Skip to content

Commit efbe5f5

Browse files
marabooymarabooy
committed
Weekly Permissions sync 2026-02-02
1 parent 78c5fb2 commit efbe5f5

File tree

2 files changed

+46
-128
lines changed

2 files changed

+46
-128
lines changed

permissions/new/permissions.json

Lines changed: 25 additions & 125 deletions
Original file line numberDiff line numberDiff line change
@@ -1258,7 +1258,7 @@
12581258
"DelegatedWork": {
12591259
"adminDisplayName": "Read all agent identities",
12601260
"adminDescription": "Allows the client to read all agent identities.",
1261-
"requiresAdminConsent": false,
1261+
"requiresAdminConsent": true,
12621262
"privilegeLevel": 3
12631263
},
12641264
"Application": {
@@ -1447,7 +1447,7 @@
14471447
"DelegatedWork": {
14481448
"adminDisplayName": "Read all agent identity blueprints",
14491449
"adminDescription": "Allows the client to read all agent identity blueprints.",
1450-
"requiresAdminConsent": false,
1450+
"requiresAdminConsent": true,
14511451
"privilegeLevel": 3
14521452
},
14531453
"Application": {
@@ -1706,7 +1706,7 @@
17061706
"DelegatedWork": {
17071707
"adminDisplayName": "Read agent identity blueprints principals.",
17081708
"adminDescription": "Allows reading agent identity blueprint principals with a signed-in user.",
1709-
"requiresAdminConsent": false,
1709+
"requiresAdminConsent": true,
17101710
"privilegeLevel": 3
17111711
},
17121712
"Application": {
@@ -42448,42 +42448,34 @@
4244842448
"userDescription": "Allows the app to read your organization's risk prevention providers, on your behalf.",
4244942449
"requiresAdminConsent": true,
4245042450
"privilegeLevel": 3
42451-
},
42452-
"Application": {
42453-
"adminDisplayName": "Read all identity risk prevention providers",
42454-
"adminDescription": "Allows the app to read your organization's risk prevention providers, without a signed-in user.",
42455-
"requiresAdminConsent": true,
42456-
"privilegeLevel": 4
4245742451
}
4245842452
},
4245942453
"pathSets": [
4246042454
{
4246142455
"schemeKeys": [
42462-
"DelegatedWork",
42463-
"Application"
42456+
"DelegatedWork"
4246442457
],
4246542458
"methods": [
4246642459
"GET"
4246742460
],
4246842461
"paths": {
42469-
"/identity/riskPrevention/fraudProtectionProviders": "least=DelegatedWork,Application",
42470-
"/identity/riskPrevention/fraudProtectionProviders/{id}": "least=DelegatedWork,Application",
42471-
"/identity/riskPrevention/webApplicationFirewallProviders": "least=DelegatedWork,Application",
42472-
"/identity/riskPrevention/webApplicationFirewallProviders/{id}": "least=DelegatedWork,Application",
42473-
"/identity/riskPrevention/webApplicationFirewallVerifications": "least=DelegatedWork,Application",
42474-
"/identity/riskPrevention/webApplicationFirewallVerifications/{id}": "least=DelegatedWork,Application"
42462+
"/identity/riskPrevention/fraudProtectionProviders": "least=DelegatedWork",
42463+
"/identity/riskPrevention/fraudProtectionProviders/{id}": "least=DelegatedWork",
42464+
"/identity/riskPrevention/webApplicationFirewallProviders": "least=DelegatedWork",
42465+
"/identity/riskPrevention/webApplicationFirewallProviders/{id}": "least=DelegatedWork",
42466+
"/identity/riskPrevention/webApplicationFirewallVerifications": "least=DelegatedWork",
42467+
"/identity/riskPrevention/webApplicationFirewallVerifications/{id}": "least=DelegatedWork"
4247542468
}
4247642469
},
4247742470
{
4247842471
"schemeKeys": [
42479-
"DelegatedWork",
42480-
"Application"
42472+
"DelegatedWork"
4248142473
],
4248242474
"methods": [
4248342475
"POST"
4248442476
],
4248542477
"paths": {
42486-
"/identity/riskPrevention/webApplicationFirewalls/verify": "least=DelegatedWork,Application"
42478+
"/identity/riskPrevention/webApplicationFirewalls/verify": "least=DelegatedWork"
4248742479
}
4248842480
}
4248942481
],
@@ -42501,67 +42493,57 @@
4250142493
"userDescription": "Allows the app to read and write your organization's risk prevention providers, on your behalf.",
4250242494
"requiresAdminConsent": true,
4250342495
"privilegeLevel": 3
42504-
},
42505-
"Application": {
42506-
"adminDisplayName": "Read and write all identity risk prevention providers",
42507-
"adminDescription": "Allows the app to read and write your organization's risk prevention providers, without a signed-in user.",
42508-
"requiresAdminConsent": true,
42509-
"privilegeLevel": 4
4251042496
}
4251142497
},
4251242498
"pathSets": [
4251342499
{
4251442500
"schemeKeys": [
42515-
"DelegatedWork",
42516-
"Application"
42501+
"DelegatedWork"
4251742502
],
4251842503
"methods": [
4251942504
"GET",
4252042505
"POST"
4252142506
],
4252242507
"paths": {
42523-
"/identity/riskPrevention/fraudProtectionProviders": "least=DelegatedWork,Application",
42524-
"/identity/riskPrevention/webApplicationFirewallProviders": "least=DelegatedWork,Application"
42508+
"/identity/riskPrevention/fraudProtectionProviders": "least=DelegatedWork",
42509+
"/identity/riskPrevention/webApplicationFirewallProviders": "least=DelegatedWork"
4252542510
}
4252642511
},
4252742512
{
4252842513
"schemeKeys": [
42529-
"DelegatedWork",
42530-
"Application"
42514+
"DelegatedWork"
4253142515
],
4253242516
"methods": [
4253342517
"DELETE",
4253442518
"GET",
4253542519
"PATCH"
4253642520
],
4253742521
"paths": {
42538-
"/identity/riskPrevention/fraudProtectionProviders/{id}": "least=DelegatedWork,Application",
42539-
"/identity/riskPrevention/webApplicationFirewallProviders/{id}": "least=DelegatedWork,Application"
42522+
"/identity/riskPrevention/fraudProtectionProviders/{id}": "least=DelegatedWork",
42523+
"/identity/riskPrevention/webApplicationFirewallProviders/{id}": "least=DelegatedWork"
4254042524
}
4254142525
},
4254242526
{
4254342527
"schemeKeys": [
42544-
"DelegatedWork",
42545-
"Application"
42528+
"DelegatedWork"
4254642529
],
4254742530
"methods": [
4254842531
"POST"
4254942532
],
4255042533
"paths": {
42551-
"/identity/riskPrevention/webApplicationFirewallProviders/{id}/verify": "least=DelegatedWork,Application"
42534+
"/identity/riskPrevention/webApplicationFirewallProviders/{id}/verify": "least=DelegatedWork"
4255242535
}
4255342536
},
4255442537
{
4255542538
"schemeKeys": [
42556-
"DelegatedWork",
42557-
"Application"
42539+
"DelegatedWork"
4255842540
],
4255942541
"methods": [
4256042542
"DELETE",
4256142543
"GET"
4256242544
],
4256342545
"paths": {
42564-
"/identity/riskPrevention/webApplicationFirewallVerifications/{id}": "least=DelegatedWork,Application"
42546+
"/identity/riskPrevention/webApplicationFirewallVerifications/{id}": "least=DelegatedWork"
4256542547
}
4256642548
}
4256742549
],
@@ -47970,7 +47952,7 @@
4797047952
}
4797147953
],
4797247954
"ownerInfo": {
47973-
"ownerSecurityGroup": "privacymanagementDSR"
47955+
"ownerSecurityGroup": "PrivacySolutionAdmin"
4797447956
}
4797547957
},
4797647958
"SubjectRightsRequest.ReadWrite.All": {
@@ -48030,7 +48012,7 @@
4803048012
}
4803148013
],
4803248014
"ownerInfo": {
48033-
"ownerSecurityGroup": "privacymanagementDSR"
48015+
"ownerSecurityGroup": "PrivacySolutionAdmin"
4803448016
}
4803548017
},
4803648018
"Synchronization.Read.All": {
@@ -53248,6 +53230,7 @@
5324853230
"/teams/{id}/completemigration": "least=Application",
5324953231
"/users/{id}/teamwork/sections": "",
5325053232
"/users/{id}/teamwork/sections/{id}/items": "",
53233+
"/users/{id}/teamwork/sections/{id}/items/{id}/move": "",
5325153234
"/users/{id}/teamwork/sections/{id}/items/reorder": "",
5325253235
"/users/{id}/teamwork/sections/reorder": ""
5325353236
}
@@ -54115,42 +54098,6 @@
5411554098
"ownerSecurityGroup": "riskiq-dev"
5411654099
}
5411754100
},
54118-
"ThreatSubmission.Read": {
54119-
"authorizationType": "oAuth2",
54120-
"schemes": {
54121-
"DelegatedWork": {
54122-
"adminDisplayName": "Read threat submissions",
54123-
"adminDescription": "Allows the app to read the threat submissions and threat submission policies owned by the signed-in user.",
54124-
"userDisplayName": "Read threat submissions",
54125-
"userDescription": "Allows the app to read the threat submissions and threat submission policies that you own on your behalf.",
54126-
"requiresAdminConsent": true,
54127-
"privilegeLevel": 2
54128-
}
54129-
},
54130-
"pathSets": [
54131-
{
54132-
"schemeKeys": [
54133-
"DelegatedWork"
54134-
],
54135-
"methods": [
54136-
"GET"
54137-
],
54138-
"paths": {
54139-
"/security/threatsubmission/emailthreats": "least=DelegatedWork",
54140-
"/security/threatsubmission/emailthreats/{id}": "least=DelegatedWork",
54141-
"/security/threatsubmission/emailthreatsubmissionpolicies": "least=DelegatedWork",
54142-
"/security/threatsubmission/emailthreatsubmissionpolicies/{id}": "least=DelegatedWork",
54143-
"/security/threatsubmission/filethreats": "least=DelegatedWork",
54144-
"/security/threatsubmission/filethreats/{id}": "least=DelegatedWork",
54145-
"/security/threatsubmission/urlthreats": "least=DelegatedWork",
54146-
"/security/threatsubmission/urlthreats/{id}": "least=DelegatedWork"
54147-
}
54148-
}
54149-
],
54150-
"ownerInfo": {
54151-
"ownerSecurityGroup": "IdentityReq"
54152-
}
54153-
},
5415454101
"ThreatSubmission.Read.All": {
5415554102
"authorizationType": "oAuth2",
5415654103
"schemes": {
@@ -54194,53 +54141,6 @@
5419454141
"ownerSecurityGroup": "IdentityReq"
5419554142
}
5419654143
},
54197-
"ThreatSubmission.ReadWrite": {
54198-
"authorizationType": "oAuth2",
54199-
"schemes": {
54200-
"DelegatedWork": {
54201-
"adminDisplayName": "Read and write threat submissions",
54202-
"adminDescription": "Allows the app to read the threat submissions and threat submission policies owned by the signed-in user. Also allows the app to create new threat submissions on behalf of the signed-in user.",
54203-
"userDisplayName": "Read and write threat submissions",
54204-
"userDescription": "Allows the app to read the threat submissions and threat submission policies that you own. Also allows the app to create new threat submissions on your behalf.",
54205-
"requiresAdminConsent": true,
54206-
"privilegeLevel": 2
54207-
}
54208-
},
54209-
"pathSets": [
54210-
{
54211-
"schemeKeys": [
54212-
"DelegatedWork"
54213-
],
54214-
"methods": [
54215-
"GET"
54216-
],
54217-
"paths": {
54218-
"/security/threatsubmission/emailthreats/{id}": "",
54219-
"/security/threatsubmission/emailthreatsubmissionpolicies": "",
54220-
"/security/threatsubmission/emailthreatsubmissionpolicies/{id}": "",
54221-
"/security/threatsubmission/filethreats/{id}": "",
54222-
"/security/threatsubmission/urlthreats/{id}": ""
54223-
}
54224-
},
54225-
{
54226-
"schemeKeys": [
54227-
"DelegatedWork"
54228-
],
54229-
"methods": [
54230-
"GET",
54231-
"POST"
54232-
],
54233-
"paths": {
54234-
"/security/threatsubmission/emailthreats": "least=DelegatedWork",
54235-
"/security/threatsubmission/filethreats": "least=DelegatedWork",
54236-
"/security/threatsubmission/urlthreats": "least=DelegatedWork"
54237-
}
54238-
}
54239-
],
54240-
"ownerInfo": {
54241-
"ownerSecurityGroup": "IdentityReq"
54242-
}
54243-
},
5424454144
"ThreatSubmission.ReadWrite.All": {
5424554145
"authorizationType": "oAuth2",
5424654146
"schemes": {

permissions/new/provisioningInfo.json

Lines changed: 21 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -486,6 +486,24 @@
486486
"resourceAppId": "00000002-0000-0000-c000-000000000000"
487487
}
488488
],
489+
"AgentIdentityBlueprint.UpdateSponsors.All": [
490+
{
491+
"id": "",
492+
"scheme": "Application",
493+
"environment": "PPE;public",
494+
"isHidden": true,
495+
"isEnabled": false,
496+
"resourceAppId": "00000002-0000-0000-c000-000000000000"
497+
},
498+
{
499+
"id": "",
500+
"scheme": "DelegatedWork",
501+
"environment": "PPE;public",
502+
"isHidden": true,
503+
"isEnabled": false,
504+
"resourceAppId": "00000002-0000-0000-c000-000000000000"
505+
}
506+
],
489507
"AgentIdentityBlueprintPrincipal.CreateAsManager": [
490508
{
491509
"id": "c50c596a-6889-4460-acb1-3ed7c5fc142a",
@@ -15783,7 +15801,7 @@
1578315801
"resourceAppId": "ab3be6b7-f5df-413d-ac2d-abf1e3fd9c0b"
1578415802
}
1578515803
],
15786-
"TeamworkTargetedMessage.ReadWrite.All": [
15804+
"TeamworkTargetedMessage.ReadWrite": [
1578715805
{
1578815806
"id": "",
1578915807
"scheme": "Application",
@@ -16112,7 +16130,7 @@
1611216130
"id": "fd5353c6-26dd-449f-a565-c4e16b9fce78",
1611316131
"scheme": "DelegatedWork",
1611416132
"environment": "public",
16115-
"isHidden": false,
16133+
"isHidden": true,
1611616134
"isEnabled": true,
1611716135
"resourceAppId": ""
1611816136
}
@@ -16140,7 +16158,7 @@
1614016158
"id": "68a3156e-46c9-443c-b85c-921397f082b5",
1614116159
"scheme": "DelegatedWork",
1614216160
"environment": "public",
16143-
"isHidden": false,
16161+
"isHidden": true,
1614416162
"isEnabled": true,
1614516163
"resourceAppId": ""
1614616164
}

0 commit comments

Comments
 (0)