharePoint Online, OneDrive for work or school, and Exchange Online) with minimal administrative overhead. Instead of manually selecting each item to protect, you can create a protection policy that backs up all data in a workload and then specify only the items to exclude from backup. For more information, see [exclusionUnitBase](/graph/api/resources/exclusionunitbase?view=graph-rest-beta&preserve-view=true) and [exclusionUnitBulkAdditionJob](/graph/api/resources/exclusionunitbulkadditionjob?view=graph-rest-beta&preserve-view=true). +- Added support for full workload backup APIs to protect entire Microsoft 365 workloads (SharePoint Online, OneDrive for work or school, and Exchange Online) with minimal administrative overhead. Create a protection policy that backs up all data in a workload and specify only the items to exclude from backup. For more information, see [exclusionUnitBase](/graph/api/resources/exclusionunitbase?view=graph-rest-beta&preserve-view=true). +- Deprecated the **queryExpression** property on the [artifactQuery](/graph/api/resources/artifactquery?view=graph-rest-beta&preserve-view=true) resource. Use the **structuredQueryExpression** property instead to create structured search queries. + +### Teamwork and communications | Calls and online meetings + +Use the **isRegistrationRequired** property on the [virtualEventTownhall](/graph/api/resources/virtualeventtownhall?view=graph-rest-beta&preserve-view=true) and [virtualEventWebinar](/graph/api/resources/virtualeventwebinar?view=graph-rest-beta&preserve-view=true) resources to specify if attendees must complete the registration flow before they can attend. ### Device and app management | Cloud PC @@ -97,6 +117,10 @@ Introduced programmatic management of personal distribution lists in user mailbo Personal distribution lists enable users to group email recipients together and send messages to all members at once without entering each address individually. +### Reports | Identity and access reports + +Added the [identityAnalyticsRoot](/graph/api/resources/identityanalyticsroot?view=graph-rest-beta&preserve-view=true) resource type to provide point-in-time identity analytics for your tenant, starting with analytics about your groups such as their membership, ownership, and type. + ### Security - Introduced [sensor migration](/graph/api/resources/security-sensormigration?view=graph-rest-beta&preserve-view=true) capabilities to migrate eligible Microsoft Defender for Identity sensors. @@ -108,6 +132,13 @@ Personal distribution lists enable users to group email recipients together and Added the [policyTipAction](/graph/api/resources/policytipaction?view=graph-rest-beta&preserve-view=true) resource type and the `policyTip` member to the **dlpAction** enumeration. This enables applications to receive policy tip guidance as a standalone action when DLP policies are triggered through the processContent and protectionScopes APIs. +### Security | Email and collaboration protection + +- Use the [analyzedEmail](/graph/api/resources/security-analyzedemail?view=graph-rest-beta&preserve-view=true) resource type and its associated methods to give Security Operations teams direct, near real-time access to query email threats, indicators of compromise (IOCs), attack vectors, and evidence in a tenant. Email metadata, verdict information, related underlying entities such as attachments and URLs, filters, and timeline events are returned to support investigation and response. +- [List analyzedEmails](/graph/api/security-collaborationroot-list-analyzedemails?view=graph-rest-beta&preserve-view=true) under the collaboration root to retrieve email records for a time range with support for `$filter`, `$top`, `$count`, and `$skiptoken`. +- [Get analyzedEmail](/graph/api/security-analyzedemail-get?view=graph-rest-beta&preserve-view=true) to read the properties of a specific email, including its attachments, URLs, threat detection details, and timeline events. +- [analyzedEmail: remediate](/graph/api/security-analyzedemail-remediate?view=graph-rest-beta&preserve-view=true) to trigger purge actions (move to junk, move to Inbox, soft delete, hard delete, move to deleted items, move to quarantine) for SOAR integrations, playbooks, and automations. + ### Sites and lists Added the [sharePointReportSettings](/graph/api/resources/sharepointreportsettings?view=graph-rest-beta&preserve-view=true) resource type and related methods for managing SharePoint API usage report metrics. Use the [enableApiUsageReport](/graph/api/sharepointreportsettings-enableapiusagereport?view=graph-rest-beta&preserve-view=true) and [disableApiUsageReport](/graph/api/sharepointreportsettings-disableapiusagereport?view=graph-rest-beta&preserve-view=true) methods to control which metrics are collected and reported for your tenant. @@ -134,6 +165,10 @@ The **timeZone** property of the [schedule](/graph/api/resources/schedule?view=g [Validate](/graph/api/crosstenantmigrationjob-validate?view=graph-rest-beta&preserve-view=true) and [migrate](/graph/api/crosstenantmigrationjob-migrate?view=graph-rest-beta&preserve-view=true) a [cross-tenant migration job](/graph/api/resources/crosstenantmigrationjob?view=graph-rest-beta&preserve-view=true) asynchronously. A previously created job must pass validation before migration can start. +### Tenants | Cross-tenant migration + +[Validate](/graph/api/crosstenantmigrationjob-validate?view=graph-rest-beta&preserve-view=true) and [migrate](/graph/api/crosstenantmigrationjob-migrate?view=graph-rest-beta&preserve-view=true) a [cross-tenant migration job](/graph/api/resources/crosstenantmigrationjob?view=graph-rest-beta&preserve-view=true) asynchronously. A previously created job must pass validation before migration can start. + ### Tenants | Tenant governance Added the **groupDisplayName** property to the [delegatedAdministrationRoleAssignment](/graph/api/resources/tenantgovernanceservices-delegatedadministrationroleassignment?view=graph-rest-beta&preserve-view=true) and [delegatedAdministrationRoleAssignmentSnapshot](/graph/api/resources/tenantgovernanceservices-delegatedadministrationroleassignmentsnapshot?view=graph-rest-beta&preserve-view=true) resources. This property surfaces the display name of the security group inline, so consumers don't need to make a separate Microsoft Graph `/groups/{id}` call to resolve it. @@ -144,7 +179,6 @@ Application permissions for the [user: translateExchangeIds](/graph/api/user-tra - [Retrieve](/graph/api/cloudpcprovisioningpolicy-retrievepolicyupdatestatusresult?view=graph-rest-beta&preserve-view=true) the pending apply status of a [provisioning policy](/graph/api/resources/cloudpcprovisioningpolicy?view=graph-rest-beta&preserve-view=true) to determine whether unapplied changes exist for Cloud PCs. - Use the **isForceUserLogoffEnabled** parameter and property on [cloudPcProvisioningPolicy: apply](/graph/api/cloudpcprovisioningpolicy-apply?view=graph-rest-beta&preserve-view=true) and [cloudPcPolicyScheduledApplyActionDetail](/graph/api/resources/cloudpcpolicyscheduledapplyactiondetail?view=graph-rest-beta&preserve-view=true) to indicate whether active Cloud PC sessions are forcibly signed out when reprovisioning begins. - ## May 2026: New and generally available ### Agents @@ -185,7 +219,7 @@ Use the mailbox import and export APIs in Microsoft Graph to build solutions tha ### People and workplace intelligence | People admin settings -Use the **isVisible** property on [profileCardProperty](/graph/api/resources/profilecardproperty) to indicate whether the given directory property should be shown on a user’s profile card. +Use the **isVisible** property on [profileCardProperty](/graph/api/resources/profilecardproperty) to indicate whether the given directory property should be shown on a user's profile card. ### Security | Alerts and incidents @@ -250,6 +284,10 @@ Use the [List](/graph/api/peopleadminsettings-list-photoupdatesettings?view=grap - Added the [identityCorrelation](/graph/api/resources/identitycorrelation?view=graph-rest-beta&preserve-view=true) resource type and related methods for viewing identity correlation reports between on-premises directories and Microsoft Entra ID. - Added the `passwordSubmit` member to the [authenticationEventType](/graph/api/resources/enums?view=graph-rest-beta&preserve-view=true#authenticationeventtype-values) enumeration, surfaced through [appliedAuthenticationEventListener](/graph/api/resources/appliedauthenticationeventlistener?view=graph-rest-beta&preserve-view=true), to identify password-submission events in sign-in flows. +### Security | Advanced hunting + +Added the [getHuntingSchema](/graph/api/security-security-gethuntingschema?view=graph-rest-beta&preserve-view=true) method to the [security](/graph/api/resources/security?view=graph-rest-beta&preserve-view=true) resource to retrieve the available tables, columns, and functions for Microsoft Defender XDR advanced hunting queries. + ### Security | Alerts and incidents - Use the following new resources that extend the [alertEvidence](/graph/api/resources/security-alertevidence?view=graph-rest-beta&preserve-view=true) base type to provide detailed context about various artifacts involved in security alerts: @@ -287,8 +325,8 @@ Added support for `$expand` on the **items** relationship of the [teamworkSectio ### Tenants | Cross-tenant access -Use the **sensorTypes** property on [sensorCandidate](/graph/api/resources/security-sensorcandidate?view=graph-rest-beta&preserve-view=true) to get the list of device types for the sensor. -Added the following properties and their associated complex types to the [crossTenantAccessPolicyConfigurationDefault](/graph/api/resources/crosstenantaccesspolicyconfigurationdefault?view=graph-rest-beta&preserve-view=true) and [crossTenantAccessPolicyConfigurationPartner](/graph/api/resources/crosstenantaccesspolicyconfigurationpartner?view=graph-rest-beta&preserve-view=true) resources of cross-tenant access policy APIs to support Microsoft 365 collaboration and app service connect settings: +- Use the **sensorTypes** property on [sensorCandidate](/graph/api/resources/security-sensorcandidate?view=graph-rest-beta&preserve-view=true) to get the list of device types for the sensor. +- Added the following properties and their associated complex types to the [crossTenantAccessPolicyConfigurationDefault](/graph/api/resources/crosstenantaccesspolicyconfigurationdefault?view=graph-rest-beta&preserve-view=true) and [crossTenantAccessPolicyConfigurationPartner](/graph/api/resources/crosstenantaccesspolicyconfigurationpartner?view=graph-rest-beta&preserve-view=true) resources of cross-tenant access policy APIs to support Microsoft 365 collaboration and app service connect settings: - **appServiceConnectInbound** property to get or set the default or partner-specific configuration for inbound app service connect settings. - **m365CollaborationInbound** property to get or set the default or partner-specific configuration for inbound Microsoft 365 collaboration settings. - **m365CollaborationOutbound** property get or set the default or partner-specific configuration for outbound Microsoft 365 collaboration settings. From 5248283d72bfc16ec41d332df92472b43a8d1a26 Mon Sep 17 00:00:00 2001 From: Jason Johnston Date: Wed, 24 Jun 2026 13:27:56 -0400 Subject: [PATCH 46/52] Delete .acrolinx-config.edn (#29155) --- .acrolinx-config.edn | 57 -------------------------------------------- 1 file changed, 57 deletions(-) delete mode 100644 .acrolinx-config.edn diff --git a/.acrolinx-config.edn b/.acrolinx-config.edn deleted file mode 100644 index 8e363367900..00000000000 --- a/.acrolinx-config.edn +++ /dev/null @@ -1,57 +0,0 @@ -{ - ; https://support.acrolinx.com/hc/en-us/articles/10342999034130-Define-What-Acrolinx-for-Git-Hosting-Checks - :allowed-branchname-matches ["main" "live"] - :allowed-filename-matches ["^concepts/(?!toc\\.yml).*" "includes/" "(?i)(?!(^.*/i|^i)ntune[^/]*$|(^.*/e|^e)nums[^/]*$|(^.*/t|^t)oc\\.yml[^/]*$)^api-reference/.*$"] - - :use-gh-statuses true - - :targets - { - :counts { - ;;:correctness 13 - ;;:total 15 ;; absolute flag count but i don't know the difference between this and issues - ;;:issues 15 ;; coming from the platform, will need to be tested. - ;;:correctness 13 ;; combined spelling and grammar - } - :scores { - ;;:terminology 100 - :qualityscore 80 - ;;:correctness 40 - } - } - - :guidance-profile "d2b6c2c8-00ee-47f1-8d10-b280cc3434c1" ;; Profile ID for "M365-specific" - - :template-header - - " - -## Acrolinx Scorecards - -**The minimum Acrolinx topic score of 80 is required for all Microsoft Graph content merged to the default branch.** - -If you need a scoring exception for content in this PR, add the *ready for content review* and the *acrolinx exception* labels to the PR. The content review team will review the exception request and may take one or more of the following actions: - -- Work with you to resolve the issues requiring the exception. -- Escalate the exception request to the Acrolinx Review Team for review. -- Approve the exception and work with the GitHub Admin Team to merge the PR to the default branch. - -For more information about the exception criteria and exception process, see [Acrolinx for Microsoft Graph docs](https://eng.ms/cid/27dee76c-3a60-4e65-8fdf-08ea849b3498/fid/d80517923e291f07a0da8b5ce8e082ba680a55ddda65497a1061ca9f97c50290). - -Select the scorecard links for each article to review the Acrolinx feedback on grammar, spelling, punctuation, writing style, and terminology: - -| Article | Score | Issues | Correctness
score | Scorecard | Processed | -| ------- | ----- | ------ | ------ | --------- | --------- | -" - - :template-change - "| ${s/file} | ${acrolinx/qualityscore} | ${acrolinx/flags/issues} | ${acrolinx/scores/correctness} | [link](${acrolinx/scorecard}) | ${s/status} | -" - - :template-footer - " -**More info about Acrolinx** - -Use the Acrolinx extension, or sidebar, in Visual Studio Code to check spelling, grammar, style, tone, clarity, and key terminology when you're creating or updating content. For more information, see [Use the Visual Studio Code extension to run Acrolinx locally](https://learn.microsoft.com/help/platform/acrolinx-vscode-setup) (you must sign in to access the page). -" -} From 2579747336c3cd21f1aa3efdef9c5affe5c463bd Mon Sep 17 00:00:00 2001 From: Jaylene Martinez Date: Wed, 24 Jun 2026 16:02:45 -0700 Subject: [PATCH 47/52] Refactor BYOD docs to new derived type schema (#28873) * Refactor BYOD docs to new derived type schema - Mark customDataProvidedResourceUploadSession as abstract, remove source/type properties - Add new resource docs: accessReviewUploadSession, accessReviewContextData, calloutRequest, resourceData, callbackData, contextData, applyDecisionContextData - Update all API examples (create, get, update, uploadFile) to use new derived type and data types - Fix uploadFile URL path to use catalogs instead of entitlementManagement/accessPackageCatalogs - Update uploadSessionRequest to remove source/type, fix link casing - Fix CSV example columns to match CSDL property names Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.IdentityGovernance.Insights.json Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * add applydecisioncontextdata * Address BYOD doc review feedback for ordering, TOC, and What's New Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/9b027f28-4546-45cb-a44b-6db351a31e85 Co-authored-by: jaylenemartinez0 <188250373+jaylenemartinez0@users.noreply.github.com> * Remove extra newline in documentation file * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Lowercase BYOD changelog Learn URLs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/ed0f10bf-9a53-4c1c-bc3d-18de642a0fb6 Co-authored-by: jaylenemartinez0 <188250373+jaylenemartinez0@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix malformed $filter inline-code formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/b9efc852-ebd7-4af6-8d9b-ddbb58c5cc94 Co-authored-by: jaylenemartinez0 <188250373+jaylenemartinez0@users.noreply.github.com> * Update customdataprovidedresourceaccessreviewuploadsession.md * Update reference TOC * Minor fixes * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update customdataprovidedresource-post-uploadsessions.md * Update customdataprovidedresourceuploadsession-uploadfile.md * Align BYOD docs with customDataProvidedResourcePayloads namespace refactor - Rename 5 resource files into the new microsoft.graph.customDataProvidedResourcePayloads namespace (history-preserving git mv): data, accessReviewContextDataBase, accessReviewContextData, applyDecisionContextData, calloutRequest - Update title, heading, Namespace, Inherits-from, derived-type list, @odata.type, and JSON sample in each renamed file - Remove customdataprovidedresourcerequestaccessreviewdatacallbackdata.md (type deleted from schema) - Remove accessreviewdatauploadtriggercallbackdata.md and accessreviewresourcedatauploadsessioncontextdata.md (orphaned doc stubs for types that no longer exist) - Drop callbackDataType property from calloutRequest (removed from schema) - Update stale type references in 4 API operation files and uploadsession.md + uploadsessionrequest.md to point to the new namespace - Replace deleted-callback-type reference in uploadfile.md with inline CSV column list - Merge new changelog batch (14 entries from this PR build) into existing changelog history Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * fix: remove changelog entries for globally-shared types not actually changed Drop auto-generated entries for customExtensionData (Deletion) and accessPackageAssignmentResourceRole (Addition). These were generated from the local workload schema diff but don't reflect global graph changes: - customExtensionData still exists for other workloads' custom extensions; only Insights stopped referencing it. - accessPackageAssignmentResourceRole already exists globally (owned by entitlement management); we only added it as a foreign-entity reference. Removing avoids PullRequest.DocsMissing warnings for docs we shouldn't add/remove. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * fix: surface customExtensionData + accessPackageAssignmentResourceRole in PR + add changelog URL - Touch customextensiondata.md and accesspackageassignmentresourcerole.md (trailing newline) so they appear in the PR diff; this satisfies PullRequest.DocsMissing checks without introducing real content changes for cross-workload-owned types. - Add Learn URL to the accessReviewDataUploadTriggerCallbackData Deletion changelog entry, matching the Addition entry format so the validator recognizes it. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * fix: match Deletion changelog entry to convention (bold name, 'resource type') Revert hyperlink format; use the same '**name** resource type' pattern as other workloads' Deletion entries. The validator parses for that pattern. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * fix: port accessReviewDataUploadTriggerCallbackData deletion changelog entry from build artifact Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * fix: add customExtensionData deletion changelog entry from build artifact Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * fix: sync IdentityGovernance.Insights changelog with build artifact (adds accessPackageAssignmentResourceRole + consolidates BYOD record) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix invalid changelog links for customDataProvidedResourcePayloads resources Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Fix TOC entries and add redirects for customDataProvidedResourcePayloads refactor Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: jaylenemartinez0 <188250373+jaylenemartinez0@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling --- .openpublishing.redirection.json | 10 + ...ataprovidedresource-post-uploadsessions.md | 36 +-- ...omdataprovidedresourceuploadsession-get.md | 9 +- ...ataprovidedresourceuploadsession-update.md | 9 +- ...rovidedresourceuploadsession-uploadfile.md | 30 +-- .../accesspackageassignmentresourcerole.md | 1 + ...cessreviewdatauploadtriggercallbackdata.md | 54 ----- ...iewresourcedatauploadsessioncontextdata.md | 43 ---- ...ovidedresourceaccessreviewuploadsession.md | 69 ++++++ ...esourcepayloads-accessreviewcontextdata.md | 46 ++++ ...rcepayloads-accessreviewcontextdatabase.md | 51 +++++ ...sourcepayloads-applydecisioncontextdata.md | 46 ++++ ...providedresourcepayloads-calloutrequest.md | 51 +++++ ...customdataprovidedresourcepayloads-data.md | 42 ++++ ...customdataprovidedresourceuploadsession.md | 42 ++-- ...ataprovidedresourceuploadsessionrequest.md | 8 +- .../beta/resources/customextensiondata.md | 1 + .../resources/enums-identitygovernance.md | 18 ++ .../beta/toc/identity-and-access/toc.yml | 12 +- api-reference/beta/toc/toc.mapping.json | 9 +- ...Microsoft.IdentityGovernance.Insights.json | 216 +++++++++++++++++- 21 files changed, 636 insertions(+), 167 deletions(-) delete mode 100644 api-reference/beta/resources/accessreviewdatauploadtriggercallbackdata.md delete mode 100644 api-reference/beta/resources/accessreviewresourcedatauploadsessioncontextdata.md create mode 100644 api-reference/beta/resources/customdataprovidedresourceaccessreviewuploadsession.md create mode 100644 api-reference/beta/resources/customdataprovidedresourcepayloads-accessreviewcontextdata.md create mode 100644 api-reference/beta/resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase.md create mode 100644 api-reference/beta/resources/customdataprovidedresourcepayloads-applydecisioncontextdata.md create mode 100644 api-reference/beta/resources/customdataprovidedresourcepayloads-calloutrequest.md create mode 100644 api-reference/beta/resources/customdataprovidedresourcepayloads-data.md diff --git a/.openpublishing.redirection.json b/.openpublishing.redirection.json index fc4365900dd..df1e2b5be7b 100644 --- a/.openpublishing.redirection.json +++ b/.openpublishing.redirection.json @@ -1,5 +1,15 @@ { "redirections": [ + { + "source_path": "api-reference/beta/resources/accessreviewdatauploadtriggercallbackdata.md", + "redirect_url": "/graph/api/resources/customdataprovidedresourcepayloads-data?view=graph-rest-beta", + "redirect_document_id": false + }, + { + "source_path": "api-reference/beta/resources/accessreviewresourcedatauploadsessioncontextdata.md", + "redirect_url": "/graph/api/resources/customdataprovidedresourcepayloads-accessreviewcontextdata?view=graph-rest-beta", + "redirect_document_id": false + }, { "source_path": "api-reference/beta/api/readingassignmentsubmission-get.md", "redirect_url": "api-reference/beta/api/reportsroot-list-readingassignmentsubmissions.md", diff --git a/api-reference/beta/api/customdataprovidedresource-post-uploadsessions.md b/api-reference/beta/api/customdataprovidedresource-post-uploadsessions.md index bdb00a0a3a0..b01eea45a43 100644 --- a/api-reference/beta/api/customdataprovidedresource-post-uploadsessions.md +++ b/api-reference/beta/api/customdataprovidedresource-post-uploadsessions.md @@ -16,6 +16,12 @@ Namespace: microsoft.graph Create a [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md) object. Only one upload session is allowed per reference instance (for example, access review instance) and [customDataProvidedResource](../resources/customdataprovidedresource.md) pair. Once you create an upload session, upload files, and complete the session, the data is processed and you cannot create another upload session for that same pair. If you encounter errors with files uploaded or need to start fresh, you can [delete the active upload session](accesspackageresource-delete-uploadsessions.md) to create a new one. +The following table lists the derived types of [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md) that can be created. Specify the `@odata.type` in the request body to indicate the derived type. + +|Derived type|Description| +|:---|:---| +|[customDataProvidedResourceAccessReviewUploadSession](../resources/customdataprovidedresourceaccessreviewuploadsession.md)|An upload session for access review scenarios.| + [!INCLUDE [national-cloud-support](../../includes/global-only.md)] ## Permissions @@ -56,9 +62,7 @@ You can specify the following properties when creating a **customDataProvidedRes |Property|Type|Description| |:---|:---|:---| -|source|String|The name of the Custom Data Provided Resource for which the customer is uploading data. Required.| -|type|String| The odata type representing the columns of the CSV that are expected to be uploaded in this session. The possible values are: `accessReviewDataUploadTriggerCallbackData`. Required.| -|data|[accessReviewResourceDataUploadSessionContextData](../resources/accessreviewresourcedatauploadsessioncontextdata.md)| Contains information about the access review definition and access review instance for which the data is being uploaded. Required.| +|data|[microsoft.graph.customDataProvidedResourcePayloads.data](../resources/customdataprovidedresourcepayloads-data.md)| Contains information about the context for which data is being uploaded. For access review scenarios, use [microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextData](../resources/customdataprovidedresourcepayloads-accessreviewcontextdata.md). Required.| ## Response @@ -69,6 +73,7 @@ If successful, this method returns a `201 Created` response code and a [customDa ### Request The following example shows a request. + # [HTTP](#tab/http) ``` http -POST /identityGovernance/entitlementManagement/accessPackageCatalogs/{accessPackageCatalogId}/accessPackageResources/{accessPackageResourceId}/uploadSessions/{customDataProvidedResourceUploadSessionId}/uploadFile +POST /identityGovernance/catalogs/{catalogId}/accessPackageResources/{accessPackageResourceId}/uploadSessions/{customDataProvidedResourceUploadSessionId}/uploadFile ``` ## Request headers @@ -46,14 +46,15 @@ POST /identityGovernance/entitlementManagement/accessPackageCatalogs/{accessPack |Name|Description| |:---|:---| |Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| -|Content-Type| multipart/form-data; boundary={your-boundary}. Required.| +|Content-Type|multipart/form-data; boundary={your-boundary}. Required.| ## Request body The body can contain a multipart message as shown in the example. -The columns in CSV should match the attributes of [accessReviewDataUploadTriggerCallbackData](../resources/accessreviewdatauploadtriggercallbackdata.md) object. +The columns in the CSV should match the following required properties: `PrincipalAADId`, `ResourceId`, `ResourceName`, `ResourceDescription`, `ResourceType`, `PermissionId`, `PermissionName`, `PermissionDescription`, `PermissionType`, `ResourceOwners[AAD users]`. ## Response + If successful, this action returns a `200 OK` response code and a [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md) in the response body. ## Examples @@ -69,20 +70,21 @@ The following example shows a request. } --> ```http -POST https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageCatalogs/{accessPackageCatalogId}/accessPackageResources/{accessPackageResourceId}/uploadSessions/{customDataProvidedResourceUploadSessionId}/uploadFile +POST https://graph.microsoft.com/beta/identityGovernance/catalogs/{catalogId}/accessPackageResources/{accessPackageResourceId}/uploadSessions/{customDataProvidedResourceUploadSessionId}/uploadFile Content-Type: multipart/form-data; boundary=MyPartBoundary198374 --MyPartBoundary198374 -Content-Disposition: form-data; name="file"; filename="valid.csv" +Content-Disposition: form-data; name="file"; filename="building-access-data.csv" Content-Type: application/octet-stream -PrincipalAADId,ResourceId,ResourceName,ResourceDescription,ResourceType,PermissionId,PermissionName,PermissionDescription,PermissionType,ResourceOwners -john.doe@contoso.com,550e8400-e29b-41d4-a716-446655440000,Building A,Main office building,Building,6ba7b810-9dad-11d1-80b4-00c04fd430c8,Access,Physical access to building,Physical,["admin@contoso.com"] -jane.doe@contoso.com,550e8400-e29b-41d4-a716-446655440001,Room 101,Conference room,Room,6ba7b810-9dad-11d1-80b4-00c04fd430c9,Reserve,Book conference room,Administrative,["admin@contoso.com","manager@contoso.com"] +principalId,principalType,permissionId,permissionName,permissionDescription,permissionType +550e8400-e29b-41d4-a716-446655440000,user,6ba7b810-9dad-11d1-80b4-00c04fd430c8,Access,Physical access to building,Physical +7c9e6679-7425-40de-944b-e07fc1f90ae7,user,6ba7b810-9dad-11d1-80b4-00c04fd430c9,Reserve,Book conference room,Administrative --MyPartBoundary198374 ``` # [JavaScript](#tab/javascript) + [!INCLUDE [sample-code](../includes/snippets/javascript/customdataprovidedresourceuploadsessionthisuploadfile-javascript-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)] @@ -103,22 +105,21 @@ HTTP/1.1 200 OK Content-Type: application/json { - "@odata.context": "https://graph.microsoft.com/beta/$metadata#microsoft.graph.customDataProvidedResourceUploadSession", + "@odata.context": "https://graph.microsoft.com/beta/$metadata#microsoft.graph.customDataProvidedResourceAccessReviewUploadSession", + "@odata.type": "#microsoft.graph.customDataProvidedResourceAccessReviewUploadSession", "id": "0b64df22-1a83-472c-9556-6c3dc41742b9", "referenceId": "ca24f9b9-5917-4971-9b5b-07aae0aa74e8", "status": "active", "isUploadDone": false, "createdDateTime": "2026-04-01T18:24:07.1484627Z", - "source": "BuildingAccessDataTIP", - "type": "#microsoft.graph.accessReviewDataUploadTriggerCallbackData", "stats": { "filesUploaded": 1, "totalBytesUploaded": 198374 }, "data": { - "@odata.type": "#microsoft.graph.accessReviewResourceDataUploadSessionContextData", - "accessReviewId": "f5744a40-bca0-4506-a286-a8afac513d1c", - "accessReviewInstanceId": "ca24f9b9-5917-4971-9b5b-07aae0aa74e8" + "@odata.type": "#microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextData", + "reviewDefinitionId": "f5744a40-bca0-4506-a286-a8afac513d1c", + "reviewInstanceId": "ca24f9b9-5917-4971-9b5b-07aae0aa74e8" }, "files": [ { @@ -130,4 +131,3 @@ Content-Type: application/json ] } ``` - diff --git a/api-reference/beta/resources/accesspackageassignmentresourcerole.md b/api-reference/beta/resources/accesspackageassignmentresourcerole.md index 900aa392dde..55064a55277 100644 --- a/api-reference/beta/resources/accesspackageassignmentresourcerole.md +++ b/api-reference/beta/resources/accesspackageassignmentresourcerole.md @@ -73,3 +73,4 @@ The following JSON representation shows the resource type. "section": "documentation", "tocPath": "" }--> + diff --git a/api-reference/beta/resources/accessreviewdatauploadtriggercallbackdata.md b/api-reference/beta/resources/accessreviewdatauploadtriggercallbackdata.md deleted file mode 100644 index daa1a3464d0..00000000000 --- a/api-reference/beta/resources/accessreviewdatauploadtriggercallbackdata.md +++ /dev/null @@ -1,54 +0,0 @@ ---- -title: "accessReviewDataUploadTriggerCallbackData resource type" -description: "The schematized representation of the CSV columns expected in the uploaded files." -author: "pratima-cloudknox" -ms.date: 10/09/2025 -ms.localizationpriority: medium -ms.subservice: "entra-id-governance" -doc_type: resourcePageType ---- - -# accessReviewDataUploadTriggerCallbackData resource type - -Namespace: microsoft.graph - -[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] - -This object represents the columns expected in the CSV file that is uploaded in a [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md). - - -Inherits from [customExtensionData](../resources/customextensiondata.md). - - -## Properties -| Property |Type| Description | -|:----------------------|:---|:-----------------------| -| permissionDescription |String| A description for the permission.| -| permissionId |String| The id of the permission assigned to this principal.| -| permissionName |String| The name of the permission assigned to this principal.| -| permissionType |String| The type of the permission assigned to this principal.| -| principalId |String| The id of the principal who has permissions on the custom data provided resource.| -| principalType |String| The type of the principal. The allowed values are "EntraIdUser". | - -## Relationships -None. - -## JSON representation -The following JSON representation shows the resource type. - -``` json -{ - "@odata.type": "#microsoft.graph.accessReviewDataUploadTriggerCallbackData", - "principalId": "String", - "principalType": "String", - "permissionId": "String", - "permissionName": "String", - "permissionDescription": "String", - "permissionType": "String" -} -``` - diff --git a/api-reference/beta/resources/accessreviewresourcedatauploadsessioncontextdata.md b/api-reference/beta/resources/accessreviewresourcedatauploadsessioncontextdata.md deleted file mode 100644 index 687bccab0a5..00000000000 --- a/api-reference/beta/resources/accessreviewresourcedatauploadsessioncontextdata.md +++ /dev/null @@ -1,43 +0,0 @@ ---- -title: "accessReviewResourceDataUploadSessionContextData resource type." -description: "Metadata related to the access review instance for which the customDataProvidedResourceUploadSession is created." -author: "pratima-cloudknox" -ms.date: 10/09/2025 -ms.localizationpriority: medium -ms.subservice: "entra-id-governance" -doc_type: resourcePageType ---- - -# accessReviewResourceDataUploadSessionContextData resource type - -Namespace: microsoft.graph - -[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] - -Metadata related to the access review instance for which the [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md) was created. - - -## Properties -|Property|Type|Description| -|:---|:---|:---| -|accessReviewId|String|The access review definition id.| -|accessReviewInstanceId|String|The access review instance id.| - -## Relationships -None. - -## JSON representation -The following JSON representation shows the resource type. - -``` json -{ - "@odata.type": "#microsoft.graph.accessReviewResourceDataUploadSessionContextData", - "accessReviewId": "String", - "accessReviewInstanceId": "String" -} -``` - diff --git a/api-reference/beta/resources/customdataprovidedresourceaccessreviewuploadsession.md b/api-reference/beta/resources/customdataprovidedresourceaccessreviewuploadsession.md new file mode 100644 index 00000000000..196f9a0ee7b --- /dev/null +++ b/api-reference/beta/resources/customdataprovidedresourceaccessreviewuploadsession.md @@ -0,0 +1,69 @@ +--- +title: "customDataProvidedResourceAccessReviewUploadSession resource type" +description: "Represents a concrete upload session for access review scenarios on a custom data provided resource." +author: "jaylenemartinez0" +ms.date: 05/12/2026 +ms.localizationpriority: medium +ms.subservice: "entra-id-governance" +doc_type: resourcePageType +--- + +# customDataProvidedResourceAccessReviewUploadSession resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents an upload session for access review scenarios on a [customDataProvidedResource](../resources/customdataprovidedresource.md). Use this type when uploading external access data for access reviews via the Bring Your Own Data (BYOD) flow. + +Inherits from [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md). + +## Methods + +This derived type supports the same methods as the base [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md) resource. For the list of supported operations, see the base type documentation. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|createdDateTime|DateTimeOffset|DateTime when the upload session was created. Read-only. Supports `$orderby`. Inherited from [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md).| +|data|[microsoft.graph.customDataProvidedResourcePayloads.data](../resources/customdataprovidedresourcepayloads-data.md)|An object containing the context for which this data is being uploaded. For access review upload sessions, this is of type [microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextData](../resources/customdataprovidedresourcepayloads-accessreviewcontextdata.md). Inherited from [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md).| +|id|String|Unique identifier of the upload session. Read-only. Inherited from [entity](../resources/entity.md).| +|isUploadDone|Boolean|Indicates if all the necessary files have been uploaded to this session. Inherited from [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md).| +|referenceId|String|The ID of the context for which data is being uploaded, for example, the access review instance ID. Supports `$filter (eq)`. Inherited from [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md).| +|stats|[customDataProvidedResourceUploadStats](../resources/customdataprovidedresourceuploadstats.md)|Metadata about the files uploaded in this upload session thus far. Inherited from [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md).| +|status|microsoft.graph.identityGovernance.customDataProvidedResourceUploadStatus|Status of the upload session. The possible values are: `active`, `complete`, `expired`, `unknownFutureValue`. Supports `$filter (eq)`. Inherited from [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md).| + +## Relationships + +|Relationship|Type|Description| +|:---|:---|:---| +|files|[customDataProvidedResourceFile](../resources/customdataprovidedresourcefile.md) collection|The files uploaded during this upload session. Supports `$expand` and `$expand` with nested `$filter` and `$orderby`. Inherited from [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md).| + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.customDataProvidedResourceAccessReviewUploadSession", + "id": "String (identifier)", + "status": "String", + "isUploadDone": "Boolean", + "stats": { + "@odata.type": "microsoft.graph.customDataProvidedResourceUploadStats" + }, + "createdDateTime": "String (timestamp)", + "referenceId": "String", + "data": { + "@odata.type": "microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextData" + } +} +``` diff --git a/api-reference/beta/resources/customdataprovidedresourcepayloads-accessreviewcontextdata.md b/api-reference/beta/resources/customdataprovidedresourcepayloads-accessreviewcontextdata.md new file mode 100644 index 00000000000..3f1acce75fb --- /dev/null +++ b/api-reference/beta/resources/customdataprovidedresourcepayloads-accessreviewcontextdata.md @@ -0,0 +1,46 @@ +--- +title: "accessReviewContextData resource type" +description: "Represents context data for access review upload session scenarios associated with a custom data provided resource." +author: "jaylenemartinez0" +ms.date: 05/12/2026 +ms.localizationpriority: medium +ms.subservice: "entra-id-governance" +doc_type: resourcePageType +--- + +# accessReviewContextData resource type + +Namespace: microsoft.graph.customDataProvidedResourcePayloads + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents context data for access review upload session scenarios associated with a [customDataProvidedResource](../resources/customdataprovidedresource.md). This type is used as the **data** payload when creating a [customDataProvidedResourceAccessReviewUploadSession](../resources/customdataprovidedresourceaccessreviewuploadsession.md) to specify which access review the uploaded data is for. + +Inherits from [microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextDataBase](../resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase.md). + + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|reviewDefinitionId|String|The unique identifier of the access review definition that this data is associated with. Inherited from [microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextDataBase](../resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase.md).| +|reviewInstanceId|String|The unique identifier of the access review instance that this data is associated with. Inherited from [microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextDataBase](../resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase.md).| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextData", + "reviewDefinitionId": "String", + "reviewInstanceId": "String" +} +``` + + diff --git a/api-reference/beta/resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase.md b/api-reference/beta/resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase.md new file mode 100644 index 00000000000..dd66f05cfd1 --- /dev/null +++ b/api-reference/beta/resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase.md @@ -0,0 +1,51 @@ +--- +title: "accessReviewContextDataBase resource type" +description: "Represents the abstract base for access review context data associated with a custom data provided resource." +author: "jaylenemartinez0" +ms.date: 05/12/2026 +ms.localizationpriority: medium +ms.subservice: "entra-id-governance" +doc_type: resourcePageType +--- + +# accessReviewContextDataBase resource type + +Namespace: microsoft.graph.customDataProvidedResourcePayloads + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents the abstract base for access review context data associated with a [customDataProvidedResource](../resources/customdataprovidedresource.md). Contains the access review definition and instance identifiers that link the uploaded data to a specific review. This is an abstract type from which the following types are derived. + +- [accessReviewContextData](../resources/customdataprovidedresourcepayloads-accessreviewcontextdata.md) +- [applyDecisionContextData](../resources/customdataprovidedresourcepayloads-applydecisioncontextdata.md) + +Inherits from [microsoft.graph.customDataProvidedResourcePayloads.data](../resources/customdataprovidedresourcepayloads-data.md). + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|reviewDefinitionId|String|The unique identifier of the access review definition that this data is associated with.| +|reviewInstanceId|String|The unique identifier of the access review instance that this data is associated with.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextDataBase", + "reviewDefinitionId": "String", + "reviewInstanceId": "String" +} +``` + diff --git a/api-reference/beta/resources/customdataprovidedresourcepayloads-applydecisioncontextdata.md b/api-reference/beta/resources/customdataprovidedresourcepayloads-applydecisioncontextdata.md new file mode 100644 index 00000000000..89736c78c0c --- /dev/null +++ b/api-reference/beta/resources/customdataprovidedresourcepayloads-applydecisioncontextdata.md @@ -0,0 +1,46 @@ +--- +title: "applyDecisionContextData resource type" +description: "Represents context data for applying access review decisions associated with a custom data provided resource." +author: "jaylenemartinez0" +ms.date: 05/18/2026 +ms.localizationpriority: medium +ms.subservice: "entra-id-governance" +doc_type: resourcePageType +--- + +# applyDecisionContextData resource type + +Namespace: microsoft.graph.customDataProvidedResourcePayloads + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents context data for the callback sent when batch apply decisions are triggered for a [customDataProvidedResource](../resources/customdataprovidedresource.md) in an access review. Contains the access review definition and instance identifiers so the callback receiver can correlate the batch apply result back to the specific review that initiated the operation. + +Inherits from [microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextDataBase](../resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase.md). + + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|reviewDefinitionId|String|The unique identifier of the access review definition that this data is associated with. Inherited from [microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextDataBase](../resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase.md).| +|reviewInstanceId|String|The unique identifier of the access review instance that this data is associated with. Inherited from [microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextDataBase](../resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase.md).| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.customDataProvidedResourcePayloads.applyDecisionContextData", + "reviewDefinitionId": "String", + "reviewInstanceId": "String" +} +``` + + diff --git a/api-reference/beta/resources/customdataprovidedresourcepayloads-calloutrequest.md b/api-reference/beta/resources/customdataprovidedresourcepayloads-calloutrequest.md new file mode 100644 index 00000000000..4efe9aeb1c8 --- /dev/null +++ b/api-reference/beta/resources/customdataprovidedresourcepayloads-calloutrequest.md @@ -0,0 +1,51 @@ +--- +title: "calloutRequest resource type" +description: "Represents the payload sent to a Logic App workflow when triggering a custom data provided resource upload." +author: "jaylenemartinez0" +ms.date: 05/12/2026 +ms.localizationpriority: medium +ms.subservice: "entra-id-governance" +doc_type: resourcePageType +--- + +# calloutRequest resource type + +Namespace: microsoft.graph.customDataProvidedResourcePayloads + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents the payload sent to a customer-managed Logic App workflow when a [customDataProvidedResource](../resources/customdataprovidedresource.md) upload is triggered. The envelope includes identifiers for the source, catalog, and resource, along with a data payload that provides the context for the callout. + +## Properties + +|Property|Type|Description| +|:---|:---|:---| +|catalogId|String|The unique identifier of the catalog that contains the custom data provided resource.| +|data|[microsoft.graph.customDataProvidedResourcePayloads.data](../resources/customdataprovidedresourcepayloads-data.md)|An object containing the context data for the callout, such as access review identifiers.| +|resourceId|String|The unique identifier of the custom data provided resource that the callout is for.| +|source|String|The source of the callout request, for example, `/identityGovernance/accessReviews`.| + +## Relationships + +None. + +## JSON representation + +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.customDataProvidedResourcePayloads.calloutRequest", + "source": "String", + "catalogId": "String", + "resourceId": "String", + "data": { + "@odata.type": "microsoft.graph.customDataProvidedResourcePayloads.data" + } +} +``` + diff --git a/api-reference/beta/resources/customdataprovidedresourcepayloads-data.md b/api-reference/beta/resources/customdataprovidedresourcepayloads-data.md new file mode 100644 index 00000000000..52a077c7349 --- /dev/null +++ b/api-reference/beta/resources/customdataprovidedresourcepayloads-data.md @@ -0,0 +1,42 @@ +--- +title: "data resource type" +description: "Represents the abstract base for data payloads associated with a custom data provided resource." +author: "jaylenemartinez0" +ms.date: 05/12/2026 +ms.localizationpriority: medium +ms.subservice: "entra-id-governance" +doc_type: resourcePageType +--- + +# data resource type + +Namespace: microsoft.graph.customDataProvidedResourcePayloads + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents the abstract base for data payloads associated with a [customDataProvidedResource](../resources/customdataprovidedresource.md). This is an abstract type from which the following type is derived. + +- [accessReviewContextDataBase](../resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase.md) + + +## Properties +None. + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.customDataProvidedResourcePayloads.data" +} +``` + + diff --git a/api-reference/beta/resources/customdataprovidedresourceuploadsession.md b/api-reference/beta/resources/customdataprovidedresourceuploadsession.md index a53248b56e9..ec49e89896f 100644 --- a/api-reference/beta/resources/customdataprovidedresourceuploadsession.md +++ b/api-reference/beta/resources/customdataprovidedresourceuploadsession.md @@ -14,35 +14,36 @@ Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Represents a [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md) created on a [customDataProvidedResource](../resources/customdataprovidedresource.md). For more information, see [Include custom data provided resource in the catalog for catalog user Access Reviews (Preview)](/entra/id-governance/custom-data-resource-access-reviews). +Represents an upload session created on a [customDataProvidedResource](../resources/customdataprovidedresource.md). This is an abstract type from which the following type is derived. +- [customDataProvidedResourceAccessReviewUploadSession](../resources/customdataprovidedresourceaccessreviewuploadsession.md) -Inherits from [entity](../resources/entity.md). +For more information, see [Include custom data provided resource in the catalog for catalog user Access Reviews (Preview)](/entra/id-governance/custom-data-resource-access-reviews). +Inherits from [entity](../resources/entity.md). ## Methods + |Method|Return type|Description| |:---|:---|:---| -|[Create](../api/customdataprovidedresource-post-uploadsessions.md)|[customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md)|Create a new customDataProvidedResourceUploadSession object.| -|[List](../api/accesspackageresource-list-uploadsessions.md)|[customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md) collection|Get a list of the customDataProvidedResourceUploadSession objects and their properties.| -|[Get](../api/customdataprovidedresourceuploadsession-get.md)|[customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md)|Read the properties and relationships of [customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md) object.| -|[Upload file](../api/customdataprovidedresourceuploadsession-uploadfile.md)|[customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md)|Upload a file to a customDataProvidedResourceUploadSession object.| -|[Update](../api/customdataprovidedresourceuploadsession-update.md)|[customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md)|Update the properties of a customDataProvidedResourceUploadSession object.| -|[Delete](../api/accesspackageresource-delete-uploadsessions.md)|None|Delete a customDataProvidedResourceUploadSession object.| +|[Create](../api/customdataprovidedresource-post-uploadsessions.md)|[customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md)|Create a new object type that is derived from **customDataProvidedResourceUploadSession**.| +|[List](../api/accesspackageresource-list-uploadsessions.md)|[customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md) collection|Get a list of objects that are derived from **customDataProvidedResourceUploadSession** and their properties.| +|[Get](../api/customdataprovidedresourceuploadsession-get.md)|[customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md)|Read the properties and relationships of an object type that is derived from **customDataProvidedResourceUploadSession**.| +|[Upload file](../api/customdataprovidedresourceuploadsession-uploadfile.md)|[customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md)|Upload a file to an object that is derived from **customDataProvidedResourceUploadSession**.| +|[Update](../api/customdataprovidedresourceuploadsession-update.md)|[customDataProvidedResourceUploadSession](../resources/customdataprovidedresourceuploadsession.md)|Update the properties of an object type that is derived from **customDataProvidedResourceUploadSession**.| +|[Delete](../api/accesspackageresource-delete-uploadsessions.md)|None|Delete an object type that is derived from **customDataProvidedResourceUploadSession**.| ## Properties |Property|Type|Description| |:---|:---|:---| |createdDateTime|DateTimeOffset|DateTime when the upload session was created. Read-only. Supports `$orderby`.| -|data|[customExtensionData](../resources/customextensiondata.md)|An object containing the context for which this data is being uploaded. Currently the only possible concrete type is [accessReviewResourceDataUploadSessionContextData](../resources/accessreviewresourcedatauploadsessioncontextdata.md)| -|id|String| Unique identifier of the upload session. Read-only.| -|isUploadDone|Boolean| Indicates if all the necessary files have been uploaded to this session.| -|referenceId|String|The ID of the context for which data is being uploaded, for example, the Access Review instance ID. Supports `$filter (`eq`)`.| -|source|String| The source of the access data. This should be set to the customdataprovidedresource's name when creating the session.| -|stats|[customDataProvidedResourceUploadStats](../resources/customdataprovidedresourceuploadstats.md)| Metadata about the files uploaded in this upload session thus far.| -|status|customDataProvidedResourceUploadStatus| Status of the upload session. The possible values are: `active`, `complete`, `expired`, `unknownFutureValue`. Supports `$filter (`eq`)`.| -|type|String| Schematized form of the expected CSV columns in the uploaded file. The only possible value currently is: `accessReviewDataUploadTriggerCallbackData`| +|data|[microsoft.graph.customDataProvidedResourcePayloads.data](../resources/customdataprovidedresourcepayloads-data.md)|An object containing the context for which this data is being uploaded.| +|id|String|Unique identifier of the upload session. Read-only.| +|isUploadDone|Boolean|Indicates if all the necessary files have been uploaded to this session.| +|referenceId|String|The ID of the context for which data is being uploaded, for example, the Access Review instance ID. Supports `$filter (eq)`.| +|stats|[customDataProvidedResourceUploadStats](../resources/customdataprovidedresourceuploadstats.md)|Metadata about the files uploaded in this upload session thus far.| +|status|microsoft.graph.identityGovernance.customDataProvidedResourceUploadStatus|Status of the upload session. The possible values are: `active`, `complete`, `expired`, `unknownFutureValue`. Supports `$filter (eq)`.| ## Relationships @@ -51,13 +52,15 @@ Inherits from [entity](../resources/entity.md). |files|[customDataProvidedResourceFile](../resources/customdataprovidedresourcefile.md) collection|The files uploaded during this upload session. Supports `$expand` and `$expand` with nested `$filter` and `$orderby`.| ## JSON representation + The following JSON representation shows the resource type. ``` json @@ -70,10 +73,9 @@ The following JSON representation shows the resource type. "@odata.type": "microsoft.graph.customDataProvidedResourceUploadStats" }, "createdDateTime": "String (timestamp)", - "source": "String", - "type": "String", "referenceId": "String", "data": { - "@odata.type": "microsoft.graph.customExtensionData" + "@odata.type": "microsoft.graph.customDataProvidedResourcePayloads.data" + } } ``` diff --git a/api-reference/beta/resources/customdataprovidedresourceuploadsessionrequest.md b/api-reference/beta/resources/customdataprovidedresourceuploadsessionrequest.md index a0c3eb2a6f4..c73dbc8208b 100644 --- a/api-reference/beta/resources/customdataprovidedresourceuploadsessionrequest.md +++ b/api-reference/beta/resources/customdataprovidedresourceuploadsessionrequest.md @@ -20,9 +20,7 @@ The request object used to create a [customDataProvidedResourceUploadSession](.. ## Properties |Property|Type|Description| |:---|:---|:---| -|data|[customExtensionData](./customExtensionData.md)|An object containing the context for which this data is being uploaded. Currently the only allowed value is [accessReviewResourceDataUploadSessionContextData](../resources/accessreviewresourcedatauploadsessioncontextdata.md)| -|source|String| The name of the CustomDataProvidedResource| -|type|String| The schema of the data that is expected in the CSV uploads in this session. The only currently supported value is `#microsoft.graph.accessReviewDataUploadTriggerCallbackData`| +|data|[microsoft.graph.customDataProvidedResourcePayloads.data](../resources/customdataprovidedresourcepayloads-data.md)|An object containing the context for which this data is being uploaded. For access review upload sessions, use [microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextData](../resources/customdataprovidedresourcepayloads-accessreviewcontextdata.md). Required.| ## Relationships None. @@ -37,10 +35,8 @@ The following JSON representation shows the resource type. ``` json { "@odata.type": "#microsoft.graph.customDataProvidedResourceUploadSessionRequest", - "source": "String", - "type": "String", "data": { - "@odata.type": "microsoft.graph.accessReviewResourceDataUploadSessionContextData" + "@odata.type": "microsoft.graph.customDataProvidedResourcePayloads.data" } } ``` diff --git a/api-reference/beta/resources/customextensiondata.md b/api-reference/beta/resources/customextensiondata.md index e1e7876bd5f..106e7cddd08 100644 --- a/api-reference/beta/resources/customextensiondata.md +++ b/api-reference/beta/resources/customextensiondata.md @@ -41,3 +41,4 @@ The following JSON representation shows the resource type. } ``` + diff --git a/api-reference/beta/resources/enums-identitygovernance.md b/api-reference/beta/resources/enums-identitygovernance.md index 4015d120ff7..0ee93b2cee6 100644 --- a/api-reference/beta/resources/enums-identitygovernance.md +++ b/api-reference/beta/resources/enums-identitygovernance.md @@ -36,6 +36,15 @@ Namespace: microsoft.graph.identityGovernance |failed| |unknownFutureValue| +### customDataProvidedResourceUploadStatus values + +|Member| +|:---| +|active| +|complete| +|expired| +|unknownFutureValue| + ### customTaskExtensionReplyMode values |Member| @@ -115,6 +124,15 @@ Namespace: microsoft.graph.identityGovernance |remove| |unknownFutureValue| +### principalType values + +|Member| +|:---| +|user| +|group| +|servicePrincipal| +|unknownFutureValue| + diff --git a/api-reference/beta/toc/identity-and-access/toc.yml b/api-reference/beta/toc/identity-and-access/toc.yml index cbadf43ca0d..fdb9e43aac5 100644 --- a/api-reference/beta/toc/identity-and-access/toc.yml +++ b/api-reference/beta/toc/identity-and-access/toc.yml @@ -1377,8 +1377,12 @@ items: href: ../../resources/accesspackagetextinputquestion.md - name: Access package user directory attribute store href: ../../resources/accesspackageuserdirectoryattributestore.md - - name: Access review data upload trigger callback data - href: ../../resources/accessreviewdatauploadtriggercallbackdata.md + - name: Access review context data + href: ../../resources/customdataprovidedresourcepayloads-accessreviewcontextdata.md + - name: Access review context data base + href: ../../resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase.md + - name: Apply decision context data + href: ../../resources/customdataprovidedresourcepayloads-applydecisioncontextdata.md - name: Approval settings href: ../../resources/approvalsettings.md - name: Approval stage @@ -1387,6 +1391,8 @@ items: href: ../../resources/assignmentreviewsettings.md - name: Azure active directory tenant href: ../../resources/azureactivedirectorytenant.md + - name: Callout request + href: ../../resources/customdataprovidedresourcepayloads-calloutrequest.md - name: Connected organization members href: ../../resources/connectedorganizationmembers.md - name: Connection info @@ -1417,6 +1423,8 @@ items: href: ../../resources/customextensionhandlerinstance.md - name: Custom extension stage setting href: ../../resources/customextensionstagesetting.md + - name: Data + href: ../../resources/customdataprovidedresourcepayloads-data.md - name: Domain identity source href: ../../resources/domainidentitysource.md - name: Entitlement management diff --git a/api-reference/beta/toc/toc.mapping.json b/api-reference/beta/toc/toc.mapping.json index 2333418203c..5337aa5352b 100644 --- a/api-reference/beta/toc/toc.mapping.json +++ b/api-reference/beta/toc/toc.mapping.json @@ -1467,6 +1467,7 @@ "accessPackageResourceRole", "accessPackageResource", "customDataProvidedResource", + "customDataProvidedResourceAccessReviewUploadSession", "accessPackageResourceEnvironment", "accessPackageResourceRequest", "accessPackageAssignmentRequestWorkflowExtension", @@ -1551,8 +1552,12 @@ "verifiedCredentialClaims", "verifiedCredentialData", "customDataProvidedResourceUploadSessionRequest", - "accessReviewDataUploadTriggerCallbackData", - "customDataProvidedResourceFile" + "customDataProvidedResourceFile", + "microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextData", + "microsoft.graph.customDataProvidedResourcePayloads.accessReviewContextDataBase", + "microsoft.graph.customDataProvidedResourcePayloads.applyDecisionContextData", + "microsoft.graph.customDataProvidedResourcePayloads.calloutRequest", + "microsoft.graph.customDataProvidedResourcePayloads.data" ] }, { diff --git a/changelog/Microsoft.IdentityGovernance.Insights.json b/changelog/Microsoft.IdentityGovernance.Insights.json index d23b84972e6..0a9e6dabc72 100644 --- a/changelog/Microsoft.IdentityGovernance.Insights.json +++ b/changelog/Microsoft.IdentityGovernance.Insights.json @@ -1,4 +1,4 @@ -{ +{ "changelog": [ { "ChangeList": [ @@ -10,7 +10,7 @@ "Description": "Added the **customDataProvidedResourceUploadStatus** enumeration type.", "Target": "customDataProvidedResourceUploadStatus" }, - { + { "Id": "4eed495b-2c70-473d-94bf-54275e48eb5a", "ApiChange": "Enumeration", "ChangedApiName": "principalType", @@ -83,6 +83,218 @@ "CreatedDateTime": "2026-04-29T20:32:18.2409731Z", "WorkloadArea": "Identity and access", "SubArea": "Governance" + }, + { + "ChangeList": [ + { + "Id": "d99d334f-fe03-4aa3-a872-98121ed4c9f9", + "ApiChange": "Resource", + "ChangedApiName": "accessReviewContextData", + "ChangeType": "Addition", + "Description": "Added the [accessReviewContextData](https://learn.microsoft.com/en-us/graph/api/resources/customdataprovidedresourcepayloads-accessreviewcontextdata?view=graph-rest-beta) resource.", + "Target": "accessReviewContextData" + }, + { + "Id": "d99d334f-fe03-4aa3-a872-98121ed4c9f9", + "ApiChange": "Resource", + "ChangedApiName": "calloutRequest", + "ChangeType": "Addition", + "Description": "Added the [calloutRequest](https://learn.microsoft.com/en-us/graph/api/resources/customdataprovidedresourcepayloads-calloutrequest?view=graph-rest-beta) resource.", + "Target": "calloutRequest" + }, + { + "Id": "d99d334f-fe03-4aa3-a872-98121ed4c9f9", + "ApiChange": "Resource", + "ChangedApiName": "data", + "ChangeType": "Addition", + "Description": "Added the [data](https://learn.microsoft.com/en-us/graph/api/resources/customdataprovidedresourcepayloads-data?view=graph-rest-beta) resource.", + "Target": "data" + }, + { + "Id": "d99d334f-fe03-4aa3-a872-98121ed4c9f9", + "ApiChange": "Resource", + "ChangedApiName": "applyDecisionContextData", + "ChangeType": "Addition", + "Description": "Added the [applyDecisionContextData](https://learn.microsoft.com/en-us/graph/api/resources/customdataprovidedresourcepayloads-applydecisioncontextdata?view=graph-rest-beta) resource.", + "Target": "applyDecisionContextData" + }, + { + "Id": "d99d334f-fe03-4aa3-a872-98121ed4c9f9", + "ApiChange": "Resource", + "ChangedApiName": "accessReviewContextDataBase", + "ChangeType": "Addition", + "Description": "Added the [accessReviewContextDataBase](https://learn.microsoft.com/en-us/graph/api/resources/customdataprovidedresourcepayloads-accessreviewcontextdatabase?view=graph-rest-beta) resource.", + "Target": "accessReviewContextDataBase" + }, + { + "Id": "d99d334f-fe03-4aa3-a872-98121ed4c9f9", + "ApiChange": "Property", + "ChangedApiName": "source", + "ChangeType": "Deletion", + "Description": "Removed the **source** property from the [customDataProvidedResourceUploadSessionRequest](https://learn.microsoft.com/en-us/graph/api/resources/customdataprovidedresourceuploadsessionrequest?view=graph-rest-beta) resource.", + "Target": "customDataProvidedResourceUploadSessionRequest" + }, + { + "Id": "d99d334f-fe03-4aa3-a872-98121ed4c9f9", + "ApiChange": "Property", + "ChangedApiName": "type", + "ChangeType": "Deletion", + "Description": "Removed the **type** property from the [customDataProvidedResourceUploadSessionRequest](https://learn.microsoft.com/en-us/graph/api/resources/customdataprovidedresourceuploadsessionrequest?view=graph-rest-beta) resource.", + "Target": "customDataProvidedResourceUploadSessionRequest" + }, + { + "Id": "d99d334f-fe03-4aa3-a872-98121ed4c9f9", + "ApiChange": "Resource", + "ChangedApiName": "customDataProvidedResourceAccessReviewUploadSession", + "ChangeType": "Addition", + "Description": "Added the [customDataProvidedResourceAccessReviewUploadSession](https://learn.microsoft.com/en-us/graph/api/resources/customdataprovidedresourceaccessreviewuploadsession?view=graph-rest-beta) resource.", + "Target": "customDataProvidedResourceAccessReviewUploadSession" + }, + { + "Id": "d99d334f-fe03-4aa3-a872-98121ed4c9f9", + "ApiChange": "Property", + "ChangedApiName": "source", + "ChangeType": "Deletion", + "Description": "Removed the **source** property from the [customDataProvidedResourceUploadSession](https://learn.microsoft.com/en-us/graph/api/resources/customdataprovidedresourceuploadsession?view=graph-rest-beta) resource.", + "Target": "customDataProvidedResourceUploadSession" + }, + { + "Id": "d99d334f-fe03-4aa3-a872-98121ed4c9f9", + "ApiChange": "Property", + "ChangedApiName": "type", + "ChangeType": "Deletion", + "Description": "Removed the **type** property from the [customDataProvidedResourceUploadSession](https://learn.microsoft.com/en-us/graph/api/resources/customdataprovidedresourceuploadsession?view=graph-rest-beta) resource.", + "Target": "customDataProvidedResourceUploadSession" + } + ], + "Id": "d99d334f-fe03-4aa3-a872-98121ed4c9f9", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-24T21:03:00.74585Z", + "WorkloadArea": "Identity and access", + "SubArea": "Governance" + }, + { + "ChangeList": [ + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Resource", + "ChangedApiName": "accessReviewDataUploadTriggerCallbackData", + "ChangeType": "Deletion", + "Description": "Removed the **accessReviewDataUploadTriggerCallbackData** resource.", + "Target": "accessReviewDataUploadTriggerCallbackData" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Resource", + "ChangedApiName": "accessReviewResourceDataUploadSessionContextData", + "ChangeType": "Deletion", + "Description": "Removed the **accessReviewResourceDataUploadSessionContextData** resource.", + "Target": "accessReviewResourceDataUploadSessionContextData" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Property", + "ChangedApiName": "source", + "ChangeType": "Deletion", + "Description": "Removed the **source** property from the [customDataProvidedResourceUploadSessionRequest](https://learn.microsoft.com/en-us/graph/api/resources/customDataProvidedResourceUploadSessionRequest?view=graph-rest-beta) resource.", + "Target": "customDataProvidedResourceUploadSessionRequest" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Property", + "ChangedApiName": "type", + "ChangeType": "Deletion", + "Description": "Removed the **type** property from the [customDataProvidedResourceUploadSessionRequest](https://learn.microsoft.com/en-us/graph/api/resources/customDataProvidedResourceUploadSessionRequest?view=graph-rest-beta) resource.", + "Target": "customDataProvidedResourceUploadSessionRequest" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Resource", + "ChangedApiName": "customExtensionData", + "ChangeType": "Deletion", + "Description": "Removed the **customExtensionData** resource.", + "Target": "customExtensionData" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Resource", + "ChangedApiName": "accessPackageAssignmentResourceRole", + "ChangeType": "Addition", + "Description": "Added the [accessPackageAssignmentResourceRole](https://learn.microsoft.com/en-us/graph/api/resources/accessPackageAssignmentResourceRole?view=graph-rest-beta) resource.", + "Target": "accessPackageAssignmentResourceRole" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Resource", + "ChangedApiName": "customDataProvidedResourceAccessReviewUploadSession", + "ChangeType": "Addition", + "Description": "Added the [customDataProvidedResourceAccessReviewUploadSession](https://learn.microsoft.com/en-us/graph/api/resources/customDataProvidedResourceAccessReviewUploadSession?view=graph-rest-beta) resource.", + "Target": "customDataProvidedResourceAccessReviewUploadSession" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Property", + "ChangedApiName": "source", + "ChangeType": "Deletion", + "Description": "Removed the **source** property from the [customDataProvidedResourceUploadSession](https://learn.microsoft.com/en-us/graph/api/resources/customDataProvidedResourceUploadSession?view=graph-rest-beta) resource.", + "Target": "customDataProvidedResourceUploadSession" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Property", + "ChangedApiName": "type", + "ChangeType": "Deletion", + "Description": "Removed the **type** property from the [customDataProvidedResourceUploadSession](https://learn.microsoft.com/en-us/graph/api/resources/customDataProvidedResourceUploadSession?view=graph-rest-beta) resource.", + "Target": "customDataProvidedResourceUploadSession" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Resource", + "ChangedApiName": "accessReviewContextData", + "ChangeType": "Addition", + "Description": "Added the [accessReviewContextData](https://learn.microsoft.com/en-us/graph/api/resources/customDataProvidedResourcePayloads-accessReviewContextData?view=graph-rest-beta) resource.", + "Target": "accessReviewContextData" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Resource", + "ChangedApiName": "accessReviewContextDataBase", + "ChangeType": "Addition", + "Description": "Added the [accessReviewContextDataBase](https://learn.microsoft.com/en-us/graph/api/resources/customDataProvidedResourcePayloads-accessReviewContextDataBase?view=graph-rest-beta) resource.", + "Target": "accessReviewContextDataBase" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Resource", + "ChangedApiName": "applyDecisionContextData", + "ChangeType": "Addition", + "Description": "Added the [applyDecisionContextData](https://learn.microsoft.com/en-us/graph/api/resources/customDataProvidedResourcePayloads-applyDecisionContextData?view=graph-rest-beta) resource.", + "Target": "applyDecisionContextData" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Resource", + "ChangedApiName": "calloutRequest", + "ChangeType": "Addition", + "Description": "Added the [calloutRequest](https://learn.microsoft.com/en-us/graph/api/resources/customDataProvidedResourcePayloads-calloutRequest?view=graph-rest-beta) resource.", + "Target": "calloutRequest" + }, + { + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "ApiChange": "Resource", + "ChangedApiName": "data", + "ChangeType": "Addition", + "Description": "Added the [data](https://learn.microsoft.com/en-us/graph/api/resources/customDataProvidedResourcePayloads-data?view=graph-rest-beta) resource.", + "Target": "data" + } + ], + "Id": "f16a0bc5-7bb2-44d2-8443-628856c27c0a", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-24T19:48:46.5063896Z", + "WorkloadArea": "Identity and access", + "SubArea": "Governance" } ] } From 083bebe1089a7b867011b0059980e4b4be4589b9 Mon Sep 17 00:00:00 2001 From: manjarisenthil Date: Wed, 24 Jun 2026 16:56:50 -0700 Subject: [PATCH 48/52] docs: add cloudNativeHtmlConversion to additionalDataOptions enum (beta + v1.0) (#29040) * docs: add cloudNativeHtmlConversion to additionalDataOptions enum (beta + v1.0) Add new cloudNativeHtmlConversion member to the additionalDataOptions enum documentation for eDiscoveryAddToReviewSetOperation resource type. Updated both beta and v1.0 API reference pages. Related schema promotion PR: https://dev.azure.com/msazure/One/_git/AD-AggregatorService-Workloads/pullrequest/16011447 * docs: add changelog entry for cloudNativeHtmlConversion (beta + v1.0) * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: add cloudNativeHtmlConversion to What's New (June 2026) * fix: replace invalid relative changelog links with full Learn URLs * docs: add enum section anchors to changelog links * docs: normalize changelog Learn URL format * docs: remove v1.0 view query from changelog link * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --- ...urity-ediscoveryaddtoreviewsetoperation.md | 3 +- ...urity-ediscoveryaddtoreviewsetoperation.md | 3 +- .../Microsoft.Compliance.Ediscovery.json | 36 +++++++++++++++++++ concepts/whats-new-overview.md | 4 +++ 4 files changed, 44 insertions(+), 2 deletions(-) diff --git a/api-reference/beta/resources/security-ediscoveryaddtoreviewsetoperation.md b/api-reference/beta/resources/security-ediscoveryaddtoreviewsetoperation.md index b4bfb7d9664..f075ed4de03 100644 --- a/api-reference/beta/resources/security-ediscoveryaddtoreviewsetoperation.md +++ b/api-reference/beta/resources/security-ediscoveryaddtoreviewsetoperation.md @@ -25,7 +25,7 @@ None. |Property|Type|Description| |:---|:---|:---| |action|[microsoft.graph.security.caseAction](../resources/security-caseoperation.md#caseaction-values)| The type of action the operation represents. The possible values are: `contentExport`, `applyTags`, `convertToPdf`, `index`, `estimateStatistics`, `addToReviewSet`, `holdUpdate`, `unknownFutureValue`, `purgeData`, `exportReport`, `exportResult`, `holdPolicySync`. Use the `Prefer: include-unknown-enum-members` request header to get the following values from this [evolvable enum](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations): `purgeData`, `exportReport`, `exportResult`, `holdPolicySync`. Inherited from [caseOperation](../resources/security-caseoperation.md).| -|additionalDataOptions|[microsoft.graph.security.additionalDataOptions](#additionaldataoptions-values)| The options to add items to the review set. The possible values are: `allVersions`, `linkedFiles`, `unknownFutureValue`, `advancedIndexing`, `listAttachments`, `htmlTranscripts`, `messageConversationExpansion`, `locationsWithoutHits`, `allItemsInFolder`. Use the `Prefer: include-unknown-enum-members` request header to get the following values from this [evolvable enum](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations): `advancedIndexing`, `listAttachments`, `htmlTranscripts`, `messageConversationExpansion`, `locationsWithoutHits`, `allItemsInFolder`.| +|additionalDataOptions|[microsoft.graph.security.additionalDataOptions](#additionaldataoptions-values)| The options to add items to the review set. The possible values are: `allVersions`, `linkedFiles`, `unknownFutureValue`, `advancedIndexing`, `listAttachments`, `htmlTranscripts`, `messageConversationExpansion`, `locationsWithoutHits`, `allItemsInFolder`, `cloudNativeHtmlConversion`. Use the `Prefer: include-unknown-enum-members` request header to get the following values from this [evolvable enum](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations): `advancedIndexing`, `listAttachments`, `htmlTranscripts`, `messageConversationExpansion`, `locationsWithoutHits`, `allItemsInFolder`, `cloudNativeHtmlConversion`.| |cloudAttachmentVersion|microsoft.graph.security.cloudAttachmentVersion| Specifies the number of most recent versions of cloud attachments to collect. The possible values are: `latest`, `recent10`, `recent100`, `all`, `unknownFutureValue`. | |completedDateTime|DateTimeOffset| The date and time the operation was completed. Inherited from [caseOperation](../resources/security-caseoperation.md).| |createdBy|[identitySet](../resources/identityset.md)| The user that created the operation. Inherited from [caseOperation](../resources/security-caseoperation.md).| @@ -51,6 +51,7 @@ None. |messageConversationExpansion| Include conversation context around a hit.| |locationsWithoutHits| Look for unindexed items even in locations without hits.| |allItemsInFolder| Include all content in the folder if the folder itself matches a query.| +|cloudNativeHtmlConversion| Convert items to cloud-native HTML format during review set collection.| ### itemsToInclude values diff --git a/api-reference/v1.0/resources/security-ediscoveryaddtoreviewsetoperation.md b/api-reference/v1.0/resources/security-ediscoveryaddtoreviewsetoperation.md index 6932b196af0..f48590221a3 100644 --- a/api-reference/v1.0/resources/security-ediscoveryaddtoreviewsetoperation.md +++ b/api-reference/v1.0/resources/security-ediscoveryaddtoreviewsetoperation.md @@ -25,7 +25,7 @@ None. |Property|Type|Description| |:---|:---|:---| |action|[microsoft.graph.security.caseAction](../resources/security-caseoperation.md#caseaction-values)| The type of action the operation represents. The possible values are: `contentExport`, `applyTags`, `convertToPdf`, `index`, `estimateStatistics`, `addToReviewSet`, `holdUpdate`, `unknownFutureValue`, `purgeData`, `exportReport`, `exportResult`, `holdPolicySync`. Use the `Prefer: include-unknown-enum-members` request header to get the following values from this [evolvable enum](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations): `purgeData`, `exportReport`, `exportResult`, `holdPolicySync`. Inherited from [caseOperation](../resources/security-caseoperation.md).| -|additionalDataOptions|[microsoft.graph.security.additionalDataOptions](#additionaldataoptions-values)| The options to add items to the review set. The possible values are: `allVersions`, `linkedFiles`, `unknownFutureValue`, `advancedIndexing`, `listAttachments`, `htmlTranscripts`, `messageConversationExpansion`, `locationsWithoutHits`, `allItemsInFolder`. Use the `Prefer: include-unknown-enum-members` request header to get the following values from this [evolvable enum](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations): `advancedIndexing`, `listAttachments`, `htmlTranscripts`, `messageConversationExpansion`, `locationsWithoutHits`, `allItemsInFolder`.| +|additionalDataOptions|[microsoft.graph.security.additionalDataOptions](#additionaldataoptions-values)| The options to add items to the review set. The possible values are: `allVersions`, `linkedFiles`, `unknownFutureValue`, `advancedIndexing`, `listAttachments`, `htmlTranscripts`, `messageConversationExpansion`, `locationsWithoutHits`, `allItemsInFolder`, `cloudNativeHtmlConversion`. Use the `Prefer: include-unknown-enum-members` request header to get the following values from this [evolvable enum](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations): `advancedIndexing`, `listAttachments`, `htmlTranscripts`, `messageConversationExpansion`, `locationsWithoutHits`, `allItemsInFolder`, `cloudNativeHtmlConversion`.| |cloudAttachmentVersion|microsoft.graph.security.cloudAttachmentVersion| Specifies the number of most recent versions of cloud attachments to collect. The possible values are: `latest`, `recent10`, `recent100`, `all`, `unknownFutureValue`. | |completedDateTime|DateTimeOffset| The date and time the operation was completed. Inherited from [caseOperation](../resources/security-caseoperation.md).| |createdBy|[identitySet](../resources/identityset.md)| The user that created the operation. Inherited from [caseOperation](../resources/security-caseoperation.md).| @@ -51,6 +51,7 @@ None. |messageConversationExpansion| Include conversation context around a hit.| |locationsWithoutHits| Look for unindexed items even in locations without hits.| |allItemsInFolder| Include all content in the folder if the folder itself matches a query.| +|cloudNativeHtmlConversion| Convert items to cloud-native HTML format during review set collection.| ### itemsToInclude values diff --git a/changelog/Microsoft.Compliance.Ediscovery.json b/changelog/Microsoft.Compliance.Ediscovery.json index b2f28be7762..3a75917a443 100644 --- a/changelog/Microsoft.Compliance.Ediscovery.json +++ b/changelog/Microsoft.Compliance.Ediscovery.json @@ -1,5 +1,41 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "bd38883e-6758-48cb-a74b-2c7ad2ec95c9", + "ApiChange": "Member", + "ChangedApiName": "cloudNativeHtmlConversion", + "ChangeType": "Addition", + "Description": "Added the `cloudNativeHtmlConversion` member to the [additionalDataOptions](https://learn.microsoft.com/graph/api/resources/security-ediscoveryaddtoreviewsetoperation?view=graph-rest-beta#additionaldataoptions-values) enumeration.", + "Target": "additionalDataOptions" + } + ], + "Id": "bd38883e-6758-48cb-a74b-2c7ad2ec95c9", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2026-06-24T17:33:16.7805181Z", + "WorkloadArea": "Security", + "SubArea": "eDiscovery" + }, + { + "ChangeList": [ + { + "Id": "bd38883e-6758-48cb-a74b-2c7ad2ec95c9", + "ApiChange": "Member", + "ChangedApiName": "cloudNativeHtmlConversion", + "ChangeType": "Addition", + "Description": "Added the `cloudNativeHtmlConversion` member to the [additionalDataOptions](https://learn.microsoft.com/graph/api/resources/security-ediscoveryaddtoreviewsetoperation#additionaldataoptions-values) enumeration.", + "Target": "additionalDataOptions" + } + ], + "Id": "bd38883e-6758-48cb-a74b-2c7ad2ec95c9", + "Cloud": "Prod", + "Version": "v1.0", + "CreatedDateTime": "2026-06-24T17:33:16.7805181Z", + "WorkloadArea": "Security", + "SubArea": "eDiscovery" + }, { "ChangeList": [ { diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index 93bd4215fa7..a3295bfd800 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -45,6 +45,9 @@ Added the [getSharePointApiUsage](/graph/api/reportroot-getsharepointapiusage?vi Added support for programmatic FIDO2 passkey registration. Use the [creationOptions](/graph/api/fido2authenticationmethod-creationoptions) function to get WebAuthn credential creation options, then complete registration by posting the new **publicKeyCredential** property to the [fido2AuthenticationMethod](/graph/api/resources/fido2authenticationmethod) resource. +### Security | eDiscovery + +Added the `cloudNativeHtmlConversion` member to the [additionalDataOptions](/graph/api/resources/security-ediscoveryaddtoreviewsetoperation#additionaldataoptions-values) enumeration. ### People and workplace intelligence @@ -123,6 +126,7 @@ Added the [identityAnalyticsRoot](/graph/api/resources/identityanalyticsroot?vie ### Security +- Added the `cloudNativeHtmlConversion` member to the [additionalDataOptions](/graph/api/resources/security-ediscoveryaddtoreviewsetoperation?view=graph-rest-beta&preserve-view=true#additionaldataoptions-values) enumeration. - Introduced [sensor migration](/graph/api/resources/security-sensormigration?view=graph-rest-beta&preserve-view=true) capabilities to migrate eligible Microsoft Defender for Identity sensors. - Use the [Create manualAlert](/graph/api/security-alert-post-manualalert?view=graph-rest-beta&preserve-view=true) method to create a manual security alert with specified entities and metadata. The new [manualAlert](/graph/api/resources/security-manualalert?view=graph-rest-beta&preserve-view=true) resource type derives from [alert](/graph/api/resources/security-alert?view=graph-rest-beta&preserve-view=true) and uses the [entityDefinitionInput](/graph/api/resources/security-entitydefinitioninput?view=graph-rest-beta&preserve-view=true) complex type to specify associated entities. - Added the **tenantId** property to the [userAccount](/graph/api/resources/security-useraccount?view=graph-rest-beta&preserve-view=true) resource to provide the Entra home tenant ID for the compromised user account indicated in a [security alert](/graph/api/resources/security-alert?view=graph-rest-beta&preserve-view=true) where the alert evidence is related to a [processEvidence](/graph/api/resources/security-processevidence?view=graph-rest-beta&preserve-view=true), [userEvidence](/graph/api/resources/security-userevidence?view=graph-rest-beta&preserve-view=true), or [mailboxEvidence](/graph/api/resources/security-mailboxevidence?view=graph-rest-beta&preserve-view=true). From 033b33d131bccb419ce3a512a388471db531f74f Mon Sep 17 00:00:00 2001 From: Shlomo Sagir <51323195+shsagir@users.noreply.github.com> Date: Thu, 25 Jun 2026 12:38:20 +0300 Subject: [PATCH 49/52] Merge to publish. (#29156) (#29163) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit * Add force user logoff option and policy update status API for Cloud PC provisioning policy (#28989) * add new property and function * remove generated files * add change log * Address Copilot review feedback * Address Copilot review feedback * Apply suggestions from code review * Apply suggestions from code review * Apply suggestions from code review * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * resolve merge connflict and update accordingly * Apply suggestions from code review --------- * Windows Updates New Enrollment States (#24135) * updatecategoryenrollmetninformation.md * updatemanagementenrollment.md * azureaddevice.md * changelog * cleanup * acrolinx * Update api-reference/beta/resources/windowsupdates-updatecategoryenrollmentinformation.md * Update api-reference/beta/resources/windowsupdates-updatecategoryenrollmentinformation.md * reviewer suggestions * typo fix * fixed build error * created enums.md file * heading change * build errors * Fixed build errors. * Fixing build issues. * Build issues * Apply suggestions from code review * Apply suggestions from code review * Update windowsupdates-enums.md * Apply suggestions from code review * Update windowsupdates-enums.md * Apply suggestions from code review * Updated response. * reverted changelog issues * reverted changelog to commit 37f2366 * reverted changelog to commit c4f4d79cfa76e4c41b5cf8da4f7e751d3c41c5e3 * re-added changelog entries for this PR * Update Microsoft.WindowsUpdates.json The changelog was showing incorrect entries. * Apply suggestions from code review * Apply suggestions from code review * Update changelog * Revert "Update changelog" This reverts commit df0209779bae59e2dbc398837f334e521dba546f. * update changelog attempt 2 * Apply suggestions from code review * Minor fixes. * Delete api-reference/beta/resources/windowsupdates-enums.md * Apply suggestions from code review * Apply suggestions from code review * Update enums-windowsupdates.md * Minor fixes. * Remove unintended changelog update * minor fixes * Update windowsupdates-azureaddevice.md * Potential fix for pull request finding * Update toc.mapping.json * Apply suggestions from code review * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review * Update windowsupdates-updatableassetenrollment.md * Apply suggestions from code review * Apply suggestion from @MSFT-Andrea * Update Microsoft.WindowsUpdates.json * Update whats-new-overview.md * Apply suggestions from code review * Update reference TOC * Apply suggestions from code review * Apply suggestions from code review * Update reference TOC * Potential fix for pull request finding * Potential fix for pull request finding --------- * Fix unsafe test.com domain in TLS inspection doc examples (#29134) * docs: add appRoleAssignmentRequired to agentIdentity resource (beta) (#29020) * docs: add appRoleAssignmentRequired to agentIdentity properties (beta) Adds `appRoleAssignmentRequired` to the Properties table and JSON representation of the agentIdentity resource type. The property is now included in the default projection following schema-Prod-beta.csdl PR 15981723 (Work Item 48856). * docs: add changelog entry for agentIdentity.appRoleAssignmentRequired (beta) Adds changelog entry for the `appRoleAssignmentRequired` property added to `agentIdentity` in the Microsoft Graph beta endpoint (schema-Prod-beta.csdl PR 15981723, Work Item 48856). * docs: update changelog WorkloadArea/SubArea for agentIdentity.appRoleAssignmentRequired * docs: add What's New entry for agentIdentity.appRoleAssignmentRequired (June 2026 beta) * Apply suggestion from @FaithOmbongi * docs: rebase PR changes onto latest main (resolve merge conflicts) * Readd what's new --------- * Resolve syncing conflicts from repo_sync_working_branch to main (#29136) * Use contractions in backuprestoreroot-list-onedriveforbusinessbrowsesessions * Use contractions in backuprestoreroot-list-sharepointbrowsesessions * Use contractions in basesitepage-list * Use contractions in bitlocker-list-recoverykeys * Use contractions in bookingappointment-update * Use contractions in bookingbusiness-list * Use contractions in bookingcustomer-get * Use contractions in bundle-removeitem * Use contractions in bundle-update * Use contractions in calendar-list-calendarview * Use contractions in call-keepalive * Use contractions in call-list-participants * Use contractions in call-reject * Use contractions in channel-get-members * Use contractions in chat-delete * Use contractions in chat-get * Use contractions in chat-get-members * Use contractions in chat-list-members * Use contractions in contenttype-delete * Use contractions in conversationmember-list * Use contractions in directory-list-customsecurityattributedefinitions * Use contractions in directoryobject-delta * Use contractions in domain-delete * Use contractions in domain-get-rootdomain * Use contractions in domain-list-federationconfiguration * Use contractions in drive-get-specialfolder * Use contractions in driveitem-copy * Use contractions in driveitem-createlink * Use contractions in driveitem-search * Use contractions in driveitemversion-get * Use contractions in educationclass-delta * Use contractions in educationclass-post * Use contractions in entitlementmanagementsettings-get * Use contractions in externalauthenticationmethodconfiguration-get * Use contractions in externalconnectors-externalgroup-update * Use contractions in externalconnectors-externalitem-get * Use contractions in externalconnectors-schema-get * Use contractions in fido2authenticationmethod-list * Use contractions in group-delta * Use contractions in group-list-acceptedsenders * Use contractions in group-list-calendarview * Use contractions in group-post-members * Use contractions in group-update * Use contractions in identitygovernance-insights-workflowsprocessedsummary * Use contractions in identitygovernance-task-get * Use contractions in identitygovernance-workflowtemplate-get * Use contractions in identityuserflowattributeassignment-update * Use contractions in inferenceclassification-list-overrides * Use contractions in internaldomainfederation-get * Use contractions in learningcourseactivity-update * Use contractions in list-get * Use contractions in listitem-delete * Use contractions in listitem-update * Use contractions in mailfolder-list-childfolders * Use contractions in message-createreply * Use contractions in message-createreplyall * Use contractions in message-delta * Use contractions in message-reply * Use contractions in message-replyall * Use contractions in offershiftrequest-get * Use contractions in onlinemeeting-createorget * Use contractions in orgcontact-delta * Use contractions in outlookuser-supportedtimezones * Use contractions in permissiongrantpolicy-update * Use contractions in permission-update * Use contractions in phoneauthenticationmethod-update * Use contractions in plannerassignedtotaskboardtaskformat-update * Use contractions in post-post-attachments * Use contractions in printdocument-createuploadsession * Use contractions in printer-update * Use contractions in printjob-cancel * Use contractions in projectrome-put-activity * Use contractions in qrcode-get * Use contractions in reportroot-getemailactivitycounts * Use contractions in reportroot-getemailactivityusercounts * Use contractions in reportroot-getemailactivityuserdetail * Use contractions in reportroot-getemailappusageappsusercounts * Use contractions in reportroot-getemailappusageusercounts * Use contractions in reportroot-getemailappusageuserdetail * Use contractions in reportroot-getm365appplatformusercounts * Use contractions in reportroot-getm365appusercounts * Use contractions in reportroot-getm365appuserdetail * Use contractions in reportroot-getmailboxusagedetail * Use contractions in reportroot-getmailboxusagemailboxcounts * Use contractions in reportroot-getmailboxusagequotastatusmailboxcounts * Use contractions in reportroot-getmailboxusagestorage * Use contractions in reportroot-getoffice365activationcounts * Use contractions in reportroot-getoffice365activationsuserdetail * Use contractions in reportroot-getoffice365activeusercounts * Use contractions in reportroot-getoffice365activeuserdetail * Use contractions in reportroot-getoffice365groupsactivitycounts * Use contractions in reportroot-getoffice365groupsactivitydetail * Use contractions in reportroot-getoffice365groupsactivityfilecounts * Use contractions in reportroot-getoffice365groupsactivitystorage * Use contractions in reportroot-getoffice365servicesusercounts * Use contractions in reportroot-getonedriveactivityfilecounts * Use contractions in reportroot-getonedriveactivityusercounts * Use contractions in reportroot-getonedriveactivityuserdetail * Use contractions in reportroot-getonedriveusageaccountcounts * Use contractions in reportroot-getonedriveusageaccountdetail * Use contractions in reportroot-getonedriveusagefilecounts * Use contractions in reportroot-getsharepointactivityfilecounts * Use contractions in reportroot-getsharepointactivitypages * Use contractions in reportroot-getsharepointactivityuserdetail * Use contractions in reportroot-getsharepointsiteusagedetail * Use contractions in reportroot-getsharepointsiteusagefilecounts * Use contractions in reportroot-getsharepointsiteusagepages * Use contractions in reportroot-getsharepointsiteusagesitecounts * Use contractions in reportroot-getsharepointsiteusagestorage * Use contractions in reportroot-getskypeforbusinessactivitycounts * Use contractions in reportroot-getskypeforbusinessactivityusercounts * Use contractions in reportroot-getskypeforbusinessactivityuserdetail * Use contractions in reportroot-getskypeforbusinessdeviceusagedistributionusercounts * Use contractions in reportroot-getskypeforbusinessdeviceusageuserdetail * Use contractions in reportroot-getskypeforbusinessorganizeractivityminutecounts * Use contractions in reportroot-getskypeforbusinessparticipantactivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivitycounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityusercounts * Use contractions in reportroot-getteamsdeviceusageusercounts * Use contractions in reportroot-getteamsuseractivityusercounts * Use contractions in reportroot-getteamsuseractivityuserdetail * Use contractions in reportroot-getyammeractivitycounts * Use contractions in reportroot-getyammeractivityusercounts * Use contractions in reportroot-getyammeractivityuserdetail * Use contractions in reportroot-getyammerdeviceusagedistributionusercounts * Use contractions in reportroot-getyammerdeviceusageusercounts * Use contractions in reportroot-getyammerdeviceusageuserdetail * Use contractions in reportroot-getyammergroupsactivitycounts * Use contractions in reportroot-getyammergroupsactivitydetail * Use contractions in riskdetection-get * Use contractions in riskyuser-get * Use contractions in schedulinggroup-delete * Use contractions in schemaextension-delete * Use contractions in security-ediscoverysearch-list-lastestimatestatisticsoperation * Use contractions in security-host-list-childhostpairs * Use contractions in security-host-list-parenthostpairs * Use contractions in security-hostpair-get * Use contractions in security-threatintelligence-list-sslcertificates * Use contractions in servicehealthissue-get * Use contractions in servicehealthissue-incidentreport * Use contractions in serviceprincipal-get * Use contractions in serviceupdatemessage-get * Use contractions in sharedwithchannelteaminfo-get * Use contractions in sharedwithchannelteaminfo-list-allowedmembers * Use contractions in simulationautomation-get * Use contractions in simulation-get * Use contractions in singlevaluelegacyextendedproperty-get * Use contractions in sitepage-publish * Use contractions in sitepage-update * Use contractions in site-search * Use contractions in subjectrightsrequest-list-notes * Use contractions in subscribedsku-list * Use contractions in synchronization-synchronizationschema-delete * Use contractions in synchronization-synchronizationschema-update * Use contractions in teamsapp-delete * Use contractions in teamsapp-publish * Use contractions in teamsapp-update * Use contractions in teamworktag-get * Use contractions in tenantappmanagementpolicy-update * Use contractions in tenantdatasecurityandgovernance-processcontentasync * Use contractions in timeoffrequest-get * Use contractions in todotask-delta * Use contractions in todotask-list-checklistitems * Use contractions in todotask-post-attachments * Use contractions in userdatasecurityandgovernance-processcontent * Use contractions in user-delta * Use contractions in user-findmeetingtimes * Use contractions in user-list-calendarview * Use contractions in user-list-mailfolders * Use contractions in user-list-messages * Use contractions in userregistrationdetails-get * Use contractions in user-sendmail * Use contractions in verticalsection-update * Use contractions in virtualeventregistrationconfiguration-list-questions * Use contractions in virtualeventregistration-list * Use contractions in virtualeventregistration-list-sessions * Use contractions in virtualeventwebinar-post-registrations * Use contractions in webpart-delete * Use contractions in workbook-tablerowoperationresult * Use contractions in x509certificateauthenticationmethodconfiguration-get * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review --------- * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- * Rename Tenants governance IA labels (#29036) * Update generated permissions tables with build 222221 (#29035) * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review * Update concepts/people-data-sources.md * Apply suggestions from code review * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding * Apply suggestions from code review * Apply suggestions from code review * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review --------- * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review * Apply suggestions from code review * Update whats-new-overview.md * Apply suggestions from code review * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md * Update api-reference/beta/api/filestoragecontainer-post-permissions.md * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review * Potential fix for pull request finding * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review --------- * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. * Apply suggestions from code review * Apply suggestions from code review --------- * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review --------- * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. * Apply suggestions from code review * Update whats-new-overview.md * Apply suggestions from code review * Apply suggestions from code review * Update team-put-schedule.md --------- * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review * Apply suggestions from code review * Potential fix for pull request finding * Apply suggestions from code review * Changelog fix. --------- * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) * split this into two ChangeList items (same record Id) * Fix guid * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 * Remove manually inserted code snippets * Apply suggestions from code review --------- --------- * Update simulation-update.md for requirement around simuation state (#9936) * Update simulation-update.md for requirement around simuation state Clarified simulation state as draft as required and updated description. * Minor fixes --------- * Publish main to live - reconcile divergence 2026-06-17 Sets live content identical to main to clear the squash-induced divergence. No manual live hotfixes existed. * Reconcile live to main (unblock auto-publish #29094) (#29095) * Publish main to live - reconcile divergence (refresh 2026-06-17 18:25) Sets live content identical to current main. main is authoritative; no live-only hotfixes. * Update tenantappmanagementpolicy-get.md --------- * Remove license-type availability banner from Graph beta eDiscovery overview Replaces preview/SKU-specific note in ediscovery-ediscoveryapioverview.md with neutral guidance pointing to Microsoft Purview eDiscovery documentation. Addresses customer confusion (IcM 51000001064141) about creating searches in standard eDiscovery cases via Graph. * Merge to publish. (#29097) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review --------- * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- * Rename Tenants governance IA labels (#29036) * Update generated permissions tables with build 222221 (#29035) * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review * Update concepts/people-data-sources.md * Apply suggestions from code review * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding * Apply suggestions from code review * Apply suggestions from code review * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review --------- * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review * Apply suggestions from code review * Update whats-new-overview.md * Apply suggestions from code review * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md * Update api-reference/beta/api/filestoragecontainer-post-permissions.md * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review * Potential fix for pull request finding * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review --------- * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. * Apply suggestions from code review * Apply suggestions from code review --------- * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review --------- * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. * Apply suggestions from code review * Update whats-new-overview.md * Apply suggestions from code review * Apply suggestions from code review * Update team-put-schedule.md --------- * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review * Apply suggestions from code review * Potential fix for pull request finding * Apply suggestions from code review * Changelog fix. --------- * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) * split this into two ChangeList items (same record Id) * Fix guid * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 * Remove manually inserted code snippets * Apply suggestions from code review --------- * Update reference TOC (#29058) * Update profilePropertySetting docs (#29038) * Updated according to KnutB's spec * Apply suggestions from code review * Update peopleadminsettings-list-profilepropertysettings.md * Update profilepropertysetting.md * Move extended Delete description from resource table to API topic * Apply suggestion from @MSFT-Andrea * Potential fix for pull request finding --------- * Update generated permissions tables with build 222741 (#29057) * Update generated permissions tables with build 222558 (#29051) * Revise traceRouteHop availability in callRecord docs (#29055) * Revise traceRouteHop availability in callRecord docs * Apply suggestions from code review * Apply suggestions from code review --------- * Update whats-new-overview.md (#29010) * Update whats-new-overview.md * Update whats-new-overview.md --------- * Update pull request template to remove documentation plan requirement (#29069) Removed the requirement to attach the documentation plan for AI-assisted docs authoring. * 2026-06-15: Automated permissions reference update (#29068) * Update permissions reference * Correct errors in permissions reference --------- * Update generated permissions tables with build 222982 (#29067) * Update whats-new-overview.md (#29064) * Update whats-new-overview.md * Update whats-new-overview.md * Potential fix for pull request finding --------- * Add tenantId property to userAccount resource (#28845) * Add tenantId field to security user account resource Added tenantId field to user account resource details. * Update userAccount resource date and add tenantId * Update date for security userAccount resource * Update changelog with new API changes Added new changelog entries for tenantId and categories properties in userAccount resource. * Apply review suggestions: update changelog dates and add What's New entry for tenantId on userAccount * Apply suggestions from code review * Apply suggestions from code review --------- * Add mergeIncidents and moveAlerts v1.0 API docs (#28851) * Add mergeIncidents and moveAlerts v1.0 API docs Add v1.0 documentation for security action endpoints: - API pages: security-incident-mergeincidents.md, security-alert-movealerts.md - Resource pages: security-mergeresponse.md, security-correlationreason.md - Permission and RBAC include files - Update security-incident.md and security-alert.md Methods tables - Update v1.0 toc.mapping.json with new complex types - Add v1.0 changelog entries for all new artifacts * Fix comments * Apply suggestion from @FaithOmbongi * Update what's new --------- * Update reference TOC (#29071) * Update people doc (#29023) * Updated people & workplace intelligence document according to Knut Brandrud's proposal reviewed within our team. * Minor typo * Address review comments in social intelligence overview * Apply remaining review thread doc fixes * minor date fix * date --------- * Add isVisible property to lpc v1.0 (#28915) * Add isVisible property to lpc v1.0 * Apply suggestions from code review * Apply suggestions from code review * Update Microsoft.People.json * Apply suggestions from code review * Apply suggestion from @Danipocket --------- * Apply simulation-update v1.0 PR #9936 changes to beta file (#29077) * Remove unsupported expand query from getRetentionLabel docs (#29080) * Update generated files with build 223158 (#29075) * Resolve syncing conflicts from repo_sync_working_branch to main (#29076) * Enhance clarity in API documentation by updating request and response example phrasing across multiple files * Apply suggestions from code review * Fix trailing pipe tables 1.0 (#9930) * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudclipboardroot-list-items * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in itemactivitystat-getactivitybyinterval * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in tablecolumncollection-add * Fix trailing pipe formatting in user-findmeetingtimes * Apply suggestions from code review --------- * Fix missing closing codeblock beta (#9919) * Fix formatting of HTTP request example in accesspackageresource-list-uploadsessions.md * Fix missing closing code block in security-labelsroot-delete-citations.md * Fix missing closing code block in singlevaluelegacyextendedproperty-get.md * Fix missing closing code block in usersettings-list-windows.md * Fix missing closing code block in webapplicationfirewallprovider-verify.md * Fix missing closing code block in windowssetting-get.md * Fix missing closing code block in windowssetting-list-instances.md * fix(beta api): close malformed http code fence in windowssettinginstance-get * Apply suggestions from code review --------- * Update synchronization-synchronization-list-templates.md (#9922) Update headings from H3 to H2. * Update https://github.com/microsoftgraph/microsoft-graph-docs-contrib/edit/main/api-reference/v1.0/api/synchronization-synchronizationtemplate-get.md (#9923) Update headings from H3 to H2. * Update synchronization-synchronizationtemplate-update.md (#9924) Update headings from H3 to H2. * Update eventmessage-post-attachments.md (#9926) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update event-post-attachments.md (#9925) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update educationassignment-list-resources.md (#9927) Update formatting * Update provisioningobjectsummary-list.md (#9928) Fix typo in error response example section * Fix trailing pipe tables beta (#9929) * Fix trailing pipe formatting in b2cidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bookingbusiness-update * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudpc-retrievecloudpccountbystatus * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in contenttype-associatewithhubsites * Fix trailing pipe formatting in customdataprovidedresourceuploadsession-uploadfile * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in ediscovery-noncustodialdatasource-post * Fix trailing pipe formatting in get-device-command-status * Fix trailing pipe formatting in governancerolesetting-update * Fix trailing pipe formatting in industrydata-inboundapiflow-post * Fix trailing pipe formatting in itemactivity-getbyinterval * Fix trailing pipe formatting in listitem-createlink * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in message-createreply * Fix trailing pipe formatting in networkaccess-reports-getdestinationsummaries * Fix trailing pipe formatting in networkaccess-reports-getdeviceusagesummary * Fix trailing pipe formatting in pagetemplate-delete * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in rbacapplication-post-roleassignmentschedulerequests * Fix trailing pipe formatting in security-collaborationroot-list-analyzedemails * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in send-device-command * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in team-sendactivitynotification * Fix trailing pipe formatting in termstore-relation-post * Fix trailing pipe formatting in user-list-devices * Fix trailing pipe formatting in user-sendmail * Fix trailing pipe formatting in webpart-delete --------- * Fix missing closing codeblock 1.0 (#9920) * Fix missing closing http fence in security-auditlogquery-list-records * Fix missing closing http fence in userprotectionscopecontainer-compute * Fix missing closing http fence in usersettings-list-windows --------- * Update date range (#9931) When requesting a date over 28 days the API returns: "Invalid date value specified: 2026-04-06. Only support data for the past 28 days." * Correct date range for email activity report (#9932) https://github.com/microsoftgraph/microsoft-graph-docs-contrib/pull/9931/changes * Ch… Signed-off-by: dependabot[bot] Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: danny1718 Co-authored-by: Danni Zhao Co-authored-by: MSFT-Andrea Co-authored-by: angiechen22 <111081743+angiechen22@users.noreply.github.com> Co-authored-by: Daniela Bonilla Montero <92937694+Danielabom@users.noreply.github.com> Co-authored-by: Daniela Bonilla Montero Co-authored-by: araqueno Co-authored-by: araqueno <118419398+araqueno@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: learn-build-service-prod[bot] <113403604+learn-build-service-prod[bot]@users.noreply.github.com> Co-authored-by: Jarbas Horst <26866873+JarbasHorst@users.noreply.github.com> Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Learn Build Service GitHub App Co-authored-by: Vipul <84970543+VipulMSFT@users.noreply.github.com> Co-authored-by: Nick Robinson Co-authored-by: Matthew M. Co-authored-by: Yuvalabiri <154335961+Yuvalabiri@users.noreply.github.com> Co-authored-by: Ruth Waithera Co-authored-by: Jarbas Horst Co-authored-by: Jarbas Horst Co-authored-by: Ryutaro Koma Co-authored-by: Micah Warren <26724012+MicahWW@users.noreply.github.com> Co-authored-by: masonw1211 <31712004+masonw1211@users.noreply.github.com> Co-authored-by: Mason Wolff Co-authored-by: srinivaspadala-msft Co-authored-by: Anton Vanco <254866915+antonvano@users.noreply.github.com> Co-authored-by: Copilot Co-authored-by: Samuel Mwangi Co-authored-by: Samuel Mwangi (from Dev Box) Co-authored-by: Kimani Mwangi Co-authored-by: Hiro7 <75809971+garchiro7@users.noreply.github.com> Co-authored-by: Simran Moolchandaney <66736756+simoolchandaney@users.noreply.github.com> Co-authored-by: Simran Moolchandaney (from Dev Box) Co-authored-by: Jason Johnston Co-authored-by: myra-ramdenbourg <108485108+myra-ramdenbourg@users.noreply.github.com> Co-authored-by: Alexander Filipin Co-authored-by: Alexander Filipin Co-authored-by: Eunice Waweru <73849846+msewaweru@users.noreply.github.com> Co-authored-by: Ortagus Winfrey <85191667+OWinfreyATL@users.noreply.github.com> Co-authored-by: prasadpatil111 <284865846+prasadpatil111@users.noreply.github.com> Co-authored-by: Prasad Patil Co-authored-by: VISHNU VARDHAN PACHVA <67050501+Vishnu369@users.noreply.github.com> Co-authored-by: Vishnu Vardhan Pachva Co-authored-by: Reeza Ali <223746809+ReezaAli149@users.noreply.github.com> Co-authored-by: Yossi Bruss <287477490+yossibruss-ms@users.noreply.github.com> Co-authored-by: Yossi Bruss Co-authored-by: Yossi Bruss Co-authored-by: aditiijj Co-authored-by: Aditi Jain Co-authored-by: aditiijj <232662544+aditiijj@users.noreply.github.com> Co-authored-by: Ch@ps <61343268+Subham-RKB@users.noreply.github.com> Co-authored-by: schapagain Co-authored-by: ireneren0123 Co-authored-by: Irene Ren Co-authored-by: Nnachtomy Co-authored-by: Nnachtomy <258772109+Nnachtomy@users.noreply.github.com> Co-authored-by: Amar Koni <160498064+akgraph@users.noreply.github.com> Co-authored-by: Amar Koni (from Dev Box) Co-authored-by: Luca Spolidoro [MSFT] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> From c4a3b575af38ef4b0af545c396b7b97120f1e9b1 Mon Sep 17 00:00:00 2001 From: Shlomo Sagir <51323195+shsagir@users.noreply.github.com> Date: Thu, 25 Jun 2026 12:47:21 +0300 Subject: [PATCH 50/52] Merge to publish. (#29156) (#29164) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit * Add force user logoff option and policy update status API for Cloud PC provisioning policy (#28989) * add new property and function * remove generated files * add change log * Address Copilot review feedback * Address Copilot review feedback * Apply suggestions from code review * Apply suggestions from code review * Apply suggestions from code review * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * resolve merge connflict and update accordingly * Apply suggestions from code review --------- * Windows Updates New Enrollment States (#24135) * updatecategoryenrollmetninformation.md * updatemanagementenrollment.md * azureaddevice.md * changelog * cleanup * acrolinx * Update api-reference/beta/resources/windowsupdates-updatecategoryenrollmentinformation.md * Update api-reference/beta/resources/windowsupdates-updatecategoryenrollmentinformation.md * reviewer suggestions * typo fix * fixed build error * created enums.md file * heading change * build errors * Fixed build errors. * Fixing build issues. * Build issues * Apply suggestions from code review * Apply suggestions from code review * Update windowsupdates-enums.md * Apply suggestions from code review * Update windowsupdates-enums.md * Apply suggestions from code review * Updated response. * reverted changelog issues * reverted changelog to commit 37f2366 * reverted changelog to commit c4f4d79cfa76e4c41b5cf8da4f7e751d3c41c5e3 * re-added changelog entries for this PR * Update Microsoft.WindowsUpdates.json The changelog was showing incorrect entries. * Apply suggestions from code review * Apply suggestions from code review * Update changelog * Revert "Update changelog" This reverts commit df0209779bae59e2dbc398837f334e521dba546f. * update changelog attempt 2 * Apply suggestions from code review * Minor fixes. * Delete api-reference/beta/resources/windowsupdates-enums.md * Apply suggestions from code review * Apply suggestions from code review * Update enums-windowsupdates.md * Minor fixes. * Remove unintended changelog update * minor fixes * Update windowsupdates-azureaddevice.md * Potential fix for pull request finding * Update toc.mapping.json * Apply suggestions from code review * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review * Update windowsupdates-updatableassetenrollment.md * Apply suggestions from code review * Apply suggestion from @MSFT-Andrea * Update Microsoft.WindowsUpdates.json * Update whats-new-overview.md * Apply suggestions from code review * Update reference TOC * Apply suggestions from code review * Apply suggestions from code review * Update reference TOC * Potential fix for pull request finding * Potential fix for pull request finding --------- * Fix unsafe test.com domain in TLS inspection doc examples (#29134) * docs: add appRoleAssignmentRequired to agentIdentity resource (beta) (#29020) * docs: add appRoleAssignmentRequired to agentIdentity properties (beta) Adds `appRoleAssignmentRequired` to the Properties table and JSON representation of the agentIdentity resource type. The property is now included in the default projection following schema-Prod-beta.csdl PR 15981723 (Work Item 48856). * docs: add changelog entry for agentIdentity.appRoleAssignmentRequired (beta) Adds changelog entry for the `appRoleAssignmentRequired` property added to `agentIdentity` in the Microsoft Graph beta endpoint (schema-Prod-beta.csdl PR 15981723, Work Item 48856). * docs: update changelog WorkloadArea/SubArea for agentIdentity.appRoleAssignmentRequired * docs: add What's New entry for agentIdentity.appRoleAssignmentRequired (June 2026 beta) * Apply suggestion from @FaithOmbongi * docs: rebase PR changes onto latest main (resolve merge conflicts) * Readd what's new --------- * Resolve syncing conflicts from repo_sync_working_branch to main (#29136) * Use contractions in backuprestoreroot-list-onedriveforbusinessbrowsesessions * Use contractions in backuprestoreroot-list-sharepointbrowsesessions * Use contractions in basesitepage-list * Use contractions in bitlocker-list-recoverykeys * Use contractions in bookingappointment-update * Use contractions in bookingbusiness-list * Use contractions in bookingcustomer-get * Use contractions in bundle-removeitem * Use contractions in bundle-update * Use contractions in calendar-list-calendarview * Use contractions in call-keepalive * Use contractions in call-list-participants * Use contractions in call-reject * Use contractions in channel-get-members * Use contractions in chat-delete * Use contractions in chat-get * Use contractions in chat-get-members * Use contractions in chat-list-members * Use contractions in contenttype-delete * Use contractions in conversationmember-list * Use contractions in directory-list-customsecurityattributedefinitions * Use contractions in directoryobject-delta * Use contractions in domain-delete * Use contractions in domain-get-rootdomain * Use contractions in domain-list-federationconfiguration * Use contractions in drive-get-specialfolder * Use contractions in driveitem-copy * Use contractions in driveitem-createlink * Use contractions in driveitem-search * Use contractions in driveitemversion-get * Use contractions in educationclass-delta * Use contractions in educationclass-post * Use contractions in entitlementmanagementsettings-get * Use contractions in externalauthenticationmethodconfiguration-get * Use contractions in externalconnectors-externalgroup-update * Use contractions in externalconnectors-externalitem-get * Use contractions in externalconnectors-schema-get * Use contractions in fido2authenticationmethod-list * Use contractions in group-delta * Use contractions in group-list-acceptedsenders * Use contractions in group-list-calendarview * Use contractions in group-post-members * Use contractions in group-update * Use contractions in identitygovernance-insights-workflowsprocessedsummary * Use contractions in identitygovernance-task-get * Use contractions in identitygovernance-workflowtemplate-get * Use contractions in identityuserflowattributeassignment-update * Use contractions in inferenceclassification-list-overrides * Use contractions in internaldomainfederation-get * Use contractions in learningcourseactivity-update * Use contractions in list-get * Use contractions in listitem-delete * Use contractions in listitem-update * Use contractions in mailfolder-list-childfolders * Use contractions in message-createreply * Use contractions in message-createreplyall * Use contractions in message-delta * Use contractions in message-reply * Use contractions in message-replyall * Use contractions in offershiftrequest-get * Use contractions in onlinemeeting-createorget * Use contractions in orgcontact-delta * Use contractions in outlookuser-supportedtimezones * Use contractions in permissiongrantpolicy-update * Use contractions in permission-update * Use contractions in phoneauthenticationmethod-update * Use contractions in plannerassignedtotaskboardtaskformat-update * Use contractions in post-post-attachments * Use contractions in printdocument-createuploadsession * Use contractions in printer-update * Use contractions in printjob-cancel * Use contractions in projectrome-put-activity * Use contractions in qrcode-get * Use contractions in reportroot-getemailactivitycounts * Use contractions in reportroot-getemailactivityusercounts * Use contractions in reportroot-getemailactivityuserdetail * Use contractions in reportroot-getemailappusageappsusercounts * Use contractions in reportroot-getemailappusageusercounts * Use contractions in reportroot-getemailappusageuserdetail * Use contractions in reportroot-getm365appplatformusercounts * Use contractions in reportroot-getm365appusercounts * Use contractions in reportroot-getm365appuserdetail * Use contractions in reportroot-getmailboxusagedetail * Use contractions in reportroot-getmailboxusagemailboxcounts * Use contractions in reportroot-getmailboxusagequotastatusmailboxcounts * Use contractions in reportroot-getmailboxusagestorage * Use contractions in reportroot-getoffice365activationcounts * Use contractions in reportroot-getoffice365activationsuserdetail * Use contractions in reportroot-getoffice365activeusercounts * Use contractions in reportroot-getoffice365activeuserdetail * Use contractions in reportroot-getoffice365groupsactivitycounts * Use contractions in reportroot-getoffice365groupsactivitydetail * Use contractions in reportroot-getoffice365groupsactivityfilecounts * Use contractions in reportroot-getoffice365groupsactivitystorage * Use contractions in reportroot-getoffice365servicesusercounts * Use contractions in reportroot-getonedriveactivityfilecounts * Use contractions in reportroot-getonedriveactivityusercounts * Use contractions in reportroot-getonedriveactivityuserdetail * Use contractions in reportroot-getonedriveusageaccountcounts * Use contractions in reportroot-getonedriveusageaccountdetail * Use contractions in reportroot-getonedriveusagefilecounts * Use contractions in reportroot-getsharepointactivityfilecounts * Use contractions in reportroot-getsharepointactivitypages * Use contractions in reportroot-getsharepointactivityuserdetail * Use contractions in reportroot-getsharepointsiteusagedetail * Use contractions in reportroot-getsharepointsiteusagefilecounts * Use contractions in reportroot-getsharepointsiteusagepages * Use contractions in reportroot-getsharepointsiteusagesitecounts * Use contractions in reportroot-getsharepointsiteusagestorage * Use contractions in reportroot-getskypeforbusinessactivitycounts * Use contractions in reportroot-getskypeforbusinessactivityusercounts * Use contractions in reportroot-getskypeforbusinessactivityuserdetail * Use contractions in reportroot-getskypeforbusinessdeviceusagedistributionusercounts * Use contractions in reportroot-getskypeforbusinessdeviceusageuserdetail * Use contractions in reportroot-getskypeforbusinessorganizeractivityminutecounts * Use contractions in reportroot-getskypeforbusinessparticipantactivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivitycounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityusercounts * Use contractions in reportroot-getteamsdeviceusageusercounts * Use contractions in reportroot-getteamsuseractivityusercounts * Use contractions in reportroot-getteamsuseractivityuserdetail * Use contractions in reportroot-getyammeractivitycounts * Use contractions in reportroot-getyammeractivityusercounts * Use contractions in reportroot-getyammeractivityuserdetail * Use contractions in reportroot-getyammerdeviceusagedistributionusercounts * Use contractions in reportroot-getyammerdeviceusageusercounts * Use contractions in reportroot-getyammerdeviceusageuserdetail * Use contractions in reportroot-getyammergroupsactivitycounts * Use contractions in reportroot-getyammergroupsactivitydetail * Use contractions in riskdetection-get * Use contractions in riskyuser-get * Use contractions in schedulinggroup-delete * Use contractions in schemaextension-delete * Use contractions in security-ediscoverysearch-list-lastestimatestatisticsoperation * Use contractions in security-host-list-childhostpairs * Use contractions in security-host-list-parenthostpairs * Use contractions in security-hostpair-get * Use contractions in security-threatintelligence-list-sslcertificates * Use contractions in servicehealthissue-get * Use contractions in servicehealthissue-incidentreport * Use contractions in serviceprincipal-get * Use contractions in serviceupdatemessage-get * Use contractions in sharedwithchannelteaminfo-get * Use contractions in sharedwithchannelteaminfo-list-allowedmembers * Use contractions in simulationautomation-get * Use contractions in simulation-get * Use contractions in singlevaluelegacyextendedproperty-get * Use contractions in sitepage-publish * Use contractions in sitepage-update * Use contractions in site-search * Use contractions in subjectrightsrequest-list-notes * Use contractions in subscribedsku-list * Use contractions in synchronization-synchronizationschema-delete * Use contractions in synchronization-synchronizationschema-update * Use contractions in teamsapp-delete * Use contractions in teamsapp-publish * Use contractions in teamsapp-update * Use contractions in teamworktag-get * Use contractions in tenantappmanagementpolicy-update * Use contractions in tenantdatasecurityandgovernance-processcontentasync * Use contractions in timeoffrequest-get * Use contractions in todotask-delta * Use contractions in todotask-list-checklistitems * Use contractions in todotask-post-attachments * Use contractions in userdatasecurityandgovernance-processcontent * Use contractions in user-delta * Use contractions in user-findmeetingtimes * Use contractions in user-list-calendarview * Use contractions in user-list-mailfolders * Use contractions in user-list-messages * Use contractions in userregistrationdetails-get * Use contractions in user-sendmail * Use contractions in verticalsection-update * Use contractions in virtualeventregistrationconfiguration-list-questions * Use contractions in virtualeventregistration-list * Use contractions in virtualeventregistration-list-sessions * Use contractions in virtualeventwebinar-post-registrations * Use contractions in webpart-delete * Use contractions in workbook-tablerowoperationresult * Use contractions in x509certificateauthenticationmethodconfiguration-get * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review --------- * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- * Rename Tenants governance IA labels (#29036) * Update generated permissions tables with build 222221 (#29035) * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review * Update concepts/people-data-sources.md * Apply suggestions from code review * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding * Apply suggestions from code review * Apply suggestions from code review * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review --------- * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review * Apply suggestions from code review * Update whats-new-overview.md * Apply suggestions from code review * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md * Update api-reference/beta/api/filestoragecontainer-post-permissions.md * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review * Potential fix for pull request finding * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review --------- * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. * Apply suggestions from code review * Apply suggestions from code review --------- * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review --------- * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. * Apply suggestions from code review * Update whats-new-overview.md * Apply suggestions from code review * Apply suggestions from code review * Update team-put-schedule.md --------- * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review * Apply suggestions from code review * Potential fix for pull request finding * Apply suggestions from code review * Changelog fix. --------- * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) * split this into two ChangeList items (same record Id) * Fix guid * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 * Remove manually inserted code snippets * Apply suggestions from code review --------- --------- * Update simulation-update.md for requirement around simuation state (#9936) * Update simulation-update.md for requirement around simuation state Clarified simulation state as draft as required and updated description. * Minor fixes --------- * Publish main to live - reconcile divergence 2026-06-17 Sets live content identical to main to clear the squash-induced divergence. No manual live hotfixes existed. * Reconcile live to main (unblock auto-publish #29094) (#29095) * Publish main to live - reconcile divergence (refresh 2026-06-17 18:25) Sets live content identical to current main. main is authoritative; no live-only hotfixes. * Update tenantappmanagementpolicy-get.md --------- * Remove license-type availability banner from Graph beta eDiscovery overview Replaces preview/SKU-specific note in ediscovery-ediscoveryapioverview.md with neutral guidance pointing to Microsoft Purview eDiscovery documentation. Addresses customer confusion (IcM 51000001064141) about creating searches in standard eDiscovery cases via Graph. * Merge to publish. (#29097) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review --------- * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- * Rename Tenants governance IA labels (#29036) * Update generated permissions tables with build 222221 (#29035) * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review * Update concepts/people-data-sources.md * Apply suggestions from code review * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding * Apply suggestions from code review * Apply suggestions from code review * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review --------- * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review * Apply suggestions from code review * Update whats-new-overview.md * Apply suggestions from code review * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md * Update api-reference/beta/api/filestoragecontainer-post-permissions.md * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review * Potential fix for pull request finding * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review --------- * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. * Apply suggestions from code review * Apply suggestions from code review --------- * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review --------- * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. * Apply suggestions from code review * Update whats-new-overview.md * Apply suggestions from code review * Apply suggestions from code review * Update team-put-schedule.md --------- * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review * Apply suggestions from code review * Potential fix for pull request finding * Apply suggestions from code review * Changelog fix. --------- * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) * split this into two ChangeList items (same record Id) * Fix guid * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 * Remove manually inserted code snippets * Apply suggestions from code review --------- * Update reference TOC (#29058) * Update profilePropertySetting docs (#29038) * Updated according to KnutB's spec * Apply suggestions from code review * Update peopleadminsettings-list-profilepropertysettings.md * Update profilepropertysetting.md * Move extended Delete description from resource table to API topic * Apply suggestion from @MSFT-Andrea * Potential fix for pull request finding --------- * Update generated permissions tables with build 222741 (#29057) * Update generated permissions tables with build 222558 (#29051) * Revise traceRouteHop availability in callRecord docs (#29055) * Revise traceRouteHop availability in callRecord docs * Apply suggestions from code review * Apply suggestions from code review --------- * Update whats-new-overview.md (#29010) * Update whats-new-overview.md * Update whats-new-overview.md --------- * Update pull request template to remove documentation plan requirement (#29069) Removed the requirement to attach the documentation plan for AI-assisted docs authoring. * 2026-06-15: Automated permissions reference update (#29068) * Update permissions reference * Correct errors in permissions reference --------- * Update generated permissions tables with build 222982 (#29067) * Update whats-new-overview.md (#29064) * Update whats-new-overview.md * Update whats-new-overview.md * Potential fix for pull request finding --------- * Add tenantId property to userAccount resource (#28845) * Add tenantId field to security user account resource Added tenantId field to user account resource details. * Update userAccount resource date and add tenantId * Update date for security userAccount resource * Update changelog with new API changes Added new changelog entries for tenantId and categories properties in userAccount resource. * Apply review suggestions: update changelog dates and add What's New entry for tenantId on userAccount * Apply suggestions from code review * Apply suggestions from code review --------- * Add mergeIncidents and moveAlerts v1.0 API docs (#28851) * Add mergeIncidents and moveAlerts v1.0 API docs Add v1.0 documentation for security action endpoints: - API pages: security-incident-mergeincidents.md, security-alert-movealerts.md - Resource pages: security-mergeresponse.md, security-correlationreason.md - Permission and RBAC include files - Update security-incident.md and security-alert.md Methods tables - Update v1.0 toc.mapping.json with new complex types - Add v1.0 changelog entries for all new artifacts * Fix comments * Apply suggestion from @FaithOmbongi * Update what's new --------- * Update reference TOC (#29071) * Update people doc (#29023) * Updated people & workplace intelligence document according to Knut Brandrud's proposal reviewed within our team. * Minor typo * Address review comments in social intelligence overview * Apply remaining review thread doc fixes * minor date fix * date --------- * Add isVisible property to lpc v1.0 (#28915) * Add isVisible property to lpc v1.0 * Apply suggestions from code review * Apply suggestions from code review * Update Microsoft.People.json * Apply suggestions from code review * Apply suggestion from @Danipocket --------- * Apply simulation-update v1.0 PR #9936 changes to beta file (#29077) * Remove unsupported expand query from getRetentionLabel docs (#29080) * Update generated files with build 223158 (#29075) * Resolve syncing conflicts from repo_sync_working_branch to main (#29076) * Enhance clarity in API documentation by updating request and response example phrasing across multiple files * Apply suggestions from code review * Fix trailing pipe tables 1.0 (#9930) * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudclipboardroot-list-items * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in itemactivitystat-getactivitybyinterval * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in tablecolumncollection-add * Fix trailing pipe formatting in user-findmeetingtimes * Apply suggestions from code review --------- * Fix missing closing codeblock beta (#9919) * Fix formatting of HTTP request example in accesspackageresource-list-uploadsessions.md * Fix missing closing code block in security-labelsroot-delete-citations.md * Fix missing closing code block in singlevaluelegacyextendedproperty-get.md * Fix missing closing code block in usersettings-list-windows.md * Fix missing closing code block in webapplicationfirewallprovider-verify.md * Fix missing closing code block in windowssetting-get.md * Fix missing closing code block in windowssetting-list-instances.md * fix(beta api): close malformed http code fence in windowssettinginstance-get * Apply suggestions from code review --------- * Update synchronization-synchronization-list-templates.md (#9922) Update headings from H3 to H2. * Update https://github.com/microsoftgraph/microsoft-graph-docs-contrib/edit/main/api-reference/v1.0/api/synchronization-synchronizationtemplate-get.md (#9923) Update headings from H3 to H2. * Update synchronization-synchronizationtemplate-update.md (#9924) Update headings from H3 to H2. * Update eventmessage-post-attachments.md (#9926) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update event-post-attachments.md (#9925) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update educationassignment-list-resources.md (#9927) Update formatting * Update provisioningobjectsummary-list.md (#9928) Fix typo in error response example section * Fix trailing pipe tables beta (#9929) * Fix trailing pipe formatting in b2cidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bookingbusiness-update * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudpc-retrievecloudpccountbystatus * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in contenttype-associatewithhubsites * Fix trailing pipe formatting in customdataprovidedresourceuploadsession-uploadfile * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in ediscovery-noncustodialdatasource-post * Fix trailing pipe formatting in get-device-command-status * Fix trailing pipe formatting in governancerolesetting-update * Fix trailing pipe formatting in industrydata-inboundapiflow-post * Fix trailing pipe formatting in itemactivity-getbyinterval * Fix trailing pipe formatting in listitem-createlink * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in message-createreply * Fix trailing pipe formatting in networkaccess-reports-getdestinationsummaries * Fix trailing pipe formatting in networkaccess-reports-getdeviceusagesummary * Fix trailing pipe formatting in pagetemplate-delete * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in rbacapplication-post-roleassignmentschedulerequests * Fix trailing pipe formatting in security-collaborationroot-list-analyzedemails * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in send-device-command * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in team-sendactivitynotification * Fix trailing pipe formatting in termstore-relation-post * Fix trailing pipe formatting in user-list-devices * Fix trailing pipe formatting in user-sendmail * Fix trailing pipe formatting in webpart-delete --------- * Fix missing closing codeblock 1.0 (#9920) * Fix missing closing http fence in security-auditlogquery-list-records * Fix missing closing http fence in userprotectionscopecontainer-compute * Fix missing closing http fence in usersettings-list-windows --------- * Update date range (#9931) When requesting a date over 28 days the API returns: "Invalid date value specified: 2026-04-06. Only support data for the past 28 days." * Correct date range for email activity report (#9932) https://github.com/microsoftgraph/microsoft-graph-docs-contrib/pull/9931/changes * Ch… Signed-off-by: dependabot[bot] Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: danny1718 Co-authored-by: Danni Zhao Co-authored-by: MSFT-Andrea Co-authored-by: angiechen22 <111081743+angiechen22@users.noreply.github.com> Co-authored-by: Daniela Bonilla Montero <92937694+Danielabom@users.noreply.github.com> Co-authored-by: Daniela Bonilla Montero Co-authored-by: araqueno Co-authored-by: araqueno <118419398+araqueno@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: learn-build-service-prod[bot] <113403604+learn-build-service-prod[bot]@users.noreply.github.com> Co-authored-by: Jarbas Horst <26866873+JarbasHorst@users.noreply.github.com> Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Learn Build Service GitHub App Co-authored-by: Vipul <84970543+VipulMSFT@users.noreply.github.com> Co-authored-by: Nick Robinson Co-authored-by: Matthew M. Co-authored-by: Yuvalabiri <154335961+Yuvalabiri@users.noreply.github.com> Co-authored-by: Ruth Waithera Co-authored-by: Jarbas Horst Co-authored-by: Jarbas Horst Co-authored-by: Ryutaro Koma Co-authored-by: Micah Warren <26724012+MicahWW@users.noreply.github.com> Co-authored-by: masonw1211 <31712004+masonw1211@users.noreply.github.com> Co-authored-by: Mason Wolff Co-authored-by: srinivaspadala-msft Co-authored-by: Anton Vanco <254866915+antonvano@users.noreply.github.com> Co-authored-by: Copilot Co-authored-by: Samuel Mwangi Co-authored-by: Samuel Mwangi (from Dev Box) Co-authored-by: Kimani Mwangi Co-authored-by: Hiro7 <75809971+garchiro7@users.noreply.github.com> Co-authored-by: Simran Moolchandaney <66736756+simoolchandaney@users.noreply.github.com> Co-authored-by: Simran Moolchandaney (from Dev Box) Co-authored-by: Jason Johnston Co-authored-by: myra-ramdenbourg <108485108+myra-ramdenbourg@users.noreply.github.com> Co-authored-by: Alexander Filipin Co-authored-by: Alexander Filipin Co-authored-by: Eunice Waweru <73849846+msewaweru@users.noreply.github.com> Co-authored-by: Ortagus Winfrey <85191667+OWinfreyATL@users.noreply.github.com> Co-authored-by: prasadpatil111 <284865846+prasadpatil111@users.noreply.github.com> Co-authored-by: Prasad Patil Co-authored-by: VISHNU VARDHAN PACHVA <67050501+Vishnu369@users.noreply.github.com> Co-authored-by: Vishnu Vardhan Pachva Co-authored-by: Reeza Ali <223746809+ReezaAli149@users.noreply.github.com> Co-authored-by: Yossi Bruss <287477490+yossibruss-ms@users.noreply.github.com> Co-authored-by: Yossi Bruss Co-authored-by: Yossi Bruss Co-authored-by: aditiijj Co-authored-by: Aditi Jain Co-authored-by: aditiijj <232662544+aditiijj@users.noreply.github.com> Co-authored-by: Ch@ps <61343268+Subham-RKB@users.noreply.github.com> Co-authored-by: schapagain Co-authored-by: ireneren0123 Co-authored-by: Irene Ren Co-authored-by: Nnachtomy Co-authored-by: Nnachtomy <258772109+Nnachtomy@users.noreply.github.com> Co-authored-by: Amar Koni <160498064+akgraph@users.noreply.github.com> Co-authored-by: Amar Koni (from Dev Box) Co-authored-by: Luca Spolidoro [MSFT] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> From d6cb363bc9e0dc1db8dee9d196920d3ac00f7a5e Mon Sep 17 00:00:00 2001 From: Shlomo Sagir <51323195+shsagir@users.noreply.github.com> Date: Thu, 25 Jun 2026 12:54:58 +0300 Subject: [PATCH 51/52] Merge to publish. (#29156) (#29165) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit * Add force user logoff option and policy update status API for Cloud PC provisioning policy (#28989) * add new property and function * remove generated files * add change log * Address Copilot review feedback * Address Copilot review feedback * Apply suggestions from code review * Apply suggestions from code review * Apply suggestions from code review * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * resolve merge connflict and update accordingly * Apply suggestions from code review --------- * Windows Updates New Enrollment States (#24135) * updatecategoryenrollmetninformation.md * updatemanagementenrollment.md * azureaddevice.md * changelog * cleanup * acrolinx * Update api-reference/beta/resources/windowsupdates-updatecategoryenrollmentinformation.md * Update api-reference/beta/resources/windowsupdates-updatecategoryenrollmentinformation.md * reviewer suggestions * typo fix * fixed build error * created enums.md file * heading change * build errors * Fixed build errors. * Fixing build issues. * Build issues * Apply suggestions from code review * Apply suggestions from code review * Update windowsupdates-enums.md * Apply suggestions from code review * Update windowsupdates-enums.md * Apply suggestions from code review * Updated response. * reverted changelog issues * reverted changelog to commit 37f2366 * reverted changelog to commit c4f4d79cfa76e4c41b5cf8da4f7e751d3c41c5e3 * re-added changelog entries for this PR * Update Microsoft.WindowsUpdates.json The changelog was showing incorrect entries. * Apply suggestions from code review * Apply suggestions from code review * Update changelog * Revert "Update changelog" This reverts commit df0209779bae59e2dbc398837f334e521dba546f. * update changelog attempt 2 * Apply suggestions from code review * Minor fixes. * Delete api-reference/beta/resources/windowsupdates-enums.md * Apply suggestions from code review * Apply suggestions from code review * Update enums-windowsupdates.md * Minor fixes. * Remove unintended changelog update * minor fixes * Update windowsupdates-azureaddevice.md * Potential fix for pull request finding * Update toc.mapping.json * Apply suggestions from code review * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review * Update windowsupdates-updatableassetenrollment.md * Apply suggestions from code review * Apply suggestion from @MSFT-Andrea * Update Microsoft.WindowsUpdates.json * Update whats-new-overview.md * Apply suggestions from code review * Update reference TOC * Apply suggestions from code review * Apply suggestions from code review * Update reference TOC * Potential fix for pull request finding * Potential fix for pull request finding --------- * Fix unsafe test.com domain in TLS inspection doc examples (#29134) * docs: add appRoleAssignmentRequired to agentIdentity resource (beta) (#29020) * docs: add appRoleAssignmentRequired to agentIdentity properties (beta) Adds `appRoleAssignmentRequired` to the Properties table and JSON representation of the agentIdentity resource type. The property is now included in the default projection following schema-Prod-beta.csdl PR 15981723 (Work Item 48856). * docs: add changelog entry for agentIdentity.appRoleAssignmentRequired (beta) Adds changelog entry for the `appRoleAssignmentRequired` property added to `agentIdentity` in the Microsoft Graph beta endpoint (schema-Prod-beta.csdl PR 15981723, Work Item 48856). * docs: update changelog WorkloadArea/SubArea for agentIdentity.appRoleAssignmentRequired * docs: add What's New entry for agentIdentity.appRoleAssignmentRequired (June 2026 beta) * Apply suggestion from @FaithOmbongi * docs: rebase PR changes onto latest main (resolve merge conflicts) * Readd what's new --------- * Resolve syncing conflicts from repo_sync_working_branch to main (#29136) * Use contractions in backuprestoreroot-list-onedriveforbusinessbrowsesessions * Use contractions in backuprestoreroot-list-sharepointbrowsesessions * Use contractions in basesitepage-list * Use contractions in bitlocker-list-recoverykeys * Use contractions in bookingappointment-update * Use contractions in bookingbusiness-list * Use contractions in bookingcustomer-get * Use contractions in bundle-removeitem * Use contractions in bundle-update * Use contractions in calendar-list-calendarview * Use contractions in call-keepalive * Use contractions in call-list-participants * Use contractions in call-reject * Use contractions in channel-get-members * Use contractions in chat-delete * Use contractions in chat-get * Use contractions in chat-get-members * Use contractions in chat-list-members * Use contractions in contenttype-delete * Use contractions in conversationmember-list * Use contractions in directory-list-customsecurityattributedefinitions * Use contractions in directoryobject-delta * Use contractions in domain-delete * Use contractions in domain-get-rootdomain * Use contractions in domain-list-federationconfiguration * Use contractions in drive-get-specialfolder * Use contractions in driveitem-copy * Use contractions in driveitem-createlink * Use contractions in driveitem-search * Use contractions in driveitemversion-get * Use contractions in educationclass-delta * Use contractions in educationclass-post * Use contractions in entitlementmanagementsettings-get * Use contractions in externalauthenticationmethodconfiguration-get * Use contractions in externalconnectors-externalgroup-update * Use contractions in externalconnectors-externalitem-get * Use contractions in externalconnectors-schema-get * Use contractions in fido2authenticationmethod-list * Use contractions in group-delta * Use contractions in group-list-acceptedsenders * Use contractions in group-list-calendarview * Use contractions in group-post-members * Use contractions in group-update * Use contractions in identitygovernance-insights-workflowsprocessedsummary * Use contractions in identitygovernance-task-get * Use contractions in identitygovernance-workflowtemplate-get * Use contractions in identityuserflowattributeassignment-update * Use contractions in inferenceclassification-list-overrides * Use contractions in internaldomainfederation-get * Use contractions in learningcourseactivity-update * Use contractions in list-get * Use contractions in listitem-delete * Use contractions in listitem-update * Use contractions in mailfolder-list-childfolders * Use contractions in message-createreply * Use contractions in message-createreplyall * Use contractions in message-delta * Use contractions in message-reply * Use contractions in message-replyall * Use contractions in offershiftrequest-get * Use contractions in onlinemeeting-createorget * Use contractions in orgcontact-delta * Use contractions in outlookuser-supportedtimezones * Use contractions in permissiongrantpolicy-update * Use contractions in permission-update * Use contractions in phoneauthenticationmethod-update * Use contractions in plannerassignedtotaskboardtaskformat-update * Use contractions in post-post-attachments * Use contractions in printdocument-createuploadsession * Use contractions in printer-update * Use contractions in printjob-cancel * Use contractions in projectrome-put-activity * Use contractions in qrcode-get * Use contractions in reportroot-getemailactivitycounts * Use contractions in reportroot-getemailactivityusercounts * Use contractions in reportroot-getemailactivityuserdetail * Use contractions in reportroot-getemailappusageappsusercounts * Use contractions in reportroot-getemailappusageusercounts * Use contractions in reportroot-getemailappusageuserdetail * Use contractions in reportroot-getm365appplatformusercounts * Use contractions in reportroot-getm365appusercounts * Use contractions in reportroot-getm365appuserdetail * Use contractions in reportroot-getmailboxusagedetail * Use contractions in reportroot-getmailboxusagemailboxcounts * Use contractions in reportroot-getmailboxusagequotastatusmailboxcounts * Use contractions in reportroot-getmailboxusagestorage * Use contractions in reportroot-getoffice365activationcounts * Use contractions in reportroot-getoffice365activationsuserdetail * Use contractions in reportroot-getoffice365activeusercounts * Use contractions in reportroot-getoffice365activeuserdetail * Use contractions in reportroot-getoffice365groupsactivitycounts * Use contractions in reportroot-getoffice365groupsactivitydetail * Use contractions in reportroot-getoffice365groupsactivityfilecounts * Use contractions in reportroot-getoffice365groupsactivitystorage * Use contractions in reportroot-getoffice365servicesusercounts * Use contractions in reportroot-getonedriveactivityfilecounts * Use contractions in reportroot-getonedriveactivityusercounts * Use contractions in reportroot-getonedriveactivityuserdetail * Use contractions in reportroot-getonedriveusageaccountcounts * Use contractions in reportroot-getonedriveusageaccountdetail * Use contractions in reportroot-getonedriveusagefilecounts * Use contractions in reportroot-getsharepointactivityfilecounts * Use contractions in reportroot-getsharepointactivitypages * Use contractions in reportroot-getsharepointactivityuserdetail * Use contractions in reportroot-getsharepointsiteusagedetail * Use contractions in reportroot-getsharepointsiteusagefilecounts * Use contractions in reportroot-getsharepointsiteusagepages * Use contractions in reportroot-getsharepointsiteusagesitecounts * Use contractions in reportroot-getsharepointsiteusagestorage * Use contractions in reportroot-getskypeforbusinessactivitycounts * Use contractions in reportroot-getskypeforbusinessactivityusercounts * Use contractions in reportroot-getskypeforbusinessactivityuserdetail * Use contractions in reportroot-getskypeforbusinessdeviceusagedistributionusercounts * Use contractions in reportroot-getskypeforbusinessdeviceusageuserdetail * Use contractions in reportroot-getskypeforbusinessorganizeractivityminutecounts * Use contractions in reportroot-getskypeforbusinessparticipantactivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivitycounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityusercounts * Use contractions in reportroot-getteamsdeviceusageusercounts * Use contractions in reportroot-getteamsuseractivityusercounts * Use contractions in reportroot-getteamsuseractivityuserdetail * Use contractions in reportroot-getyammeractivitycounts * Use contractions in reportroot-getyammeractivityusercounts * Use contractions in reportroot-getyammeractivityuserdetail * Use contractions in reportroot-getyammerdeviceusagedistributionusercounts * Use contractions in reportroot-getyammerdeviceusageusercounts * Use contractions in reportroot-getyammerdeviceusageuserdetail * Use contractions in reportroot-getyammergroupsactivitycounts * Use contractions in reportroot-getyammergroupsactivitydetail * Use contractions in riskdetection-get * Use contractions in riskyuser-get * Use contractions in schedulinggroup-delete * Use contractions in schemaextension-delete * Use contractions in security-ediscoverysearch-list-lastestimatestatisticsoperation * Use contractions in security-host-list-childhostpairs * Use contractions in security-host-list-parenthostpairs * Use contractions in security-hostpair-get * Use contractions in security-threatintelligence-list-sslcertificates * Use contractions in servicehealthissue-get * Use contractions in servicehealthissue-incidentreport * Use contractions in serviceprincipal-get * Use contractions in serviceupdatemessage-get * Use contractions in sharedwithchannelteaminfo-get * Use contractions in sharedwithchannelteaminfo-list-allowedmembers * Use contractions in simulationautomation-get * Use contractions in simulation-get * Use contractions in singlevaluelegacyextendedproperty-get * Use contractions in sitepage-publish * Use contractions in sitepage-update * Use contractions in site-search * Use contractions in subjectrightsrequest-list-notes * Use contractions in subscribedsku-list * Use contractions in synchronization-synchronizationschema-delete * Use contractions in synchronization-synchronizationschema-update * Use contractions in teamsapp-delete * Use contractions in teamsapp-publish * Use contractions in teamsapp-update * Use contractions in teamworktag-get * Use contractions in tenantappmanagementpolicy-update * Use contractions in tenantdatasecurityandgovernance-processcontentasync * Use contractions in timeoffrequest-get * Use contractions in todotask-delta * Use contractions in todotask-list-checklistitems * Use contractions in todotask-post-attachments * Use contractions in userdatasecurityandgovernance-processcontent * Use contractions in user-delta * Use contractions in user-findmeetingtimes * Use contractions in user-list-calendarview * Use contractions in user-list-mailfolders * Use contractions in user-list-messages * Use contractions in userregistrationdetails-get * Use contractions in user-sendmail * Use contractions in verticalsection-update * Use contractions in virtualeventregistrationconfiguration-list-questions * Use contractions in virtualeventregistration-list * Use contractions in virtualeventregistration-list-sessions * Use contractions in virtualeventwebinar-post-registrations * Use contractions in webpart-delete * Use contractions in workbook-tablerowoperationresult * Use contractions in x509certificateauthenticationmethodconfiguration-get * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review --------- * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- * Rename Tenants governance IA labels (#29036) * Update generated permissions tables with build 222221 (#29035) * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review * Update concepts/people-data-sources.md * Apply suggestions from code review * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding * Apply suggestions from code review * Apply suggestions from code review * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review --------- * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review * Apply suggestions from code review * Update whats-new-overview.md * Apply suggestions from code review * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md * Update api-reference/beta/api/filestoragecontainer-post-permissions.md * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review * Potential fix for pull request finding * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review --------- * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. * Apply suggestions from code review * Apply suggestions from code review --------- * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review --------- * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. * Apply suggestions from code review * Update whats-new-overview.md * Apply suggestions from code review * Apply suggestions from code review * Update team-put-schedule.md --------- * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review * Apply suggestions from code review * Potential fix for pull request finding * Apply suggestions from code review * Changelog fix. --------- * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) * split this into two ChangeList items (same record Id) * Fix guid * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 * Remove manually inserted code snippets * Apply suggestions from code review --------- --------- * Update simulation-update.md for requirement around simuation state (#9936) * Update simulation-update.md for requirement around simuation state Clarified simulation state as draft as required and updated description. * Minor fixes --------- * Publish main to live - reconcile divergence 2026-06-17 Sets live content identical to main to clear the squash-induced divergence. No manual live hotfixes existed. * Reconcile live to main (unblock auto-publish #29094) (#29095) * Publish main to live - reconcile divergence (refresh 2026-06-17 18:25) Sets live content identical to current main. main is authoritative; no live-only hotfixes. * Update tenantappmanagementpolicy-get.md --------- * Remove license-type availability banner from Graph beta eDiscovery overview Replaces preview/SKU-specific note in ediscovery-ediscoveryapioverview.md with neutral guidance pointing to Microsoft Purview eDiscovery documentation. Addresses customer confusion (IcM 51000001064141) about creating searches in standard eDiscovery cases via Graph. * Merge to publish. (#29097) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review --------- * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- * Rename Tenants governance IA labels (#29036) * Update generated permissions tables with build 222221 (#29035) * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review * Update concepts/people-data-sources.md * Apply suggestions from code review * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding * Apply suggestions from code review * Apply suggestions from code review * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review --------- * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review * Apply suggestions from code review * Update whats-new-overview.md * Apply suggestions from code review * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md * Update api-reference/beta/api/filestoragecontainer-post-permissions.md * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review * Potential fix for pull request finding * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review --------- * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. * Apply suggestions from code review * Apply suggestions from code review --------- * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review --------- * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. * Apply suggestions from code review * Update whats-new-overview.md * Apply suggestions from code review * Apply suggestions from code review * Update team-put-schedule.md --------- * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review * Apply suggestions from code review * Potential fix for pull request finding * Apply suggestions from code review * Changelog fix. --------- * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) * split this into two ChangeList items (same record Id) * Fix guid * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 * Remove manually inserted code snippets * Apply suggestions from code review --------- * Update reference TOC (#29058) * Update profilePropertySetting docs (#29038) * Updated according to KnutB's spec * Apply suggestions from code review * Update peopleadminsettings-list-profilepropertysettings.md * Update profilepropertysetting.md * Move extended Delete description from resource table to API topic * Apply suggestion from @MSFT-Andrea * Potential fix for pull request finding --------- * Update generated permissions tables with build 222741 (#29057) * Update generated permissions tables with build 222558 (#29051) * Revise traceRouteHop availability in callRecord docs (#29055) * Revise traceRouteHop availability in callRecord docs * Apply suggestions from code review * Apply suggestions from code review --------- * Update whats-new-overview.md (#29010) * Update whats-new-overview.md * Update whats-new-overview.md --------- * Update pull request template to remove documentation plan requirement (#29069) Removed the requirement to attach the documentation plan for AI-assisted docs authoring. * 2026-06-15: Automated permissions reference update (#29068) * Update permissions reference * Correct errors in permissions reference --------- * Update generated permissions tables with build 222982 (#29067) * Update whats-new-overview.md (#29064) * Update whats-new-overview.md * Update whats-new-overview.md * Potential fix for pull request finding --------- * Add tenantId property to userAccount resource (#28845) * Add tenantId field to security user account resource Added tenantId field to user account resource details. * Update userAccount resource date and add tenantId * Update date for security userAccount resource * Update changelog with new API changes Added new changelog entries for tenantId and categories properties in userAccount resource. * Apply review suggestions: update changelog dates and add What's New entry for tenantId on userAccount * Apply suggestions from code review * Apply suggestions from code review --------- * Add mergeIncidents and moveAlerts v1.0 API docs (#28851) * Add mergeIncidents and moveAlerts v1.0 API docs Add v1.0 documentation for security action endpoints: - API pages: security-incident-mergeincidents.md, security-alert-movealerts.md - Resource pages: security-mergeresponse.md, security-correlationreason.md - Permission and RBAC include files - Update security-incident.md and security-alert.md Methods tables - Update v1.0 toc.mapping.json with new complex types - Add v1.0 changelog entries for all new artifacts * Fix comments * Apply suggestion from @FaithOmbongi * Update what's new --------- * Update reference TOC (#29071) * Update people doc (#29023) * Updated people & workplace intelligence document according to Knut Brandrud's proposal reviewed within our team. * Minor typo * Address review comments in social intelligence overview * Apply remaining review thread doc fixes * minor date fix * date --------- * Add isVisible property to lpc v1.0 (#28915) * Add isVisible property to lpc v1.0 * Apply suggestions from code review * Apply suggestions from code review * Update Microsoft.People.json * Apply suggestions from code review * Apply suggestion from @Danipocket --------- * Apply simulation-update v1.0 PR #9936 changes to beta file (#29077) * Remove unsupported expand query from getRetentionLabel docs (#29080) * Update generated files with build 223158 (#29075) * Resolve syncing conflicts from repo_sync_working_branch to main (#29076) * Enhance clarity in API documentation by updating request and response example phrasing across multiple files * Apply suggestions from code review * Fix trailing pipe tables 1.0 (#9930) * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudclipboardroot-list-items * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in itemactivitystat-getactivitybyinterval * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in tablecolumncollection-add * Fix trailing pipe formatting in user-findmeetingtimes * Apply suggestions from code review --------- * Fix missing closing codeblock beta (#9919) * Fix formatting of HTTP request example in accesspackageresource-list-uploadsessions.md * Fix missing closing code block in security-labelsroot-delete-citations.md * Fix missing closing code block in singlevaluelegacyextendedproperty-get.md * Fix missing closing code block in usersettings-list-windows.md * Fix missing closing code block in webapplicationfirewallprovider-verify.md * Fix missing closing code block in windowssetting-get.md * Fix missing closing code block in windowssetting-list-instances.md * fix(beta api): close malformed http code fence in windowssettinginstance-get * Apply suggestions from code review --------- * Update synchronization-synchronization-list-templates.md (#9922) Update headings from H3 to H2. * Update https://github.com/microsoftgraph/microsoft-graph-docs-contrib/edit/main/api-reference/v1.0/api/synchronization-synchronizationtemplate-get.md (#9923) Update headings from H3 to H2. * Update synchronization-synchronizationtemplate-update.md (#9924) Update headings from H3 to H2. * Update eventmessage-post-attachments.md (#9926) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update event-post-attachments.md (#9925) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update educationassignment-list-resources.md (#9927) Update formatting * Update provisioningobjectsummary-list.md (#9928) Fix typo in error response example section * Fix trailing pipe tables beta (#9929) * Fix trailing pipe formatting in b2cidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bookingbusiness-update * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudpc-retrievecloudpccountbystatus * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in contenttype-associatewithhubsites * Fix trailing pipe formatting in customdataprovidedresourceuploadsession-uploadfile * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in ediscovery-noncustodialdatasource-post * Fix trailing pipe formatting in get-device-command-status * Fix trailing pipe formatting in governancerolesetting-update * Fix trailing pipe formatting in industrydata-inboundapiflow-post * Fix trailing pipe formatting in itemactivity-getbyinterval * Fix trailing pipe formatting in listitem-createlink * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in message-createreply * Fix trailing pipe formatting in networkaccess-reports-getdestinationsummaries * Fix trailing pipe formatting in networkaccess-reports-getdeviceusagesummary * Fix trailing pipe formatting in pagetemplate-delete * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in rbacapplication-post-roleassignmentschedulerequests * Fix trailing pipe formatting in security-collaborationroot-list-analyzedemails * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in send-device-command * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in team-sendactivitynotification * Fix trailing pipe formatting in termstore-relation-post * Fix trailing pipe formatting in user-list-devices * Fix trailing pipe formatting in user-sendmail * Fix trailing pipe formatting in webpart-delete --------- * Fix missing closing codeblock 1.0 (#9920) * Fix missing closing http fence in security-auditlogquery-list-records * Fix missing closing http fence in userprotectionscopecontainer-compute * Fix missing closing http fence in usersettings-list-windows --------- * Update date range (#9931) When requesting a date over 28 days the API returns: "Invalid date value specified: 2026-04-06. Only support data for the past 28 days." * Correct date range for email activity report (#9932) https://github.com/microsoftgraph/microsoft-graph-docs-contrib/pull/9931/changes * Ch… Signed-off-by: dependabot[bot] Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: danny1718 Co-authored-by: Danni Zhao Co-authored-by: MSFT-Andrea Co-authored-by: angiechen22 <111081743+angiechen22@users.noreply.github.com> Co-authored-by: Daniela Bonilla Montero <92937694+Danielabom@users.noreply.github.com> Co-authored-by: Daniela Bonilla Montero Co-authored-by: araqueno Co-authored-by: araqueno <118419398+araqueno@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: learn-build-service-prod[bot] <113403604+learn-build-service-prod[bot]@users.noreply.github.com> Co-authored-by: Jarbas Horst <26866873+JarbasHorst@users.noreply.github.com> Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Learn Build Service GitHub App Co-authored-by: Vipul <84970543+VipulMSFT@users.noreply.github.com> Co-authored-by: Nick Robinson Co-authored-by: Matthew M. Co-authored-by: Yuvalabiri <154335961+Yuvalabiri@users.noreply.github.com> Co-authored-by: Ruth Waithera Co-authored-by: Jarbas Horst Co-authored-by: Jarbas Horst Co-authored-by: Ryutaro Koma Co-authored-by: Micah Warren <26724012+MicahWW@users.noreply.github.com> Co-authored-by: masonw1211 <31712004+masonw1211@users.noreply.github.com> Co-authored-by: Mason Wolff Co-authored-by: srinivaspadala-msft Co-authored-by: Anton Vanco <254866915+antonvano@users.noreply.github.com> Co-authored-by: Copilot Co-authored-by: Samuel Mwangi Co-authored-by: Samuel Mwangi (from Dev Box) Co-authored-by: Kimani Mwangi Co-authored-by: Hiro7 <75809971+garchiro7@users.noreply.github.com> Co-authored-by: Simran Moolchandaney <66736756+simoolchandaney@users.noreply.github.com> Co-authored-by: Simran Moolchandaney (from Dev Box) Co-authored-by: Jason Johnston Co-authored-by: myra-ramdenbourg <108485108+myra-ramdenbourg@users.noreply.github.com> Co-authored-by: Alexander Filipin Co-authored-by: Alexander Filipin Co-authored-by: Eunice Waweru <73849846+msewaweru@users.noreply.github.com> Co-authored-by: Ortagus Winfrey <85191667+OWinfreyATL@users.noreply.github.com> Co-authored-by: prasadpatil111 <284865846+prasadpatil111@users.noreply.github.com> Co-authored-by: Prasad Patil Co-authored-by: VISHNU VARDHAN PACHVA <67050501+Vishnu369@users.noreply.github.com> Co-authored-by: Vishnu Vardhan Pachva Co-authored-by: Reeza Ali <223746809+ReezaAli149@users.noreply.github.com> Co-authored-by: Yossi Bruss <287477490+yossibruss-ms@users.noreply.github.com> Co-authored-by: Yossi Bruss Co-authored-by: Yossi Bruss Co-authored-by: aditiijj Co-authored-by: Aditi Jain Co-authored-by: aditiijj <232662544+aditiijj@users.noreply.github.com> Co-authored-by: Ch@ps <61343268+Subham-RKB@users.noreply.github.com> Co-authored-by: schapagain Co-authored-by: ireneren0123 Co-authored-by: Irene Ren Co-authored-by: Nnachtomy Co-authored-by: Nnachtomy <258772109+Nnachtomy@users.noreply.github.com> Co-authored-by: Amar Koni <160498064+akgraph@users.noreply.github.com> Co-authored-by: Amar Koni (from Dev Box) Co-authored-by: Luca Spolidoro [MSFT] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- concepts/whats-new-overview.md | 3 --- 1 file changed, 3 deletions(-) diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index a3295bfd800..20ff5868f01 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -45,9 +45,6 @@ Added the [getSharePointApiUsage](/graph/api/reportroot-getsharepointapiusage?vi Added support for programmatic FIDO2 passkey registration. Use the [creationOptions](/graph/api/fido2authenticationmethod-creationoptions) function to get WebAuthn credential creation options, then complete registration by posting the new **publicKeyCredential** property to the [fido2AuthenticationMethod](/graph/api/resources/fido2authenticationmethod) resource. -### Security | eDiscovery - -Added the `cloudNativeHtmlConversion` member to the [additionalDataOptions](/graph/api/resources/security-ediscoveryaddtoreviewsetoperation#additionaldataoptions-values) enumeration. ### People and workplace intelligence From ac4cffa8623133cecd4404bd5e1452877566c2b5 Mon Sep 17 00:00:00 2001 From: Shlomo Sagir <51323195+shsagir@users.noreply.github.com> Date: Thu, 25 Jun 2026 12:59:27 +0300 Subject: [PATCH 52/52] Fix marge conflict (#29166) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit * Merge to publish. (#29156) * Add force user logoff option and policy update status API for Cloud PC provisioning policy (#28989) * add new property and function * remove generated files * add change log * Address Copilot review feedback * Address Copilot review feedback * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * resolve merge connflict and update accordingly * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Danni Zhao Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Windows Updates New Enrollment States (#24135) * updatecategoryenrollmetninformation.md * updatemanagementenrollment.md * azureaddevice.md * changelog * cleanup * acrolinx * Update api-reference/beta/resources/windowsupdates-updatecategoryenrollmentinformation.md Co-authored-by: Daniela Bonilla Montero <92937694+Danielabom@users.noreply.github.com> * Update api-reference/beta/resources/windowsupdates-updatecategoryenrollmentinformation.md Co-authored-by: Daniela Bonilla Montero <92937694+Danielabom@users.noreply.github.com> * reviewer suggestions * typo fix * fixed build error * created enums.md file * heading change * build errors * Fixed build errors. * Fixing build issues. * Build issues * Apply suggestions from code review * Apply suggestions from code review * Update windowsupdates-enums.md * Apply suggestions from code review * Update windowsupdates-enums.md * Apply suggestions from code review * Updated response. * reverted changelog issues * reverted changelog to commit 37f2366 * reverted changelog to commit c4f4d79cfa76e4c41b5cf8da4f7e751d3c41c5e3 * re-added changelog entries for this PR * Update Microsoft.WindowsUpdates.json The changelog was showing incorrect entries. * Apply suggestions from code review * Apply suggestions from code review * Update changelog * Revert "Update changelog" This reverts commit df0209779bae59e2dbc398837f334e521dba546f. * update changelog attempt 2 * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Minor fixes. * Delete api-reference/beta/resources/windowsupdates-enums.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update enums-windowsupdates.md * Minor fixes. * Remove unintended changelog update * minor fixes * Update windowsupdates-azureaddevice.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update toc.mapping.json * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update windowsupdates-updatableassetenrollment.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update Microsoft.WindowsUpdates.json * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update reference TOC * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update reference TOC * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Daniela Bonilla Montero <92937694+Danielabom@users.noreply.github.com> Co-authored-by: Daniela Bonilla Montero Co-authored-by: araqueno Co-authored-by: araqueno <118419398+araqueno@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Microsoft Graph DevX Tooling * Fix unsafe test.com domain in TLS inspection doc examples (#29134) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * docs: add appRoleAssignmentRequired to agentIdentity resource (beta) (#29020) * docs: add appRoleAssignmentRequired to agentIdentity properties (beta) Adds `appRoleAssignmentRequired` to the Properties table and JSON representation of the agentIdentity resource type. The property is now included in the default projection following schema-Prod-beta.csdl PR 15981723 (Work Item 48856). Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * docs: add changelog entry for agentIdentity.appRoleAssignmentRequired (beta) Adds changelog entry for the `appRoleAssignmentRequired` property added to `agentIdentity` in the Microsoft Graph beta endpoint (schema-Prod-beta.csdl PR 15981723, Work Item 48856). Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * docs: update changelog WorkloadArea/SubArea for agentIdentity.appRoleAssignmentRequired Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * docs: add What's New entry for agentIdentity.appRoleAssignmentRequired (June 2026 beta) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestion from @FaithOmbongi * docs: rebase PR changes onto latest main (resolve merge conflicts) * Readd what's new --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Resolve syncing conflicts from repo_sync_working_branch to main (#29136) * Use contractions in backuprestoreroot-list-onedriveforbusinessbrowsesessions * Use contractions in backuprestoreroot-list-sharepointbrowsesessions * Use contractions in basesitepage-list * Use contractions in bitlocker-list-recoverykeys * Use contractions in bookingappointment-update * Use contractions in bookingbusiness-list * Use contractions in bookingcustomer-get * Use contractions in bundle-removeitem * Use contractions in bundle-update * Use contractions in calendar-list-calendarview * Use contractions in call-keepalive * Use contractions in call-list-participants * Use contractions in call-reject * Use contractions in channel-get-members * Use contractions in chat-delete * Use contractions in chat-get * Use contractions in chat-get-members * Use contractions in chat-list-members * Use contractions in contenttype-delete * Use contractions in conversationmember-list * Use contractions in directory-list-customsecurityattributedefinitions * Use contractions in directoryobject-delta * Use contractions in domain-delete * Use contractions in domain-get-rootdomain * Use contractions in domain-list-federationconfiguration * Use contractions in drive-get-specialfolder * Use contractions in driveitem-copy * Use contractions in driveitem-createlink * Use contractions in driveitem-search * Use contractions in driveitemversion-get * Use contractions in educationclass-delta * Use contractions in educationclass-post * Use contractions in entitlementmanagementsettings-get * Use contractions in externalauthenticationmethodconfiguration-get * Use contractions in externalconnectors-externalgroup-update * Use contractions in externalconnectors-externalitem-get * Use contractions in externalconnectors-schema-get * Use contractions in fido2authenticationmethod-list * Use contractions in group-delta * Use contractions in group-list-acceptedsenders * Use contractions in group-list-calendarview * Use contractions in group-post-members * Use contractions in group-update * Use contractions in identitygovernance-insights-workflowsprocessedsummary * Use contractions in identitygovernance-task-get * Use contractions in identitygovernance-workflowtemplate-get * Use contractions in identityuserflowattributeassignment-update * Use contractions in inferenceclassification-list-overrides * Use contractions in internaldomainfederation-get * Use contractions in learningcourseactivity-update * Use contractions in list-get * Use contractions in listitem-delete * Use contractions in listitem-update * Use contractions in mailfolder-list-childfolders * Use contractions in message-createreply * Use contractions in message-createreplyall * Use contractions in message-delta * Use contractions in message-reply * Use contractions in message-replyall * Use contractions in offershiftrequest-get * Use contractions in onlinemeeting-createorget * Use contractions in orgcontact-delta * Use contractions in outlookuser-supportedtimezones * Use contractions in permissiongrantpolicy-update * Use contractions in permission-update * Use contractions in phoneauthenticationmethod-update * Use contractions in plannerassignedtotaskboardtaskformat-update * Use contractions in post-post-attachments * Use contractions in printdocument-createuploadsession * Use contractions in printer-update * Use contractions in printjob-cancel * Use contractions in projectrome-put-activity * Use contractions in qrcode-get * Use contractions in reportroot-getemailactivitycounts * Use contractions in reportroot-getemailactivityusercounts * Use contractions in reportroot-getemailactivityuserdetail * Use contractions in reportroot-getemailappusageappsusercounts * Use contractions in reportroot-getemailappusageusercounts * Use contractions in reportroot-getemailappusageuserdetail * Use contractions in reportroot-getm365appplatformusercounts * Use contractions in reportroot-getm365appusercounts * Use contractions in reportroot-getm365appuserdetail * Use contractions in reportroot-getmailboxusagedetail * Use contractions in reportroot-getmailboxusagemailboxcounts * Use contractions in reportroot-getmailboxusagequotastatusmailboxcounts * Use contractions in reportroot-getmailboxusagestorage * Use contractions in reportroot-getoffice365activationcounts * Use contractions in reportroot-getoffice365activationsuserdetail * Use contractions in reportroot-getoffice365activeusercounts * Use contractions in reportroot-getoffice365activeuserdetail * Use contractions in reportroot-getoffice365groupsactivitycounts * Use contractions in reportroot-getoffice365groupsactivitydetail * Use contractions in reportroot-getoffice365groupsactivityfilecounts * Use contractions in reportroot-getoffice365groupsactivitystorage * Use contractions in reportroot-getoffice365servicesusercounts * Use contractions in reportroot-getonedriveactivityfilecounts * Use contractions in reportroot-getonedriveactivityusercounts * Use contractions in reportroot-getonedriveactivityuserdetail * Use contractions in reportroot-getonedriveusageaccountcounts * Use contractions in reportroot-getonedriveusageaccountdetail * Use contractions in reportroot-getonedriveusagefilecounts * Use contractions in reportroot-getsharepointactivityfilecounts * Use contractions in reportroot-getsharepointactivitypages * Use contractions in reportroot-getsharepointactivityuserdetail * Use contractions in reportroot-getsharepointsiteusagedetail * Use contractions in reportroot-getsharepointsiteusagefilecounts * Use contractions in reportroot-getsharepointsiteusagepages * Use contractions in reportroot-getsharepointsiteusagesitecounts * Use contractions in reportroot-getsharepointsiteusagestorage * Use contractions in reportroot-getskypeforbusinessactivitycounts * Use contractions in reportroot-getskypeforbusinessactivityusercounts * Use contractions in reportroot-getskypeforbusinessactivityuserdetail * Use contractions in reportroot-getskypeforbusinessdeviceusagedistributionusercounts * Use contractions in reportroot-getskypeforbusinessdeviceusageuserdetail * Use contractions in reportroot-getskypeforbusinessorganizeractivityminutecounts * Use contractions in reportroot-getskypeforbusinessparticipantactivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivitycounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityminutecounts * Use contractions in reportroot-getskypeforbusinesspeertopeeractivityusercounts * Use contractions in reportroot-getteamsdeviceusageusercounts * Use contractions in reportroot-getteamsuseractivityusercounts * Use contractions in reportroot-getteamsuseractivityuserdetail * Use contractions in reportroot-getyammeractivitycounts * Use contractions in reportroot-getyammeractivityusercounts * Use contractions in reportroot-getyammeractivityuserdetail * Use contractions in reportroot-getyammerdeviceusagedistributionusercounts * Use contractions in reportroot-getyammerdeviceusageusercounts * Use contractions in reportroot-getyammerdeviceusageuserdetail * Use contractions in reportroot-getyammergroupsactivitycounts * Use contractions in reportroot-getyammergroupsactivitydetail * Use contractions in riskdetection-get * Use contractions in riskyuser-get * Use contractions in schedulinggroup-delete * Use contractions in schemaextension-delete * Use contractions in security-ediscoverysearch-list-lastestimatestatisticsoperation * Use contractions in security-host-list-childhostpairs * Use contractions in security-host-list-parenthostpairs * Use contractions in security-hostpair-get * Use contractions in security-threatintelligence-list-sslcertificates * Use contractions in servicehealthissue-get * Use contractions in servicehealthissue-incidentreport * Use contractions in serviceprincipal-get * Use contractions in serviceupdatemessage-get * Use contractions in sharedwithchannelteaminfo-get * Use contractions in sharedwithchannelteaminfo-list-allowedmembers * Use contractions in simulationautomation-get * Use contractions in simulation-get * Use contractions in singlevaluelegacyextendedproperty-get * Use contractions in sitepage-publish * Use contractions in sitepage-update * Use contractions in site-search * Use contractions in subjectrightsrequest-list-notes * Use contractions in subscribedsku-list * Use contractions in synchronization-synchronizationschema-delete * Use contractions in synchronization-synchronizationschema-update * Use contractions in teamsapp-delete * Use contractions in teamsapp-publish * Use contractions in teamsapp-update * Use contractions in teamworktag-get * Use contractions in tenantappmanagementpolicy-update * Use contractions in tenantdatasecurityandgovernance-processcontentasync * Use contractions in timeoffrequest-get * Use contractions in todotask-delta * Use contractions in todotask-list-checklistitems * Use contractions in todotask-post-attachments * Use contractions in userdatasecurityandgovernance-processcontent * Use contractions in user-delta * Use contractions in user-findmeetingtimes * Use contractions in user-list-calendarview * Use contractions in user-list-mailfolders * Use contractions in user-list-messages * Use contractions in userregistrationdetails-get * Use contractions in user-sendmail * Use contractions in verticalsection-update * Use contractions in virtualeventregistrationconfiguration-list-questions * Use contractions in virtualeventregistration-list * Use contractions in virtualeventregistration-list-sessions * Use contractions in virtualeventwebinar-post-registrations * Use contractions in webpart-delete * Use contractions in workbook-tablerowoperationresult * Use contractions in x509certificateauthenticationmethodconfiguration-get * Auto Publish – main to live - 2026-06-12 00:30 UTC (#29054) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * Update simulation-update.md for requirement around simuation state (#9936) * Update simulation-update.md for requirement around simuation state Clarified simulation state as draft as required and updated description. * Minor fixes --------- Co-authored-by: Faith Moraa Ombongi * Publish main to live - reconcile divergence 2026-06-17 Sets live content identical to main to clear the squash-induced divergence. No manual live hotfixes existed. * Reconcile live to main (unblock auto-publish #29094) (#29095) * Publish main to live - reconcile divergence (refresh 2026-06-17 18:25) Sets live content identical to current main. main is authoritative; no live-only hotfixes. * Update tenantappmanagementpolicy-get.md --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Remove license-type availability banner from Graph beta eDiscovery overview Replaces preview/SKU-specific note in ediscovery-ediscoveryapioverview.md with neutral guidance pointing to Microsoft Purview eDiscovery documentation. Addresses customer confusion (IcM 51000001064141) about creating searches in standard eDiscovery cases via Graph. * Merge to publish. (#29097) * Permissions tables update (#29044) * Update generated permissions tables with build 222443 * Update synchronization-synchronizationtemplate-get-permissions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Raise filestoragecontainer upsert limit to 40 (#29041) * Raise filestoragecontainer upsert limit to 40 * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Snippets Update (#29037) * Update generated files with build 222239 * Update backuprestoreroot-post-sharepointrestoresessions.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Rename Tenants governance IA labels (#29036) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222221 (#29035) Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update cloud support status (#29031) * Update cloud support status * Update security-alert-post-manualalert.md --------- Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * 2026-06-08: Automated permissions reference update (#29029) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Add people data sources page (#29033) * Add people data sources page and TOC entry * minor * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update concepts/people-data-sources.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update profile property setting docs (#29032) * Update profile property setting docs * docs: address profile source precedence review feedback * docs: clarify profile property setting guidance * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update profilepriority-configure-profilepropertysetting.md * Update profilepriority-configure-profilepropertysetting.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update social-intel-concept-overview.md * Update whats-new-overview.md --------- Co-authored-by: Helge Solheim Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Fixed mentioning the least privileged role for tenant app management policies (#29024) * Revise RBAC notes for agent identity APIs (#28984) Updated important notes regarding agent identity blueprints and roles. * Add mdai service source to security alerts (#28897) * Add MDAI service source * fix name * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Harel Damti Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add conflictBehavior support to fileStorageContainer POST permissions (#28918) * Add conflictBehavior support to fileStorageContainer POST permissions Added @microsoft.graph.conflictBehavior annotation parameter to Create permission API for both beta and v1.0. Supports 'fail' (default, returns 409 Conflict) and 'replace' (updates existing role) values. - Updated beta and v1.0 POST permissions docs with path parameters, conflictBehavior details, and replace example - Added changelog entries for beta and v1.0 - Updated What's New for May 2026 * Fix dataLocation query parameter - remove incorrect $ prefix The $ prefix only applies to OData keywords like \, \, \. Custom query parameters like dataLocation should not have the prefix. * Fix validation issues - absolute links and broken references - Convert absolute learn.microsoft.com link to relative link in fileStorageContainer docs - Fix broken alertsv1-alertsv2-migration link to point to security-alert resource - Remove broken migrationMode enum link * Format conflictBehavior description - add space before parentheses * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-post-permissions.md * Update filestoragecontainer-post-permissions.md * Update api-reference/v1.0/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Update api-reference/beta/api/filestoragecontainer-post-permissions.md Co-authored-by: MSFT-Andrea * Clarify Example 1 as new permission creation Label the first sample as Example 1 and update request/response subheadings for consistency with Example 2 in beta and v1.0 docs. * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add behavioral guidance and hidden membership notes to checkMemberGroups (#28976) * docs: add behavioral guidance and hidden membership notes to checkMemberGroups Add IMPORTANT alert documenting single-request evaluation semantics and partial results behavior for access-restricted groups. Add NOTE about latency expectations. Add hidden membership permission requirements (Member.Read.Hidden for app-only, group membership for delegated). Applies to both v1.0 and beta. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add passwordSubmit member to authenticationEventType enum (beta) (#28973) * Add passwordSubmit member to authenticationEventType enum (beta) Documents the new `passwordSubmit` (value 6) member added to the `authenticationEventType` enum in the Microsoft.AAD.Reporting beta schema. This enables OnPasswordSubmit event listeners and custom authentication extension handlers (Reports > Identity and access reports). Files updated: - api-reference/beta/resources/enums.md - added passwordSubmit row - api-reference/beta/resources/appliedauthenticationeventlistener.md - updated eventType value lists - changelog/Microsoft.AAD.Reporting.json - added changelog entry to clear AGS PR 15884845 warning - concepts/whats-new-overview.md - announced in May 2026 What's New Related AGS PR: https://msazure.visualstudio.com/One/_git/AD-AggregatorService-Workloads/pullrequest/15884845 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Update changelog/Microsoft.AAD.Reporting.json * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Clarify IANA Time Zone Database format for schedule timeZone (#28734) * Clarify IANA Time Zone Database format for schedule timeZone Graph Shifts expects timeZone on a schedule to use the IANA Time Zone Database (also called the Olson database or tz database) format, e.g. America/Chicago. The existing property description just says "tz database format" which is easy to miss; the API page for PUT /teams/{id}/schedule doesn't mention it at all. - api-reference/{v1.0,beta}/resources/schedule.md: expand the timeZone property description with the full "IANA Time Zone Database" name and an example value. - api-reference/{v1.0,beta}/api/team-put-schedule.md: add a NOTE in the Request body section calling out the timeZone format requirement. Co-Authored-By: Claude Opus 4.7 (1M context) * Rework timeZone wording to be more actionable Feedback was that the previous wording ("must be specified in IANA Time Zone Database format...") is formal but doesn't actually tell a developer what to put. Rework to: - Use active voice ("Set timeZone to..." instead of "must be specified in"). - Show the Area/Location pattern via two examples (America/Chicago, Europe/London) instead of one. - Link to the canonical list on Wikipedia, matching the existing pattern already used for IANA time zones in concepts/toolkit/components/agenda.md and for other standards (E.164, ISO 4217, ISO 3166-1 alpha-2) in call-records reference docs. Co-Authored-By: Claude Opus 4.7 (1M context) * Drop redundant Olson/tz database aliases from timeZone wording The Wikipedia link we point to is already titled "List of tz database time zones", so readers who know the format by that name still find it via the link text. Matches the agenda.md precedent in this repo, which says "IANA time zone" without the alias list. Co-Authored-By: Claude Opus 4.7 (1M context) * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update whats-new-overview.md * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update team-put-schedule.md --------- Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update fileStorageContainer permission docs for alternate keys (#28916) * Update fileStorageContainer permission docs for alternate keys and add v1.0 get permissions topic * Update example header for permission retrieval * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @MSFT-Andrea * Update filestoragecontainer-get-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-delete-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update filestoragecontainer-update-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Rename filestoragecontainer-get-permission-permissions.md to filestoragecontainer-get-permissions-permissions.md * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update Microsoft.FileServices.json * Update whats-new-overview.md * Apply suggestion from @MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Changelog fix. --------- Co-authored-by: Li Dai Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * docs: add reviewer delegation support for access reviews (beta) + merge main conflict resolution (#28838) * Update beta access review delegation docs Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2c320825-53af-40dd-8f42-ed52df5ae12d Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: clarify reviewer example scope Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2b4147b8-b521-4a17-a5da-ea987c630d6f Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> * rephrasing to focus on “reviewer delegation support” and link only to the primary entry point(s) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * split this into two ChangeList items (same record Id) Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Fix guid Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * docs: reorder access review decision item properties Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/bfc67a32-3878-4761-a3e1-f45633867fa3 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: align access review example formatting Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/2318bcb0-67e7-4003-b7c5-8a8861253004 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: remove partial tab groups from access review examples Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/159d921e-8a7e-4ace-b801-1dc77de9bcbc Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * docs: add full tab scaffolding to new access review examples for consistency Agent-Logs-Url: https://github.com/microsoftgraph/microsoft-graph-docs/sessions/3dfef0f6-7ffa-45e4-bac0-f35fce549486 Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> * Remove manually inserted code snippets Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update reference TOC (#29058) Co-authored-by: Microsoft Graph DevX Tooling * Update profilePropertySetting docs (#29038) * Updated according to KnutB's spec * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Update peopleadminsettings-list-profilepropertysettings.md * Update profilepropertysetting.md * Move extended Delete description from resource table to API topic * Apply suggestion from @MSFT-Andrea * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Helge Solheim Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update generated permissions tables with build 222741 (#29057) Co-authored-by: Microsoft Graph DevX Tooling * Update generated permissions tables with build 222558 (#29051) Co-authored-by: Microsoft Graph DevX Tooling * Revise traceRouteHop availability in callRecord docs (#29055) * Revise traceRouteHop availability in callRecord docs * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update whats-new-overview.md (#29010) * Update whats-new-overview.md * Update whats-new-overview.md --------- Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Update pull request template to remove documentation plan requirement (#29069) Removed the requirement to attach the documentation plan for AI-assisted docs authoring. * 2026-06-15: Automated permissions reference update (#29068) * Update permissions reference * Correct errors in permissions reference --------- Co-authored-by: Microsoft Graph DevX Tooling * Update generated permissions tables with build 222982 (#29067) Co-authored-by: Microsoft Graph DevX Tooling * Update whats-new-overview.md (#29064) * Update whats-new-overview.md * Update whats-new-overview.md * Potential fix for pull request finding Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Add tenantId property to userAccount resource (#28845) * Add tenantId field to security user account resource Added tenantId field to user account resource details. * Update userAccount resource date and add tenantId * Update date for security userAccount resource * Update changelog with new API changes Added new changelog entries for tenantId and categories properties in userAccount resource. * Apply review suggestions: update changelog dates and add What's New entry for tenantId on userAccount * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi * Apply suggestions from code review Co-authored-by: Faith Moraa Ombongi --------- Co-authored-by: Faith Moraa Ombongi Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Add mergeIncidents and moveAlerts v1.0 API docs (#28851) * Add mergeIncidents and moveAlerts v1.0 API docs Add v1.0 documentation for security action endpoints: - API pages: security-incident-mergeincidents.md, security-alert-movealerts.md - Resource pages: security-mergeresponse.md, security-correlationreason.md - Permission and RBAC include files - Update security-incident.md and security-alert.md Methods tables - Update v1.0 toc.mapping.json with new complex types - Add v1.0 changelog entries for all new artifacts Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * Fix comments * Apply suggestion from @FaithOmbongi * Update what's new --------- Co-authored-by: Harel Damti Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi * Update reference TOC (#29071) Co-authored-by: Microsoft Graph DevX Tooling * Update people doc (#29023) * Updated people & workplace intelligence document according to Knut Brandrud's proposal reviewed within our team. * Minor typo Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Address review comments in social intelligence overview * Apply remaining review thread doc fixes * minor date fix Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * date --------- Co-authored-by: Helge Solheim Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Add isVisible property to lpc v1.0 (#28915) * Add isVisible property to lpc v1.0 * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestions from code review Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> * Update Microsoft.People.json * Apply suggestions from code review Co-authored-by: MSFT-Andrea * Apply suggestion from @Danipocket --------- Co-authored-by: MSFT-Andrea Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> * Apply simulation-update v1.0 PR #9936 changes to beta file (#29077) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Remove unsupported expand query from getRetentionLabel docs (#29080) Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> * Update generated files with build 223158 (#29075) Co-authored-by: Microsoft Graph DevX Tooling * Resolve syncing conflicts from repo_sync_working_branch to main (#29076) * Enhance clarity in API documentation by updating request and response example phrasing across multiple files * Apply suggestions from code review Co-authored-by: Jarbas Horst * Fix trailing pipe tables 1.0 (#9930) * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudclipboardroot-list-items * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in itemactivitystat-getactivitybyinterval * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in tablecolumncollection-add * Fix trailing pipe formatting in user-findmeetingtimes * Apply suggestions from code review Co-authored-by: Jarbas Horst --------- Co-authored-by: Jarbas Horst * Fix missing closing codeblock beta (#9919) * Fix formatting of HTTP request example in accesspackageresource-list-uploadsessions.md * Fix missing closing code block in security-labelsroot-delete-citations.md * Fix missing closing code block in singlevaluelegacyextendedproperty-get.md * Fix missing closing code block in usersettings-list-windows.md * Fix missing closing code block in webapplicationfirewallprovider-verify.md * Fix missing closing code block in windowssetting-get.md * Fix missing closing code block in windowssetting-list-instances.md * fix(beta api): close malformed http code fence in windowssettinginstance-get * Apply suggestions from code review Co-authored-by: Jarbas Horst --------- Co-authored-by: Jarbas Horst * Update synchronization-synchronization-list-templates.md (#9922) Update headings from H3 to H2. * Update https://github.com/microsoftgraph/microsoft-graph-docs-contrib/edit/main/api-reference/v1.0/api/synchronization-synchronizationtemplate-get.md (#9923) Update headings from H3 to H2. * Update synchronization-synchronizationtemplate-update.md (#9924) Update headings from H3 to H2. * Update eventmessage-post-attachments.md (#9926) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update event-post-attachments.md (#9925) Updated the header hierarchy to align with https://github.com/microsoftgraph/microsoft-graph-docs-contrib/blob/main/api-reference/v1.0/api/message-post-attachments.md * Update educationassignment-list-resources.md (#9927) Update formatting * Update provisioningobjectsummary-list.md (#9928) Fix typo in error response example section * Fix trailing pipe tables beta (#9929) * Fix trailing pipe formatting in b2cidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in b2xidentityuserflow-post-userattributeassignments * Fix trailing pipe formatting in basesitepage-delete * Fix trailing pipe formatting in bookingbusiness-update * Fix trailing pipe formatting in bundle-update * Fix trailing pipe formatting in call-redirect * Fix trailing pipe formatting in cloudpc-retrievecloudpccountbystatus * Fix trailing pipe formatting in contact-update * Fix trailing pipe formatting in contenttype-associatewithhubsites * Fix trailing pipe formatting in customdataprovidedresourceuploadsession-uploadfile * Fix trailing pipe formatting in driveitem-createlink * Fix trailing pipe formatting in driveitem-delta * Fix trailing pipe formatting in driveitem-get-content-format * Fix trailing pipe formatting in driveitem-invite * Fix trailing pipe formatting in driveitem-preview * Fix trailing pipe formatting in ediscovery-noncustodialdatasource-post * Fix trailing pipe formatting in get-device-command-status * Fix trailing pipe formatting in governancerolesetting-update * Fix trailing pipe formatting in industrydata-inboundapiflow-post * Fix trailing pipe formatting in itemactivity-getbyinterval * Fix trailing pipe formatting in listitem-createlink * Fix trailing pipe formatting in listitem-delete * Fix trailing pipe formatting in listitem-update * Fix trailing pipe formatting in message-createreply * Fix trailing pipe formatting in networkaccess-reports-getdestinationsummaries * Fix trailing pipe formatting in networkaccess-reports-getdeviceusagesummary * Fix trailing pipe formatting in pagetemplate-delete * Fix trailing pipe formatting in permission-grant * Fix trailing pipe formatting in rbacapplication-post-roleassignmentschedulerequests * Fix trailing pipe formatting in security-collaborationroot-list-analyzedemails * Fix trailing pipe formatting in security-host-list-passivedns * Fix trailing pipe formatting in send-device-command * Fix trailing pipe formatting in site-list * Fix trailing pipe formatting in team-sendactivitynotification * Fix trailing pipe formatting in termstore-relation-post * Fix trailing pipe formatting in user-list-devices * Fix trailing pipe formatting in user-sendmail * Fix trailing pipe formatting in webpart-delete --------- Co-authored-by: Jarbas Horst * Fix missing closing codeblock 1.0 (#9920) * Fix missing closing http fence in security-auditlogquery-list-records * Fix missing closing http fence in userprotectionscopecontainer-compute * Fix missing closing http fence in usersettings-list-windows --------- Co-authored-by: Jarbas Horst * Update date range (#9931) When requesting a date over 28 days the API returns: "Invalid date value specified: 2026-04-06. Only support data for the past 28 days." * Correct date range for email activity report (#9932) https://github.com/microsoftgraph/microsoft-graph-docs-contrib/pull/9931/changes * Ch… * Restore content * Restore content --------- Signed-off-by: dependabot[bot] Co-authored-by: Danipocket <88507770+Danipocket@users.noreply.github.com> Co-authored-by: danny1718 Co-authored-by: Danni Zhao Co-authored-by: MSFT-Andrea Co-authored-by: angiechen22 <111081743+angiechen22@users.noreply.github.com> Co-authored-by: Daniela Bonilla Montero <92937694+Danielabom@users.noreply.github.com> Co-authored-by: Daniela Bonilla Montero Co-authored-by: araqueno Co-authored-by: araqueno <118419398+araqueno@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com> Co-authored-by: Microsoft Graph DevX Tooling Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: Faith Moraa Ombongi Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> Co-authored-by: learn-build-service-prod[bot] <113403604+learn-build-service-prod[bot]@users.noreply.github.com> Co-authored-by: Jarbas Horst <26866873+JarbasHorst@users.noreply.github.com> Co-authored-by: snippet-gen-pull-automation[bot] <95501462+snippet-gen-pull-automation[bot]@users.noreply.github.com> Co-authored-by: lilealdai <118565463+lilealdai@users.noreply.github.com> Co-authored-by: Li Dai Co-authored-by: Helge Solheim Co-authored-by: Helge Solheim Co-authored-by: milanevk Co-authored-by: shlipsey3 <66325782+shlipsey3@users.noreply.github.com> Co-authored-by: hareldamti <94783416+hareldamti@users.noreply.github.com> Co-authored-by: Harel Damti Co-authored-by: ashyasingh <74160572+ashyasingh@users.noreply.github.com> Co-authored-by: diadabal <105948420+diadabal@users.noreply.github.com> Co-authored-by: Raul Fernandes Co-authored-by: NORTHAMERICA\raulfer Co-authored-by: Claude Opus 4.7 (1M context) Co-authored-by: corey284 <281061362+corey284@users.noreply.github.com> Co-authored-by: FaithOmbongi <14026935+FaithOmbongi@users.noreply.github.com> Co-authored-by: Learn Build Service GitHub App Co-authored-by: Vipul <84970543+VipulMSFT@users.noreply.github.com> Co-authored-by: Nick Robinson Co-authored-by: Matthew M. Co-authored-by: Yuvalabiri <154335961+Yuvalabiri@users.noreply.github.com> Co-authored-by: Ruth Waithera Co-authored-by: Jarbas Horst Co-authored-by: Jarbas Horst Co-authored-by: Ryutaro Koma Co-authored-by: Micah Warren <26724012+MicahWW@users.noreply.github.com> Co-authored-by: masonw1211 <31712004+masonw1211@users.noreply.github.com> Co-authored-by: Mason Wolff Co-authored-by: srinivaspadala-msft Co-authored-by: Anton Vanco <254866915+antonvano@users.noreply.github.com> Co-authored-by: Copilot Co-authored-by: Samuel Mwangi Co-authored-by: Samuel Mwangi (from Dev Box) Co-authored-by: Kimani Mwangi Co-authored-by: Hiro7 <75809971+garchiro7@users.noreply.github.com> Co-authored-by: Simran Moolchandaney <66736756+simoolchandaney@users.noreply.github.com> Co-authored-by: Simran Moolchandaney (from Dev Box) Co-authored-by: Jason Johnston Co-authored-by: myra-ramdenbourg <108485108+myra-ramdenbourg@users.noreply.github.com> Co-authored-by: Alexander Filipin Co-authored-by: Alexander Filipin Co-authored-by: Eunice Waweru <73849846+msewaweru@users.noreply.github.com> Co-authored-by: Ortagus Winfrey <85191667+OWinfreyATL@users.noreply.github.com> Co-authored-by: prasadpatil111 <284865846+prasadpatil111@users.noreply.github.com> Co-authored-by: Prasad Patil Co-authored-by: VISHNU VARDHAN PACHVA <67050501+Vishnu369@users.noreply.github.com> Co-authored-by: Vishnu Vardhan Pachva Co-authored-by: Reeza Ali <223746809+ReezaAli149@users.noreply.github.com> Co-authored-by: Yossi Bruss <287477490+yossibruss-ms@users.noreply.github.com> Co-authored-by: Yossi Bruss Co-authored-by: Yossi Bruss Co-authored-by: aditiijj Co-authored-by: Aditi Jain Co-authored-by: aditiijj <232662544+aditiijj@users.noreply.github.com> Co-authored-by: Ch@ps <61343268+Subham-RKB@users.noreply.github.com> Co-authored-by: schapagain Co-authored-by: ireneren0123 Co-authored-by: Irene Ren Co-authored-by: Nnachtomy Co-authored-by: Nnachtomy <258772109+Nnachtomy@users.noreply.github.com> Co-authored-by: Amar Koni <160498064+akgraph@users.noreply.github.com> Co-authored-by: Amar Koni (from Dev Box) Co-authored-by: Luca Spolidoro [MSFT] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- concepts/whats-new-overview.md | 3 +++ 1 file changed, 3 insertions(+) diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index 20ff5868f01..a3295bfd800 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -45,6 +45,9 @@ Added the [getSharePointApiUsage](/graph/api/reportroot-getsharepointapiusage?vi Added support for programmatic FIDO2 passkey registration. Use the [creationOptions](/graph/api/fido2authenticationmethod-creationoptions) function to get WebAuthn credential creation options, then complete registration by posting the new **publicKeyCredential** property to the [fido2AuthenticationMethod](/graph/api/resources/fido2authenticationmethod) resource. +### Security | eDiscovery + +Added the `cloudNativeHtmlConversion` member to the [additionalDataOptions](/graph/api/resources/security-ediscoveryaddtoreviewsetoperation#additionaldataoptions-values) enumeration. ### People and workplace intelligence