From babbe454d996121fa309d26431d5e3bfec70d828 Mon Sep 17 00:00:00 2001 From: David <1511024+marabooy@users.noreply.github.com> Date: Fri, 19 Dec 2025 03:43:37 +0300 Subject: [PATCH] Weekly Permissions sync 2025-12-19 --- permissions/new/permissions.json | 115 +++++++++++++++++++++++++- permissions/new/provisioningInfo.json | 60 ++++++++++---- 2 files changed, 154 insertions(+), 21 deletions(-) diff --git a/permissions/new/permissions.json b/permissions/new/permissions.json index 13ed5675..d57c1512 100644 --- a/permissions/new/permissions.json +++ b/permissions/new/permissions.json @@ -19033,13 +19033,11 @@ "/directory/administrativeunits/{id}/members": "", "/groups/{id}/deletepasswordsinglesignoncredentials": "least=DelegatedWork", "/groups/{id}/getpasswordsinglesignoncredentials": "least=DelegatedWork", - "/me/changepassword": "least=DelegatedWork", "/privilegedapproval": "least=DelegatedWork", "/privilegedroleassignments/{id}/makeeligible": "least=DelegatedWork", "/privilegedroleassignments/{id}/makepermanent": "least=DelegatedWork", "/privilegedroles/{id}/selfactivate": "least=DelegatedWork", "/privilegedroles/{id}/selfdeactivate": "least=DelegatedWork", - "/users/{id}/changepassword": "least=DelegatedWork", "/users/{id}/deletepasswordsinglesignoncredentials": "least=DelegatedWork", "/users/{id}/getpasswordsinglesignoncredentials": "least=DelegatedWork" } @@ -37488,6 +37486,36 @@ "ownerSecurityGroup": "hybridauth" } }, + "Policy.Read.OnPremAuthenticationPolicy": { + "authorizationType": "oAuth2", + "schemes": { + "DelegatedWork": { + "adminDisplayName": "Read your organization's on-prem authentication policies", + "adminDescription": "Allows the app to read your organization's on-prem authentication policies on behalf of the signed-in user.", + "userDisplayName": "Read your organization's on-prem authentication policies like PTA and single sign-on", + "userDescription": "Allows the app to read your organization's on-prem authentication policies on your behalf.", + "requiresAdminConsent": true, + "privilegeLevel": 3 + } + }, + "pathSets": [ + { + "schemeKeys": [ + "DelegatedWork" + ], + "methods": [ + "GET" + ], + "paths": { + "/policies/onPremAuthenticationPolicies": "least=DelegatedWork", + "/policies/onPremAuthenticationPolicies/{id}": "least=DelegatedWork" + } + } + ], + "ownerInfo": { + "ownerSecurityGroup": "hybridauth" + } + }, "Policy.Read.PermissionGrant": { "authorizationType": "oAuth2", "schemes": { @@ -38820,6 +38848,49 @@ "ownerSecurityGroup": "mobilitypolicyperms" } }, + "Policy.ReadWrite.OnPremAuthenticationPolicy": { + "authorizationType": "oAuth2", + "schemes": { + "DelegatedWork": { + "adminDisplayName": "Read and write your organization's on-prem authentication policies", + "adminDescription": "Allows the app to read and write your organization's on-prem authentication policies on behalf of the signed-in user.", + "userDisplayName": "Read and write your organization's on-prem authentication policies like PTA and single sign-on", + "userDescription": "Allows the app to read and write your organization's on-prem authentication policies on your behalf.", + "requiresAdminConsent": true, + "privilegeLevel": 3 + } + }, + "pathSets": [ + { + "schemeKeys": [ + "DelegatedWork" + ], + "methods": [ + "GET", + "POST" + ], + "paths": { + "/policies/onPremAuthenticationPolicies": "least=DelegatedWork" + } + }, + { + "schemeKeys": [ + "DelegatedWork" + ], + "methods": [ + "DELETE", + "GET", + "PATCH" + ], + "paths": { + "/policies/onPremAuthenticationPolicies/{id}": "least=DelegatedWork" + } + } + ], + "ownerInfo": { + "ownerSecurityGroup": "hybridauth" + } + }, "Policy.ReadWrite.PermissionGrant": { "authorizationType": "oAuth2", "schemes": { @@ -53012,7 +53083,34 @@ "/teams/{id}/channels/{id}/messages": "least=Application", "/teams/{id}/channels/{id}/messages/{id}/replies": "least=Application", "/teams/{id}/channels/{id}/startmigration": "least=Application", - "/teams/{id}/completemigration": "least=Application" + "/teams/{id}/completemigration": "least=Application", + "/users/{id}/teamwork/sections": "", + "/users/{id}/teamwork/sections/{id}/items": "", + "/users/{id}/teamwork/sections/{id}/items/reorder": "", + "/users/{id}/teamwork/sections/reorder": "" + } + }, + { + "schemeKeys": [ + "Application" + ], + "methods": [ + "PATCH" + ], + "paths": { + "/users/{id}/teamwork/sections/{id}": "" + } + }, + { + "schemeKeys": [ + "Application" + ], + "methods": [ + "DELETE" + ], + "paths": { + "/users/{id}/teamwork/sections/{id}": "", + "/users/{id}/teamwork/sections/{id}/items/{id}": "" } } ], @@ -54383,6 +54481,17 @@ "paths": { "/users/{id}": "" } + }, + { + "schemeKeys": [ + "DelegatedWork" + ], + "methods": [ + "POST" + ], + "paths": { + "/me/changePassword": "least=DelegatedWork" + } } ], "ownerInfo": { diff --git a/permissions/new/provisioningInfo.json b/permissions/new/provisioningInfo.json index 1ecc130c..59770a2a 100644 --- a/permissions/new/provisioningInfo.json +++ b/permissions/new/provisioningInfo.json @@ -10106,19 +10106,11 @@ } ], "Policy.Read.OnPremAuthenticationPolicy": [ - { - "id": "2591301f-7962-465a-af73-2cd9c2fccb8c", - "scheme": "Application", - "environment": "public", - "isHidden": true, - "isEnabled": true, - "resourceAppId": "00000003-0000-0000-c000-000000000000" - }, { "id": "067887f2-6a02-484c-91f3-5dbef3eabb51", "scheme": "DelegatedWork", "environment": "public", - "isHidden": true, + "isHidden": false, "isEnabled": true, "resourceAppId": "00000003-0000-0000-c000-000000000000" } @@ -10503,19 +10495,11 @@ } ], "Policy.ReadWrite.OnPremAuthenticationPolicy": [ - { - "id": "956747df-c11c-400d-918b-6950f1fed7da", - "scheme": "Application", - "environment": "public", - "isHidden": true, - "isEnabled": true, - "resourceAppId": "00000003-0000-0000-c000-000000000000" - }, { "id": "d87a6c97-eed7-4e98-bf63-9b2becc48899", "scheme": "DelegatedWork", "environment": "public", - "isHidden": true, + "isHidden": false, "isEnabled": true, "resourceAppId": "00000003-0000-0000-c000-000000000000" } @@ -12404,6 +12388,46 @@ "resourceAppId": "" } ], + "TeamworkSection.Read": [ + { + "id": "e849765c-20c9-4994-bb0d-fe2cd540c38c", + "scheme": "DelegatedWork", + "environment": "public", + "isHidden": true, + "isEnabled": true, + "resourceAppId": "ab3be6b7-f5df-413d-ac2d-abf1e3fd9c0b" + } + ], + "TeamworkSection.ReadWrite": [ + { + "id": "2f66f945-788d-49b8-ab3f-2b59ef72cfa5", + "scheme": "DelegatedWork", + "environment": "public", + "isHidden": true, + "isEnabled": true, + "resourceAppId": "ab3be6b7-f5df-413d-ac2d-abf1e3fd9c0b" + } + ], + "TeamworkSection.Read.All": [ + { + "id": "25dc9176-b59e-4fcf-9d31-04a6e1774a5a", + "scheme": "Application", + "environment": "public", + "isHidden": true, + "isEnabled": true, + "resourceAppId": "ab3be6b7-f5df-413d-ac2d-abf1e3fd9c0b" + } + ], + "TeamworkSection.ReadWrite.All": [ + { + "id": "316f1de5-afa6-449f-b21a-f6c18eb06333", + "scheme": "Application", + "environment": "public", + "isHidden": true, + "isEnabled": true, + "resourceAppId": "ab3be6b7-f5df-413d-ac2d-abf1e3fd9c0b" + } + ], "SecurityActions.Read.All": [ { "id": "1638cddf-07a4-4de2-8645-69c96cacad73",