diff --git a/api-reference/beta/api/appmanagementpolicy-post.md b/api-reference/beta/api/appmanagementpolicy-post.md index 39618fb66c4..c67dfcc5a4a 100644 --- a/api-reference/beta/api/appmanagementpolicy-post.md +++ b/api-reference/beta/api/appmanagementpolicy-post.md @@ -43,6 +43,7 @@ POST /policies/appManagementPolicies > [!IMPORTANT] > Service principals with a createdDateTime `null` are treated as having being created on 01/01/2019. + ## Request body In the request body, supply a JSON representation of the [appManagementPolicy](../resources/appmanagementpolicy.md) object. @@ -53,7 +54,7 @@ You can specify the following properties when creating an **appManagementPolicy* | :----------- | :---------------------------------------------------------- | :--------------------------------------------------------------------- | | displayName | String | The display name of the policy. Required. | | description | String | The description of the policy. Required. | -| isEnabled | Boolean | Denotes whether the policy is enabled. Optional. | +| isEnabled | Boolean | Denotes whether the policy is enabled. Optional. | | restrictions | [appManagementConfiguration](../resources/appManagementConfiguration.md) | Restrictions that apply to an application or service principal object. Optional. | ## Response @@ -67,9 +68,10 @@ If successful, this method returns a `201 Created` response code with the new [a The following example shows a request. This request created an app management policy with the following settings: - Enables the policy. -- Blocks creating of new passwords for applications and service principals created on or after 2019-10-19 at 10:37 AM UTC time. -- Enforces lifetime on password secrets and key credentials for applications created on or after 2014-10-19 at 10:37 AM UTC time. -- Limits password secrets for apps and service principals created after 2019-10-19 at 10:37 AM UTC time to less than 4 days, 12 hours, 30 minutes and 5 seconds. +- Blocks creating of new passwords for applications and service principals created on or after October 19th 2019 at 10:37 AM UTC time. +- Limits password secrets for apps and service principals created after October 19th 2014 at 10:37 AM UTC time to less than 90 days. +- Disables the nonDefaultUriAddition restriction. This means that apps with this policy applied to them can add new nondefault identifier URIs to their apps, even if the tenant default policy typically blocks it. +- Doesn't specify any other restrictions. This means that the behavior for those restrictions on apps/service principals with this policy applied falls back to however the tenant default policy is configured. # [HTTP](#tab/http) @@ -89,45 +91,35 @@ POST https://graph.microsoft.com/beta/policies/appManagementPolicies "passwordCredentials": [ { "restrictionType": "passwordAddition", + "state": "enabled", "maxLifetime": null, "restrictForAppsCreatedAfterDateTime": "2019-10-19T10:37:00Z" }, { "restrictionType": "passwordLifetime", + "state": "enabled", "maxLifetime": "P90D", "restrictForAppsCreatedAfterDateTime": "2014-10-19T10:37:00Z" }, { "restrictionType": "symmetricKeyAddition", + "state": "enabled", "maxLifetime": null, "restrictForAppsCreatedAfterDateTime": "2019-10-19T10:37:00Z" }, { "restrictionType": "symmetricKeyLifetime", - "maxLifetime": "P30D", - "restrictForAppsCreatedAfterDateTime": "2014-10-19T10:37:00Z" - } - ], - "keyCredentials": [ - { - "restrictionType": "asymmetricKeyLifetime", + "state": "enabled", "maxLifetime": "P90D", "restrictForAppsCreatedAfterDateTime": "2014-10-19T10:37:00Z" - }, - { - "restrictionType": "trustedCertificateAuthority", - "restrictForAppsCreatedAfterDateTime": "2019-10-19T10:37:00Z", - "certificateBasedApplicationConfigurationIds": [ - "eec5ba11-2fc0-4113-83a2-ed986ed13743", - "bb8e164b-f9ed-4b98-bc45-65eddc14f4c1" - ], - "maxLifetime": null } ], + "keyCredentials": [], "applicationRestrictions": { "identifierUris": { "nonDefaultUriAddition": { - "restrictForAppsCreatedAfterDateTime": "2024-01-01T10:37:00Z", + "state": "disabled", + "restrictForAppsCreatedAfterDateTime": null, "excludeAppsReceivingV2Tokens": true, "excludeSaml": true } @@ -186,6 +178,7 @@ The following example shows the response. HTTP/1.1 200 OK Content-type: application/json + { "@odata.context": "https://graph.microsoft.com/beta/$metadata#policies/appManagementPolicies/$entity", "id": "a4ab1ed9-46bb-4bef-88d4-86fd6398dd5d", @@ -196,15 +189,40 @@ Content-type: application/json "passwordCredentials": [ { "restrictionType": "passwordAddition", + "state": "enabled", "maxLifetime": null, "restrictForAppsCreatedAfterDateTime": "2019-10-19T10:37:00Z" }, { "restrictionType": "passwordLifetime", + "state": "enabled", "maxLifetime": "P90D", "restrictForAppsCreatedAfterDateTime": "2018-10-19T10:37:00Z" + }, + { + "restrictionType": "symmetricKeyAddition", + "state": "enabled", + "maxLifetime": null, + "restrictForAppsCreatedAfterDateTime": "2019-10-19T10:37:00Z" + }, + { + "restrictionType": "symmetricKeyLifetime", + "state": "enabled", + "maxLifetime": "P90D", + "restrictForAppsCreatedAfterDateTime": "2014-10-19T10:37:00Z" } - ] + ], + "keyCredentials": [], + "applicationRestrictions": { + "identifierUris": { + "nonDefaultUriAddition": { + "state": "disabled", + "restrictForAppsCreatedAfterDateTime": null, + "excludeAppsReceivingV2Tokens": true, + "excludeSaml": true + } + } + } } } ``` diff --git a/api-reference/beta/api/cloudpcprovisioningpolicy-apply.md b/api-reference/beta/api/cloudpcprovisioningpolicy-apply.md index f9d71e31634..fb35b88cf8a 100644 --- a/api-reference/beta/api/cloudpcprovisioningpolicy-apply.md +++ b/api-reference/beta/api/cloudpcprovisioningpolicy-apply.md @@ -50,7 +50,8 @@ The following table shows the parameter that you can use with this method. |Parameter|Type|Description| |:---|:---|:---| -|policySettings|cloudPcPolicySettingType|The target property of this apply action. Possible values are: `region`, `singleSignOn`, `unknownFutureValue`. The default value is `region`. This action applies `region` as a value if this parameter is `null`.| +|policySettings|cloudPcPolicySettingType|The target property of the apply action. Possible values are: `region`, `singleSignOn`, `unknownFutureValue`. The default value is `region`. This action applies `region` as a value if this parameter is `null`.| +|reservePercentage|Int32|For `Frontline shared` only. The percentage of Cloud PCs to keep available. Administrators can set this property to a value from 0 to 99. Cloud PCs are reprovisioned only when there are no active and connected Cloud PC users.| ## Response @@ -74,7 +75,8 @@ POST https://graph.microsoft.com/beta/deviceManagement/virtualEndpoint/provision Content-Type: application/json { - "policySettings": "region" + "policySettings": "region", + "reservePercentage": 80, } ``` diff --git a/api-reference/beta/api/copilotadminlimitedmode-get.md b/api-reference/beta/api/copilotadminlimitedmode-get.md new file mode 100644 index 00000000000..262e41dd044 --- /dev/null +++ b/api-reference/beta/api/copilotadminlimitedmode-get.md @@ -0,0 +1,98 @@ +--- +title: "Get copilotAdminLimitedMode" +description: "Read the properties and relationships of a copilotAdminLimitedMode object." +author: "gautamjain14" +ms.localizationpriority: medium +ms.subservice: "meetings-copilot" +doc_type: apiPageType +--- + +# Get copilotAdminLimitedMode + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Read the properties and relationships of a [copilotAdminLimitedMode](../resources/copilotadminlimitedmode.md) object. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +> **Note:** Global admin or Global reader permission is required to call this API. + +|Permission type |Least privileged permissions|Higher privileged permissions| +| --------------- |-----------------------------| --------------------------- | +|Delegated (work or school account)|CopilotSettings-LimitedMode.Read|CopilotSettings-LimitedMode.ReadWrite| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|Not supported.Not supported.| + + +## HTTP request + + +``` http +GET /copilot/admin/settings/limitedMode +``` +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a [copilotAdminLimitedMode](../resources/copilotadminlimitedmode.md) object in the response body. + +The API can return more HTTP status codes: `403 Forbidden`, `500 Internal Server Error`, or `429 Too Many Requests`. + +## Examples + +### Request + +The following example shows a request. + +``` http +GET https://graph.microsoft.com/beta/copilot/admin/settings/limitedMode +``` + + +### Response + +The following example shows the response. +>**Note:** The response object shown here might be shortened for readability. + +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value": { + "@odata.type": "#microsoft.graph.copilotAdminLimitedMode", + "isEnabledForGroup": "Boolean", + "groupId": "String" + } +} +``` + diff --git a/api-reference/beta/api/copilotadminlimitedmode-update.md b/api-reference/beta/api/copilotadminlimitedmode-update.md new file mode 100644 index 00000000000..fc893917e99 --- /dev/null +++ b/api-reference/beta/api/copilotadminlimitedmode-update.md @@ -0,0 +1,100 @@ +--- +title: "Update copilotAminLimitedMode" +description: "Update the properties of a copilotAdminLimitedMode object." +author: "gautamjain14" +ms.localizationpriority: medium +ms.subservice: "meetings-copilot" +doc_type: apiPageType +--- + +# Update copilotAdminLimitedMode + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Update the properties of a [copilotAdminLimitedMode](../resources/copilotadminlimitedmode.md) object. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +> **Note:** Global admin or Global reader permission is required to call this API. + +|Permission type |Least privileged permissions|Higher privileged permissions| +| --------------- |-----------------------------| --------------------------- | +|Delegated (work or school account)|CopilotSettings-LimitedMode.ReadWrite| Not available.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|Not supported.|Not supported.| + +## HTTP request + + +``` http +PATCH /copilot/admin/settings/limitedMode +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| +|Content-Type|application/json. Required.| + +## Request body + +|Property|Type|Description| +|:---|:---|:---| +|isEnabledForGroup|Boolean|Enables the user to be in limited mode for Copilot in Teams meetings. When copilotLimitedMode=true, users in this mode can ask any questions, but Copilot doesn't respond to certain questions related to inferring emotions, behavior, or judgments. When copilotLimitedMode=false, the current mode for Copilot, it responds to any types of questions grounded to the meeting conversation. The default value is `false`.| +|groupId|String|The ID of a Microsoft Entra group, of which the value of `isEnabledForGroup` is applied value for its members. The default value is `null`. This parameter is optional. If `isEnabledForGroup` is set to true, the `groupId` value must be provided for the copilotLimitedMode to be enabled for the members of the group.| + +## Response + +If successful, this method returns a `200 OK` response code and an updated [copilotAdminLimitedMode](../resources/copilotadminlimitedmode.md) object in the response body. + +API can return additional HTTP status codes such as `403 Forbidden`, `500 Internal Server Error`, or `429 Too Many Requests`. + +## Examples + +### Request + +The following example shows a request. + +``` http +PATCH https://graph.microsoft.com/beta/copilot/admin/settings/limitedMode +Content-Type: application/json + +{ + "@odata.type": "#microsoft.graph.copilotAdminLimitedMode", + "isEnabledForGroup": "Boolean", + "groupId": "String" +} +``` + + +### Response + +The following example shows the response. +>**Note:** The response object shown here might be shortened for readability. + +``` http +HTTP/1.1 200 OK +Content-Type: application/json +``` + diff --git a/api-reference/beta/api/filestorage-list-containers.md b/api-reference/beta/api/filestorage-list-containers.md index c6b720e3737..6debe61c821 100644 --- a/api-reference/beta/api/filestorage-list-containers.md +++ b/api-reference/beta/api/filestorage-list-containers.md @@ -38,7 +38,7 @@ GET /storage/fileStorage/containers?$filter=containerTypeId eq {containerTypeId} ## Query parameters -This method required the `containerTypeId` parameter. It supports the `$expand` OData query parameter except for on the for **drive**, **permissions**, and **customProperties** properties. For general information, see [OData query parameters](/graph/query-parameters). +This method required the `containerTypeId` parameter. It supports the `$expand` OData query parameter, except for the **drive**, **permissions**, and **customProperties** properties. For more information, see [OData query parameters](/graph/query-parameters). ## Request headers @@ -68,7 +68,7 @@ The following example enumerates all containers of a given container type. } --> ``` http -GET https://graph.microsoft.com/beta/storage/fileStorage/containers?$filter=containerTypeId eq {containerTypeId} +GET https://graph.microsoft.com/beta/storage/fileStorage/containers?$filter=containerTypeId eq e2756c4d-fa33-4452-9c36-2325686e1082 ``` # [C#](#tab/csharp) diff --git a/api-reference/beta/api/filestoragecontainer-activate.md b/api-reference/beta/api/filestoragecontainer-activate.md index 5d74a4d75d7..3240dbb215d 100644 --- a/api-reference/beta/api/filestoragecontainer-activate.md +++ b/api-reference/beta/api/filestoragecontainer-activate.md @@ -28,6 +28,8 @@ Choose the permission or permissions marked as least privileged for this API. Us [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-activate-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + ## HTTP request ``` http -DELETE /storageContainers/{containerId}/columns/{column-id} +DELETE /storageContainers/{containerId}/columns/{columnId} ``` ## Request headers diff --git a/api-reference/beta/api/filestoragecontainer-delete-customproperty.md b/api-reference/beta/api/filestoragecontainer-delete-customproperty.md index 204780af799..6083c0eab5b 100644 --- a/api-reference/beta/api/filestoragecontainer-delete-customproperty.md +++ b/api-reference/beta/api/filestoragecontainer-delete-customproperty.md @@ -1,6 +1,6 @@ --- title: "Delete custom properties from a fileStorageContainer" -description: "Delete custom properties from a fileStorageContainer" +description: "Delete custom properties from a fileStorageContainer." author: "tonchan-msft" ms.localizationpriority: medium ms.subservice: "onedrive" @@ -21,6 +21,8 @@ Choose the permission or permissions marked as least privileged for this API. Us [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-delete-customproperty-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + ## HTTP request [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-delete-permissions-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + ## HTTP request [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-delete-recyclebin-items-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + ## HTTP request [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-get-columns-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + ## HTTP request [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-get-drive-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + ## HTTP request [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-get-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + ## HTTP request [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-list-columns-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + ## HTTP request [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-list-customproperty-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + ## HTTP request [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-list-permissions-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + ## HTTP request [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-list-recyclebin-items-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + ## HTTP request [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-lock-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + > [!NOTE] > When delegated permissions are used, only members who are assigned the `owner` role can call this method. diff --git a/api-reference/beta/api/filestoragecontainer-permanentdelete.md b/api-reference/beta/api/filestoragecontainer-permanentdelete.md index 34e6dc0af69..e646b0aaae3 100644 --- a/api-reference/beta/api/filestoragecontainer-permanentdelete.md +++ b/api-reference/beta/api/filestoragecontainer-permanentdelete.md @@ -28,6 +28,8 @@ Choose the permission or permissions marked as least privileged for this API. Us --> [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-permanentdelete-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + ## HTTP request [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-post-columns-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + ## HTTP request [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-post-customproperty-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + ## HTTP request [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-post-permissions-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + ## HTTP request [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-post-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + ## HTTP request [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-restore-recyclebin-items-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + ## HTTP request [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-restore-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + ## HTTP request [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-unlock-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + ## HTTP request ``` http diff --git a/api-reference/beta/api/filestoragecontainer-update-column.md b/api-reference/beta/api/filestoragecontainer-update-column.md index dbd827edb8c..792131d25f4 100644 --- a/api-reference/beta/api/filestoragecontainer-update-column.md +++ b/api-reference/beta/api/filestoragecontainer-update-column.md @@ -28,6 +28,8 @@ Choose the permission or permissions marked as least privileged for this API. Us --> [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-update-columns-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + ## HTTP request [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-update-customproperty-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + ## HTTP request [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-update-permissions-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + ## HTTP request [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-update-recyclebinsettings-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + ## HTTP request [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-update-permissions.md)] +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + ## HTTP request ``` http DELETE /networkaccess/filteringPolicies/{filteringPolicyId}/policyRules/{filteringRuleId} - ``` ## Request headers @@ -59,7 +61,6 @@ The following example shows a request. --> ``` http DELETE https://graph.microsoft.com/beta/networkaccess/filteringPolicies/bb1d249e-0691-477c-aae4-adfca179746a/policyRules/67f2edf8-1dc0-4a4f-87ea-9117541646de - ``` # [C#](#tab/csharp) diff --git a/api-reference/beta/api/networkaccess-filteringrule-get.md b/api-reference/beta/api/networkaccess-filteringrule-get.md index c4b8952d4c4..336f0806bfe 100644 --- a/api-reference/beta/api/networkaccess-filteringrule-get.md +++ b/api-reference/beta/api/networkaccess-filteringrule-get.md @@ -12,7 +12,10 @@ Namespace: microsoft.graph.networkaccess [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Get a [filteringRule](../resources/networkaccess-filteringrule.md) object. +Get a [filteringRule](../resources/networkaccess-filteringrule.md) object. The following derived types are supported: + +- [fqdnFilteringRule](../resources/networkaccess-fqdnfilteringrule.md) +- [webCategoryFilteringRule](../resources/networkaccess-webcategoryfilteringrule.md) [!INCLUDE [national-cloud-support](../../includes/global-only.md)] @@ -35,7 +38,7 @@ GET /networkaccess/filteringPolicies/{filteringPoliciesId}/policyRules/{policyRu ``` ## Optional query parameters -This method does not supports OData query parameters. +This method doesn't support OData query parameters. ## Request headers |Name|Description| @@ -47,7 +50,7 @@ Don't supply a request body for this method. ## Response -If successful, this method returns a `200 OK` response code and a [microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md) object in the response body. +If successful, this method returns a `200 OK` response code and a [microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md) object in the response body. The **@odata.type** property in the response object indicates the type of the **filteringRule** object. ## Examples @@ -115,12 +118,12 @@ Content-Type: application/json "id": "f76a8f4d-7e9f-4aa0-ae1a-e88330c5634c", "name": "Contoso", "ruleType": "fqdn", - "destinations": [ - { - "@odata.type": "#microsoft.graph.networkaccess.fqdn", - "value": "www.contoso.com" - } - ] + "destinations": [ + { + "@odata.type": "#microsoft.graph.networkaccess.fqdn", + "value": "www.contoso.com" + } + ] } ``` diff --git a/api-reference/beta/api/networkaccess-filteringrule-list.md b/api-reference/beta/api/networkaccess-filteringrule-list.md index b7cdb0bc5c7..31f21ab4cd7 100644 --- a/api-reference/beta/api/networkaccess-filteringrule-list.md +++ b/api-reference/beta/api/networkaccess-filteringrule-list.md @@ -12,7 +12,10 @@ Namespace: microsoft.graph.networkaccess [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Get a list of the [filteringRule](../resources/networkaccess-filteringrule.md) objects and their properties. +Get a list of the [filteringRule](../resources/networkaccess-filteringrule.md) objects and their properties. The following derived types are supported: + +- [fqdnFilteringRule](../resources/networkaccess-fqdnfilteringrule.md) +- [webCategoryFilteringRule](../resources/networkaccess-webcategoryfilteringrule.md) [!INCLUDE [national-cloud-support](../../includes/global-only.md)] @@ -35,7 +38,7 @@ GET /networkaccess/filteringPolicies/{filteringPolicyId}?$expand=policyRules ``` ## Optional query parameters -This method does not support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +This method doesn't support OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). ## Request headers |Name|Description| @@ -47,7 +50,7 @@ Don't supply a request body for this method. ## Response -If successful, this method returns a `200 OK` response code and a collection of [filteringRule](../resources/networkaccess-filteringrule.md) objects in the response body. +If successful, this method returns a `200 OK` response code and a collection of [microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md) objects in the response body. The **@odata.type** property in the response object indicates the type of the **filteringRule** object. ## Examples diff --git a/api-reference/beta/api/networkaccess-filteringrule-post.md b/api-reference/beta/api/networkaccess-filteringrule-post.md index 42b47754dc5..deb1a25a9d0 100644 --- a/api-reference/beta/api/networkaccess-filteringrule-post.md +++ b/api-reference/beta/api/networkaccess-filteringrule-post.md @@ -12,8 +12,10 @@ Namespace: microsoft.graph.networkaccess [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Create a new [filteringRule](../resources/networkaccess-filteringrule.md). +Create a new [filteringRule](../resources/networkaccess-filteringrule.md). The following derived types are supported: +- [fqdnFilteringRule](../resources/networkaccess-fqdnfilteringrule.md) +- [webCategoryFilteringRule](../resources/networkaccess-webcategoryfilteringrule.md) [!INCLUDE [national-cloud-support](../../includes/global-only.md)] @@ -42,17 +44,18 @@ POST /networkaccess/filteringPolicies/{filteringPoliciesId}/policyRules |Content-Type|application/json. Required.| ## Request body -Don't supply a request body for this method. + +In the request body, supply a JSON representation of the [fqdnFilteringRule](../resources/networkaccess-fqdnfilteringrule.md) or [webCategoryFilteringRule](../resources/networkaccess-webcategoryfilteringrule.md) resource type. ## Response -If successful, this method returns a `201 Created` response code and a [filteringRule](../resources/networkaccess-filteringrule.md) object in the response body. +If successful, this method returns a `201 Created` response code and a [microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md) object in the response body. The **@odata.type** property specifies the type of the created object. ## Examples ### Request The following example shows a request. -# [HTTP](#tab/http) + ``` http GET /security/cases/ediscoveryCases/{ediscoveryCaseId}/custodians/{ediscoveryCustodianId} -GET /security/cases/ediscoveryCases/{ediscoveryCaseId}/reviewSets/{ediscoveryReviewSetId}/files/{ediscoveryFileId}/custodian ``` ## Optional query parameters diff --git a/api-reference/beta/resources/apiapplication.md b/api-reference/beta/resources/apiapplication.md index fdf69073f62..4137c3fe041 100644 --- a/api-reference/beta/resources/apiapplication.md +++ b/api-reference/beta/resources/apiapplication.md @@ -13,7 +13,7 @@ Namespace: microsoft.graph [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -Specifies settings for an application that implements a web API. +Specifies settings for an [application](application.md) that implements a web API. ## Properties diff --git a/api-reference/beta/resources/applicationauthenticationmethodpolicy.md b/api-reference/beta/resources/applicationauthenticationmethodpolicy.md index 4abcfcb0f25..6e6c7f1b894 100644 --- a/api-reference/beta/resources/applicationauthenticationmethodpolicy.md +++ b/api-reference/beta/resources/applicationauthenticationmethodpolicy.md @@ -20,25 +20,25 @@ These policies allow organizations to take advantage of the new app security har There are two types of policy controls: - Tenant default policy that applies to all applications or service principals. -- App (application or service principal) management policies that allow inclusion or exclusion of individual applications from the tenant default policy. +- App (application or service principal) management policies that allow individual applications to be included or excluded from the tenant default policy. ## Tenant default app management policy A tenant default policy is a single object that always exists and is disabled by default. It's defined by the [tenantAppManagementPolicy](tenantappmanagementpolicy.md) resource and enforces restrictions on application vs service principal objects. It contains the following two properties: - **applicationRestrictions** allows targeting applications owned by the tenant (application objects). -- **servicePrincipalRestrictions** allows targeting provisioned from another tenant (service principal objects. +- **servicePrincipalRestrictions** allows targeting provisioned from another tenant (service principal objects). -These properties enable an organization to lock down credential usage in apps that originate from their tenant and provide a mechanism to control credential addition in externally provisioned applications to protect them from credential abuse. The application owner of a multi-tenant app could still use any type of credentials in their application object, but the policy only protects the service principal from credential abuse. +These properties enable an organization to separately control the configuration of apps that originate from their tenant vs. their tenant's instance of an externally owned application. ## App management policy for applications and service principals -App management policies are defined in the [appManagementPolicy](appmanagementpolicy.md) resource, which contains a collection of policies with varying restrictions or different enforcement dates from what's defined in tenant default policy. One of these policies can be assigned to an application or service principal, excluding them from the tenant default policy. +App management policies are defined in the [appManagementPolicy](appmanagementpolicy.md) resource, which contains a collection of policies with varying restrictions or different enforcement dates from what's defined in tenant default policy. One of these policies can be assigned to an application or service principal to override the tenant default policy. -When both the tenant default policy and an app management policy exist, the app management policy takes precedence and the assigned application or service principal doesn't inherit from the tenant default policy. Only one policy can be assigned to an application or service principal. +When the tenant default policy and an app management policy define the same restriction, the app management policy takes precedence. If a restriction is set on an app management policy in a `disabled` state, that restriction won't apply to apps with that policy linked to them, regardless of what the tenant default policy would normally enforce. Similarly, if a restriction is set on an app management policy in an `enabled` state, that restriction will apply to apps with that policy linked to them. However, if the app management policy doesn't define any behavior for a certain restriction, it falls back to the tenant default policy's behavior. Only one app management policy can be assigned to an application or service principal. > [!Note] -> Neither the tenant default policies nor the app management policies block token issuance for existing applications. An application that does not meet the policy requirements will continue to work until it tries to update the resource to add a new secret. +> Neither the tenant default nor the app management policies block token issuance for existing applications. An application that doesn't meet the policy requirements continues to work; only the app creation/update operation that violates the policy is blocked. ## What restrictions can be managed in Microsoft Graph? @@ -53,7 +53,7 @@ The application authentication methods policy API offers the following restricti | symmetricKeyLifetime | Enforce a max lifetime range for a symmetric key. | Restrict all new symmetric keys to a maximum of 30 days for applications created after 01/01/2019. | | asymmetricKeyLifetime | Enforce a max lifetime range for an asymmetric key (certificate). | Restrict all new asymmetric key credentials to a maximum of 30 days for applications created after 01/01/2019. | | trustedCertificateAuthority | Enforce the list of trusted certificate authorities. | Block all new asymmetric key credentials if the issuer is not listed in the trusted certificate authority list. | -| nonDefaultUriAddition | Block new identifier URIs for apps except the "default" URI format. | Block new identifier URIs for apps unless they are of the format `api://{appId}`. | +| nonDefaultUriAddition | Block new identifier URIs for apps except the "default" URI format. | Block new identifier URIs for apps unless they are of the format `api://{appId}` or `api://{tenantId}/{appId}`. | > [!Note] > All lifetime restrictions are expressed in ISO-8601 duration format (For example: P4DT12H30M5S). @@ -73,17 +73,15 @@ Depending on whether your app is a single tenant or multitenant app, you apply t | Tenant default policy | App management policy | | ---------------------------------------------------------------------------------- | --------------------------------------------------------------------------------------------------------------------------------------------------- | | Policy always exists. | Policy objects can be created or updated to override default policy. | -| Restrictions are disabled by default for app/SP. | Allows customization for single tenant or multi tenant(backing app in home tenant or provisioned apps). | | Allows only single restriction object definition for all resources. | Allows multiple policy objects to be defined, but only one can be applied to a resource. | | Allows distinction of restrictions for application objects vs. service principals. | Policy can be applied to either an application or service principal object. | -| Applies all restrictions configured to all apps or service principals. | Applies only the restrictions configured in the resource policy to the specified app or service principal, and doesn't inherit from default policy. | +| Applies all restrictions configured to all apps or service principals. | Applies the restrictions configured in the resource policy to the specified app or service principal. Anything not defined inherits from the default policy. | ## Requirements - The least privileged [Microsoft Entra roles](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json) for management of application authentication method policies are Application Administrator and Cloud Application Administrator. -- All app policy management operations require a [Microsoft Entra Workload ID Premium license](/azure/active-directory/workload-identities/workload-identities-faqs#what-is-the-cost-of-workload-identities-premium-plan). -## Next steps +## Related content -- [tenantAppManagementPolicy](tenantappmanagementpolicy.md) resource type. -- [appManagementPolicy](appmanagementpolicy.md) resource type. +- [tenantAppManagementPolicy](tenantappmanagementpolicy.md) +- [appManagementPolicy](appmanagementpolicy.md) diff --git a/api-reference/beta/resources/copilotadmin.md b/api-reference/beta/resources/copilotadmin.md new file mode 100644 index 00000000000..ced99d10aa4 --- /dev/null +++ b/api-reference/beta/resources/copilotadmin.md @@ -0,0 +1,45 @@ +--- +title: "copilotAdmin resource type" +description: "Represents a Microsoft 365 admin who can add or modify Microsoft 365 Copilot settings." +author: "gautamjain14" +ms.localizationpriority: medium +ms.subservice: "meetings-copilot" +doc_type: resourcePageType +--- + +# copilotAdmin resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a Microsoft 365 admin who can add or modify Microsoft 365 Copilot settings. + + +Inherits from [entity](../resources/entity.md). + +## Properties + +None. + +## Relationships +|Relationship|Type|Description| +|:---|:---|:---| +|settings|[copilotAdminSetting](../resources/copilotadminsetting.md)|Set of Copilot settings that can be added or modified. Navigation property. Read-only. Nullable.| + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.copilotAdmin" +} +``` + diff --git a/api-reference/beta/resources/copilotadminlimitedmode.md b/api-reference/beta/resources/copilotadminlimitedmode.md new file mode 100644 index 00000000000..274d99f2ea6 --- /dev/null +++ b/api-reference/beta/resources/copilotadminlimitedmode.md @@ -0,0 +1,52 @@ +--- +title: "copilotAdminLimitedMode resource type" +description: "Represents a setting that controls whether Microsoft 365 Copilot users can receive responses to sentiment-related prompts." +author: "gautamjain14" +ms.localizationpriority: medium +ms.subservice: "meetings-copilot" +doc_type: resourcePageType +--- + +# copilotAdminLimitedMode resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents a setting that controls whether Microsoft 365 Copilot users can receive responses to sentiment-related prompts. If this setting is enabled, Copilot doesn't respond to sentiment-related prompts and questions asked by the user. If the setting is disabled, Copilot responds to sentiment-related prompts and questions asked by the user. Copilot in Microsoft Teams currently honors this setting. By default, the setting is disabled. + +Inherits from [entity](../resources/entity.md). + +## Methods +|Method|Return type|Description| +|:---|:---|:---| +|[Get](../api/copilotadminlimitedmode-get.md)|[copilotAdminLimitedMode](../resources/copilotadminlimitedmode.md)|Read the properties and relationships of a copilotAdminLimitedMode object.| +|[Update](../api/copilotadminlimitedmode-update.md)|[copilotAdminLimitedMode](../resources/copilotadminlimitedmode.md)|Update the properties of a copilotAdminLimitedMode object.| + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|isEnabledForGroup|Boolean|Enables the user to be in limited mode for Copilot in Teams meetings. When `copilotAdminLimitedMode=true`, users in this mode can ask any questions, but Copilot doesn't respond to certain questions related to inferring emotions, behavior, or judgments. When `copilotAdminLimitedMode=false`, it responds to any types of questions grounded to the meeting conversation. The default value is false.| +|groupId|String|The ID of a Microsoft Entra group to which the value of the **isEnabledForGroup** property is applied value. The default value is `null`. This parameter is optional. If **isEnabledForGroup** is set to `true`, the **groupId** value must be provided in order for Copilot limited mode to be enabled for the members of the group. | + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.copilotAdminLimitedMode", + "isEnabledForGroup": "Boolean", + "groupId": "String" +} +``` + diff --git a/api-reference/beta/resources/copilotadminsetting.md b/api-reference/beta/resources/copilotadminsetting.md new file mode 100644 index 00000000000..127f38e5e43 --- /dev/null +++ b/api-reference/beta/resources/copilotadminsetting.md @@ -0,0 +1,45 @@ +--- +title: "copilotAdminSetting resource type" +description: "Represents an admin setting for Microsoft 365 Copilot." +author: "gautamjain14" +ms.localizationpriority: medium +ms.subservice: "meetings-copilot" +doc_type: resourcePageType +--- + +# copilotAdminSetting resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents an admin setting for Microsoft 365 Copilot. + + +Inherits from [entity](../resources/entity.md). + +## Properties + +None. + +## Relationships +|Relationship|Type|Description| +|:---|:---|:---| +|limitedMode|[copilotAdminLimitedMode](../resources/copilotadminlimitedmode.md)|Represents a setting that controls whether Microsoft 365 Copilot users can receive responses to sentiment-related prompts. Read-only. Nullable.| + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.copilotAdminSetting" +} +``` + diff --git a/api-reference/beta/resources/copilotroot.md b/api-reference/beta/resources/copilotroot.md new file mode 100644 index 00000000000..7b380e18ef2 --- /dev/null +++ b/api-reference/beta/resources/copilotroot.md @@ -0,0 +1,41 @@ +--- +title: "copilotRoot resource type" +description: "A container for Microsoft 365 Copilot admin controls." +author: "gautamjain14" +ms.localizationpriority: medium +ms.subservice: "meetings-copilot" +doc_type: resourcePageType +--- + +# copilotRoot resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +A container for Microsoft 365 Copilot admin controls. + +## Properties + +None. + +## Relationships +|Relationship|Type|Description| +|:---|:---|:---| +|admin|[copilotAdmin](../resources/copilotadmin.md)|The Microsoft 365 Copilot admin who can add or modify Copilot settings. Read-only. Nullable.| + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.copilotRoot" +} +``` + diff --git a/api-reference/beta/resources/networkaccess-filteringrule.md b/api-reference/beta/resources/networkaccess-filteringrule.md index 28d55614799..f9decb55b29 100644 --- a/api-reference/beta/resources/networkaccess-filteringrule.md +++ b/api-reference/beta/resources/networkaccess-filteringrule.md @@ -1,6 +1,6 @@ --- title: "filteringRule resource type" -description: "A rule that is used to filter traffic in Global Secure Access." +description: "An abstract type that represents a rule that filters traffic in Global Secure Access." author: "Moti-ba" ms.localizationpriority: medium ms.subservice: entra-id @@ -13,25 +13,28 @@ Namespace: microsoft.graph.networkaccess [!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] -A rule that is used to filter traffic in Global Secure Access. -Inherits from [microsoft.graph.networkaccess.policyRule](../resources/networkaccess-policyrule.md). +An abstract type that represents a rule that filters traffic in Global Secure Access. + +Base type of [fqdnFilteringRule](networkaccess-fqdnfilteringrule.md) and [webCategoryFilteringRule](networkaccess-webcategoryfilteringrule.md). + +Inherits from [policyRule](../resources/networkaccess-policyrule.md). ## Methods |Method|Return type|Description| |:---|:---|:---| -|[List](../api/networkaccess-filteringrule-list.md)|[microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md) collection|Get a list of the [microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md) objects and their properties.| -|[Create](../api/networkaccess-filteringrule-post.md)|[microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md)|Create a new [microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md) object.| -|[Get](../api/networkaccess-filteringrule-get.md)|[microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md)|Get a [microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md) object.| -|[Update](../api/networkaccess-filteringrule-update.md)|[microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md)|Update the properties of a [microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md) object.| -|[Delete](../api/networkaccess-filteringrule-delete.md)|None|Delete a [microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md) object.| +|[List](../api/networkaccess-filteringrule-list.md)|[microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md) collection|Get a list of the object types that are derived from **filteringRule**.| +|[Create](../api/networkaccess-filteringrule-post.md)|[microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md)|Create a new object type that is derived from **filteringRule**.| +|[Get](../api/networkaccess-filteringrule-get.md)|[microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md)|Get the properties and relationships of an object type that is derived from **filteringRule**.| +|[Update](../api/networkaccess-filteringrule-update.md)|[microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md)|Update the properties of an object type that is derived from **filteringRule**.| +|[Delete](../api/networkaccess-filteringrule-delete.md)|None|Delete an object type that is derived from **filteringRule**.| ## Properties |Property|Type|Description| |:---|:---|:---| |destinations|[microsoft.graph.networkaccess.ruleDestination](../resources/networkaccess-ruledestination.md) collection|Possible destinations and types of destinations accessed by the user in accordance with the network filtering policy, such as IP addresses and FQDNs/URLs.| -|id|String|A unique ID for the rule. Inherited from [microsoft.graph.entity](../resources/entity.md).| +|id|String|A unique ID for the rule. Inherited from [microsoft.graph.networkaccess.policyRule](../resources/networkaccess-policyrule.md).| |name|String|The display name of the rule. Inherited from [microsoft.graph.networkaccess.policyRule](../resources/networkaccess-policyrule.md).| -|ruleType|microsoft.graph.networkaccess.networkDestinationType|The rule types that specify the basis for filtering. The possible values are `url`, `fqdn`, `ipAddress`, `ipRange`, `ipSubnet`, and `webCategory`.| +|ruleType|microsoft.graph.networkaccess.networkDestinationType|The rule types that specify the basis for filtering. The possible values are: `url`, `fqdn`, `ipAddress`, `ipRange`, `ipSubnet`, and `webCategory`.| ## Relationships None. @@ -49,14 +52,10 @@ The following JSON representation shows the resource type. ``` json { "@odata.type": "#microsoft.graph.networkaccess.filteringRule", + "destinations": [{"@odata.type": "microsoft.graph.networkaccess.webCategory"}], "id": "String (identifier)", "name": "String", - "ruleType": "String", - "destinations": [ - { - "@odata.type": "microsoft.graph.networkaccess.webCategory" - } - ] + "ruleType": "String" } ``` diff --git a/api-reference/beta/resources/networkaccess-fqdnfilteringrule.md b/api-reference/beta/resources/networkaccess-fqdnfilteringrule.md new file mode 100644 index 00000000000..bea86dec3b5 --- /dev/null +++ b/api-reference/beta/resources/networkaccess-fqdnfilteringrule.md @@ -0,0 +1,55 @@ +--- +title: "fqdnFilteringRule resource type" +description: "Defines a network filtering rule specifically for fully qualified domain names (FQDNs) that allows administrators to control access to specified domains." +author: "Moti-ba" +ms.localizationpriority: medium +ms.subservice: "entra-global-secure-access" +doc_type: resourcePageType +toc.title: "FQDN filtering rule" +--- + +# fqdnFilteringRule resource type + +Namespace: microsoft.graph.networkaccess + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Defines a network filtering rule specifically for fully qualified domain names (FQDNs) that allows administrators to control access to specified domains. + +Inherits from [filteringRule](../resources/networkaccess-filteringrule.md). + +## Methods +None. + +For the list of API operations for managing this resource type, see [filteringRule](../resources/networkaccess-filteringrule.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|destinations|[microsoft.graph.networkaccess.ruleDestination](../resources/networkaccess-ruledestination.md) collection|The list of potential destinations and destination types that the user may access, including FQDNs and web categories, within the context of a network filtering policy. Inherited from [microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md).| +|id|String|The unique identifier for the **fqdnFilteringRule**. Inherited from [microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md).| +|name|String|Display name. Inherited from [microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md).| +|ruleType|microsoft.graph.networkaccess.networkDestinationType|The network destination type used by a filtering rule. Supports a subset of the values for **networkDestinationType**. The possible values are: `fqdn`, `webCategory`, `unknownFutureValue`. Inherited from [microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md). | + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.networkaccess.fqdnFilteringRule", + "destinations": [{"@odata.type": "microsoft.graph.networkaccess.ruleDestination"}], + "id": "String (identifier)", + "name": "String", + "ruleType": "String" +} +``` diff --git a/api-reference/beta/resources/networkaccess-webcategoryfilteringrule.md b/api-reference/beta/resources/networkaccess-webcategoryfilteringrule.md new file mode 100644 index 00000000000..df6b2045b6f --- /dev/null +++ b/api-reference/beta/resources/networkaccess-webcategoryfilteringrule.md @@ -0,0 +1,55 @@ +--- +title: "webCategoryFilteringRule resource type" +description: "Defines a network filtering rule for web categories, enabling administrators to manage access to specific categories of websites." +author: "Moti-ba" +ms.localizationpriority: medium +ms.subservice: "entra-global-secure-access" +doc_type: resourcePageType +--- + +# webCategoryFilteringRule resource type + +Namespace: microsoft.graph.networkaccess + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Defines a network filtering rule for web categories, enabling administrators to manage access to specific categories of websites. + +Inherits from [filteringRule](../resources/networkaccess-filteringrule.md). + +## Methods +None. + +For the list of API operations for managing this resource type, see [filteringRule](../resources/networkaccess-filteringrule.md). + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|destinations|[microsoft.graph.networkaccess.ruleDestination](../resources/networkaccess-ruledestination.md) collection|The list of potential destinations and destination types that the user may access, including fully qualified domain names (FQDNs) and web categories, within the context of a network filtering policy. Inherited from [microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md).| +|id|String|The unique identifier for the **webCategoryFilteringRule**. Inherited from [microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md).| +|name|String|Display name. Inherited from [microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md).| +|ruleType|microsoft.graph.networkaccess.networkDestinationType|The network destination type used by a filtering rule. Supports a subset of the values for **networkDestinationType**. The possible values are: `fqdn`, `webCategory`, `unknownFutureValue`. Inherited from [microsoft.graph.networkaccess.filteringRule](../resources/networkaccess-filteringrule.md). | + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.networkaccess.webCategoryFilteringRule", + "destinations": [{"@odata.type": "microsoft.graph.networkaccess.ruleDestination"}], + "id": "String (identifier)", + "name": "String", + "ruleType": "String" +} +``` + diff --git a/api-reference/beta/resources/recyclebinsettings.md b/api-reference/beta/resources/recyclebinsettings.md index fee6e5c6a69..7be9c695a41 100644 --- a/api-reference/beta/resources/recyclebinsettings.md +++ b/api-reference/beta/resources/recyclebinsettings.md @@ -18,7 +18,7 @@ Represents settings for the [recycleBin](recyclebin.md) resource type. ## Properties |Property|Type|Description| |:---|:---|:---| -|retentionPeriodOverrideDays|Int32|Recycle bin retention period override in days for deleted content. The default value is `93`; the value range is `93` to `180`. The setting applies to newly deleted content only. Setting this property to `null` reverts to its default value. Read-write.| +|retentionPeriodOverrideDays|Int32|Recycle bin retention period override in days for deleted content. The default value is `93`; the value range is `7` to `180` inclusively. The setting applies to newly deleted content only. Setting this property to `null` reverts to its default value. Read-write.| ## Relationships None. diff --git a/api-reference/beta/resources/security-ediscoverycase.md b/api-reference/beta/resources/security-ediscoverycase.md index 47bc2c1c652..bae951132c7 100644 --- a/api-reference/beta/resources/security-ediscoverycase.md +++ b/api-reference/beta/resources/security-ediscoverycase.md @@ -18,24 +18,26 @@ In the context of eDiscovery, contains custodians, holds, searches, review sets, ## Methods |Method|Return type|Description| |:---|:---|:---| -|[List ediscoveryCases](../api/security-casesroot-list-ediscoverycases.md)|[microsoft.graph.security.ediscoveryCase](../resources/security-ediscoverycase.md) collection|Get a list of the [ediscoveryCase](../resources/security-ediscoverycase.md) objects and their properties.| -|[Create ediscoveryCase](../api/security-casesroot-post-ediscoverycases.md)|[microsoft.graph.security.ediscoveryCase](../resources/security-ediscoverycase.md)|Create a new [ediscoveryCase](../resources/security-ediscoverycase.md) object.| -|[Get ediscoveryCase](../api/security-ediscoverycase-get.md)|[microsoft.graph.security.ediscoveryCase](../resources/security-ediscoverycase.md)|Read the properties and relationships of an [ediscoveryCase](../resources/security-ediscoverycase.md) object.| -|[Update ediscoveryCase](../api/security-ediscoverycase-update.md)|[microsoft.graph.security.ediscoveryCase](../resources/security-ediscoverycase.md)|Update the properties of an [ediscoveryCase](../resources/security-ediscoverycase.md) object.| -|[Delete ediscoveryCase](../api/security-casesroot-delete-ediscoverycases.md)|None|Delete an [ediscoveryCase](../resources/security-ediscoverycase.md) object.| +|[List](../api/security-casesroot-list-ediscoverycases.md)|[microsoft.graph.security.ediscoveryCase](../resources/security-ediscoverycase.md) collection|Get a list of the [ediscoveryCase](../resources/security-ediscoverycase.md) objects and their properties.| +|[Create](../api/security-casesroot-post-ediscoverycases.md)|[microsoft.graph.security.ediscoveryCase](../resources/security-ediscoverycase.md)|Create a new [ediscoveryCase](../resources/security-ediscoverycase.md) object.| +|[Get](../api/security-ediscoverycase-get.md)|[microsoft.graph.security.ediscoveryCase](../resources/security-ediscoverycase.md)|Read the properties and relationships of an [ediscoveryCase](../resources/security-ediscoverycase.md) object.| +|[Update](../api/security-ediscoverycase-update.md)|[microsoft.graph.security.ediscoveryCase](../resources/security-ediscoverycase.md)|Update the properties of an [ediscoveryCase](../resources/security-ediscoverycase.md) object.| +|[Delete](../api/security-casesroot-delete-ediscoverycases.md)|None|Delete an [ediscoveryCase](../resources/security-ediscoverycase.md) object.| +|[Close](../api/security-ediscoverycase-close.md)|None|Close an [ediscoveryCase](../resources/security-ediscoverycase.md) object.| +|[Reopen](../api/security-ediscoverycase-reopen.md)|None|Reopen an [ediscoveryCase](../resources/security-ediscoverycase.md) object.| |[List custodians](../api/security-ediscoverycase-list-custodians.md)|[microsoft.graph.security.ediscoveryCustodian](../resources/security-ediscoverycustodian.md) collection|Get the ediscoveryCustodian resources from the custodians navigation property.| -|[Create ediscoveryCustodian](../api/security-ediscoverycase-post-custodians.md)|[microsoft.graph.security.ediscoveryCustodian](../resources/security-ediscoverycustodian.md)|Create a new ediscoveryCustodian object.| -|[List legalHolds](../api/security-ediscoverycase-list-legalholds.md)|[microsoft.graph.security.ediscoveryHoldPolicy](../resources/security-ediscoveryholdpolicy.md) collection|Get the ediscoveryHoldPolicy resources from the legalHolds navigation property.| -|[Create ediscoveryHoldPolicy](../api/security-ediscoverycase-post-legalholds.md)|[microsoft.graph.security.ediscoveryHoldPolicy](../resources/security-ediscoveryholdpolicy.md)|Create a new ediscoveryHoldPolicy object.| -|[List noncustodialDataSources](../api/security-ediscoverysearch-list-noncustodialsources.md)|[microsoft.graph.security.ediscoveryNoncustodialDataSource](../resources/security-ediscoverynoncustodialdatasource.md) collection|Get the ediscoveryNoncustodialDataSource resources from the noncustodialDataSources navigation property.| -|[Create ediscoveryNoncustodialDataSource](../api/security-ediscoverycase-post-noncustodialdatasources.md)|[microsoft.graph.security.ediscoveryNoncustodialDataSource](../resources/security-ediscoverynoncustodialdatasource.md)|Create a new ediscoveryNoncustodialDataSource object.| +|[Create custodian](../api/security-ediscoverycase-post-custodians.md)|[microsoft.graph.security.ediscoveryCustodian](../resources/security-ediscoverycustodian.md)|Create a new ediscoveryCustodian object.| +|[List legal holds](../api/security-ediscoverycase-list-legalholds.md)|[microsoft.graph.security.ediscoveryHoldPolicy](../resources/security-ediscoveryholdpolicy.md) collection|Get the ediscoveryHoldPolicy resources from the legalHolds navigation property.| +|[Create hold policy](../api/security-ediscoverycase-post-legalholds.md)|[microsoft.graph.security.ediscoveryHoldPolicy](../resources/security-ediscoveryholdpolicy.md)|Create a new ediscoveryHoldPolicy object.| +|[List noncustodial data sources](../api/security-ediscoverysearch-list-noncustodialsources.md)|[microsoft.graph.security.ediscoveryNoncustodialDataSource](../resources/security-ediscoverynoncustodialdatasource.md) collection|Get the ediscoveryNoncustodialDataSource resources from the noncustodialDataSources navigation property.| +|[Create noncustodial data source](../api/security-ediscoverycase-post-noncustodialdatasources.md)|[microsoft.graph.security.ediscoveryNoncustodialDataSource](../resources/security-ediscoverynoncustodialdatasource.md)|Create a new ediscoveryNoncustodialDataSource object.| |[List operations](../api/security-ediscoverycase-list-operations.md)|[microsoft.graph.security.caseOperation](../resources/security-caseoperation.md) collection|Get the caseOperation resources from the operations navigation property.| -|[List reviewSets](../api/security-ediscoverycase-list-reviewsets.md)|[microsoft.graph.security.ediscoveryReviewSet](../resources/security-ediscoveryreviewset.md) collection|Get the ediscoveryReviewSet resources from the reviewSets navigation property.| -|[Create ediscoveryReviewSet](../api/security-ediscoverycase-post-reviewsets.md)|[microsoft.graph.security.ediscoveryReviewSet](../resources/security-ediscoveryreviewset.md)|Create a new ediscoveryReviewSet object.| +|[List review sets](../api/security-ediscoverycase-list-reviewsets.md)|[microsoft.graph.security.ediscoveryReviewSet](../resources/security-ediscoveryreviewset.md) collection|Get the ediscoveryReviewSet resources from the reviewSets navigation property.| +|[Create review set](../api/security-ediscoverycase-post-reviewsets.md)|[microsoft.graph.security.ediscoveryReviewSet](../resources/security-ediscoveryreviewset.md)|Create a new ediscoveryReviewSet object.| |[List searches](../api/security-ediscoverycase-list-searches.md)|[microsoft.graph.security.ediscoverySearch](../resources/security-ediscoverysearch.md) collection|Get the ediscoverySearch resources from the searches navigation property.| -|[Create ediscoverySearch](../api/security-ediscoverycase-post-searches.md)|[microsoft.graph.security.ediscoverySearch](../resources/security-ediscoverysearch.md)|Create a new ediscoverySearch object.| +|[Create search](../api/security-ediscoverycase-post-searches.md)|[microsoft.graph.security.ediscoverySearch](../resources/security-ediscoverysearch.md)|Create a new ediscoverySearch object.| |[List tags](../api/security-ediscoverycase-list-tags.md)|[microsoft.graph.security.ediscoveryReviewTag](../resources/security-ediscoveryreviewtag.md) collection|Get the ediscoveryReviewTag resources from the tags navigation property.| -|[Create ediscoveryReviewTag](../api/security-ediscoverycase-post-tags.md)|[microsoft.graph.security.ediscoveryReviewTag](../resources/security-ediscoveryreviewtag.md)|Create a new ediscoveryReviewTag object.| +|[Create review tag](../api/security-ediscoverycase-post-tags.md)|[microsoft.graph.security.ediscoveryReviewTag](../resources/security-ediscoveryreviewtag.md)|Create a new ediscoveryReviewTag object.| ## Properties |Property|Type|Description| diff --git a/api-reference/beta/toc/identity-and-access/toc.yml b/api-reference/beta/toc/identity-and-access/toc.yml index b1e99061122..45ff8738875 100644 --- a/api-reference/beta/toc/identity-and-access/toc.yml +++ b/api-reference/beta/toc/identity-and-access/toc.yml @@ -4119,6 +4119,10 @@ items: href: ../../api/networkaccess-filteringrule-update.md - name: Delete href: ../../api/networkaccess-filteringrule-delete.md + - name: FQDN filtering rule + href: ../../resources/networkaccess-fqdnfilteringrule.md + - name: Web category filtering rule + href: ../../resources/networkaccess-webcategoryfilteringrule.md - name: Partner customer administration items: - name: Partner security alert diff --git a/api-reference/beta/toc/teamwork-and-communications/toc.yml b/api-reference/beta/toc/teamwork-and-communications/toc.yml index f0277d45f6e..07f9e6b8a8e 100644 --- a/api-reference/beta/toc/teamwork-and-communications/toc.yml +++ b/api-reference/beta/toc/teamwork-and-communications/toc.yml @@ -366,6 +366,16 @@ items: href: ../../resources/callrecords-smslogrow.md - name: Get SMS log href: ../../api/callrecords-callrecord-getsmslog.md + - name: Copilot settings + items: + - name: Copilot admin limited mode + items: + - name: Copilot admin limited mode + href: ../../resources/copilotadminlimitedmode.md + - name: Get + href: ../../api/copilotadminlimitedmode-get.md + - name: Update + href: ../../api/copilotadminlimitedmode-update.md - name: Online meetings items: - name: Meeting attendance report diff --git a/api-reference/beta/toc/toc.mapping.json b/api-reference/beta/toc/toc.mapping.json index e6d5f332f18..2fb03da91a4 100644 --- a/api-reference/beta/toc/toc.mapping.json +++ b/api-reference/beta/toc/toc.mapping.json @@ -1900,7 +1900,9 @@ "microsoft.graph.networkaccess.filteringProfile", "microsoft.graph.networkaccess.filteringPolicy", "microsoft.graph.networkaccess.filteringPolicyLink", - "microsoft.graph.networkaccess.filteringRule" + "microsoft.graph.networkaccess.filteringRule", + "microsoft.graph.networkaccess.fqdnFilteringRule", + "microsoft.graph.networkaccess.webCategoryFilteringRule" ] }, { @@ -2863,6 +2865,17 @@ "microsoft.graph.callRecords.smsLogRow" ] }, + { + "name": "Copilot settings", + "resources": [ + "copilotAdminLimitedMode" + ], + "complexTypes": [ + "copilotAdmin", + "copilotAdminSetting", + "copilotRoot" + ] + }, { "name": "Online meetings", "resources": [ diff --git a/api-reference/v1.0/api/appmanagementpolicy-post.md b/api-reference/v1.0/api/appmanagementpolicy-post.md index 138a15aff9e..fae43254948 100644 --- a/api-reference/v1.0/api/appmanagementpolicy-post.md +++ b/api-reference/v1.0/api/appmanagementpolicy-post.md @@ -52,7 +52,7 @@ You can specify the following properties when creating an **appManagementPolicy* | :----------- | :---------------------------------------------------------- | :--------------------------------------------------------------------- | | displayName | String | The display name of the policy. Required. | | description | String | The description of the policy. Required. | -| isEnabled | Boolean | Denotes whether the policy is enabled. Optional. | +| isEnabled | Boolean | Denotes whether the policy is enabled. Optional. | | restrictions | [appManagementConfiguration](../resources/appManagementConfiguration.md) | Restrictions that apply to an application or service principal object. Optional. | ## Response @@ -66,9 +66,11 @@ If successful, this method returns a `201 Created` response code with the new [a The following example shows a request. This request created an app management policy with the following settings: - Enables the policy. -- Blocks creating of new passwords for applications and service principals created on or after 2019-10-19 at 10:37 AM UTC time. -- Enforces lifetime on password secrets and key credentials for applications created on or after 2014-10-19 at 10:37 AM UTC time. -- Limits password secrets for apps and service principals created after 2019-10-19 at 10:37 AM UTC time to less than 4 days, 12 hours, 30 minutes and 5 seconds. +- Blocks creating of new passwords for applications and service principals created on or after October 19th 2019 at 10:37 AM UTC time. +- Limits password secrets for apps and service principals created after October 19th 2014 at 10:37 AM UTC time to less than 90 days. +- Disables the nonDefaultUriAddition restriction. This means that apps with this policy applied to them can add new nondefault identifier URIs to their apps, even if the tenant default policy would typically block it. +- Doesn't specify any other restrictions. This means that the behavior for those restrictions on apps/service principals with this policy applied falls back to however the tenant default policy is configured. + # [HTTP](#tab/http) + [!INCLUDE [permissions-table](../includes/permissions/filestorage-delete-containers-permissions.md)] [!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] diff --git a/api-reference/v1.0/api/filestorage-delete-deletedcontainers.md b/api-reference/v1.0/api/filestorage-delete-deletedcontainers.md new file mode 100644 index 00000000000..fdc572f53f1 --- /dev/null +++ b/api-reference/v1.0/api/filestorage-delete-deletedcontainers.md @@ -0,0 +1,81 @@ +--- +title: "Remove deleted fileStorageContainer" +description: "Remove a deleted fileStorageContainer object." +author: "harmoneddie" +ms.localizationpriority: medium +ms.subservice: "onedrive" +doc_type: apiPageType +--- + +# Remove deleted fileStorageContainer + +Namespace: microsoft.graph + +Permanently remove a [fileStorageContainer](../resources/filestoragecontainer.md) from the deleted container collection. Removing a file storage container with this API permanently removes it from the deleted container collection. Therefore, it can't be restored later. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/filestorage-delete-deletedcontainers-permissions.md)] + +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + +## HTTP request + + +``` http +DELETE /storage/fileStorage/deletedContainers/{containerId} +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `204 No Content` response code. + +## Examples + +### Request + +The following example shows a request. + + +``` http +DELETE https://graph.microsoft.com/v1.0/storage/fileStorage/deletedContainers/b!ISJs1WRro0y0EWgkUYcktDa0mE8zSlFEqFzqRn70Zwp1CEtDEBZgQICPkRbil_5Z +``` +--- + +### Response + +The following example shows the response. +>**Note:** The response object shown here might be shortened for readability. + +``` http +HTTP/1.1 204 No Content +``` + diff --git a/api-reference/v1.0/api/filestoragecontainer-activate.md b/api-reference/v1.0/api/filestoragecontainer-activate.md index a6a2180fec2..44eba20d4cc 100644 --- a/api-reference/v1.0/api/filestoragecontainer-activate.md +++ b/api-reference/v1.0/api/filestoragecontainer-activate.md @@ -24,7 +24,6 @@ A **fileStorageContainer** can be activated by calling the **activate** API, or Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). - [!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-activate-permissions.md)] diff --git a/api-reference/v1.0/api/filestoragecontainer-delete-column.md b/api-reference/v1.0/api/filestoragecontainer-delete-column.md new file mode 100644 index 00000000000..9d91de556ec --- /dev/null +++ b/api-reference/v1.0/api/filestoragecontainer-delete-column.md @@ -0,0 +1,85 @@ +--- +title: "Delete column" +description: "Delete a columnDefinition from a fileStorageContainer." +author: "harmoneddie" +ms.localizationpriority: medium +ms.subservice: "onedrive" +doc_type: apiPageType +--- + +# Delete column + +Namespace: microsoft.graph + +Delete a [columnDefinition](../resources/columndefinition.md) from a [fileStorageContainer](../resources/filestoragecontainer.md). + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + + +[!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-delete-columns-permissions.md)] + +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + +## HTTP request + + +``` http +DELETE /storageContainers/{containerId}/columns/{columnId} +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `204 No Content` response code. + +## Examples + +### Request + +The following example shows a request. + + +``` http +DELETE https://graph.microsoft.com/v1.0/storageContainers/b!ISJs1WRro0y0EWgkUYcktDa0mE8zSlFEqFzqRn70Zwp1CEtDEBZgQICPkRbil_5Z/columns/99ddcf45-e2f7-4f17-82b0-6fba34445103 + +``` + + +### Response + +The following example shows the response. + +>**Note:** The response object shown here might be shortened for readability. + + +``` http +HTTP/1.1 204 No Content +``` + diff --git a/api-reference/v1.0/api/filestoragecontainer-delete-customproperty.md b/api-reference/v1.0/api/filestoragecontainer-delete-customproperty.md index 89aa14741ec..94669a4108f 100644 --- a/api-reference/v1.0/api/filestoragecontainer-delete-customproperty.md +++ b/api-reference/v1.0/api/filestoragecontainer-delete-customproperty.md @@ -11,7 +11,7 @@ doc_type: apiPageType Namespace: microsoft.graph -Delete one or more custom properties from a [fileStorageContainer](../resources/filestoragecontainer.md) by assigning a **null** value to them. +Delete one or multiple custom properties from a [fileStorageContainer](../resources/filestoragecontainer.md) by assigning a **null** value to the properties. ## Permissions Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). diff --git a/api-reference/v1.0/api/filestoragecontainer-delete-permissions.md b/api-reference/v1.0/api/filestoragecontainer-delete-permissions.md index 334c157bb89..e6697466def 100644 --- a/api-reference/v1.0/api/filestoragecontainer-delete-permissions.md +++ b/api-reference/v1.0/api/filestoragecontainer-delete-permissions.md @@ -14,6 +14,7 @@ Namespace: microsoft.graph Delete permissions from a [fileStorageContainer](../resources/filestoragecontainer.md) object. +By default, this API removes access for an identity to the container and all items within the container, regardless of whether the identity has container-scoped or item-level permissions. You can add an optional `Prefer: onlyRemoveContainerScopedPermission` header when you call the API if only the identity's container-scoped permissions need to be removed. All item-level permissions explicitly granted to the identity (if any) are retained. [!INCLUDE [national-cloud-support](../../includes/global-only.md)] @@ -51,6 +52,7 @@ If successful, this method returns a `204 No Content` response code. ### Request The following example shows a request. + # [HTTP](#tab/http) +[!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-delete-recyclebinitem-permissions.md)] + +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + +## HTTP request + + +``` http +POST /storage/fileStorage/containers/{containerId}/recycleBin/items/delete +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| +|Content-Type|application/json. Required.| + +## Request body + +In the request body, supply a JSON representation of the [recycleBinItem](../resources/recyclebinitem.md) objects to delete. + + +## Response + +If successful, this method returns a `204 No Content` response code. + +## Examples + +### Request + +The following example shows a request. + + +``` http +POST https://graph.microsoft.com/v1.0/storage/fileStorage/containers/b!ISJs1WRro0y0EWgkUYcktDa0mE8zSlFEqFzqRn70Zwp1CEtDEBZgQICPkRbil_5Z/recycleBin/items/delete +Content-Type: application/json + +{ + "ids": ["5d625d33-338c-4a77-a98a-3e287116440c", "73133853-48f2-4956-bc4a-03f8d1675042"] +} +``` +### Response + +The following example shows the response. +>**Note:** The response object shown here might be shortened for readability. + +``` http +HTTP/1.1 204 No Content +``` + diff --git a/api-reference/v1.0/api/filestoragecontainer-get-column.md b/api-reference/v1.0/api/filestoragecontainer-get-column.md new file mode 100644 index 00000000000..0a874475403 --- /dev/null +++ b/api-reference/v1.0/api/filestoragecontainer-get-column.md @@ -0,0 +1,99 @@ +--- +title: "Get column" +description: "Get a column from a fileStorageContainer." +author: "harmoneddie" +ms.localizationpriority: medium +ms.subservice: "onedrive" +doc_type: apiPageType +--- + +# Get column + +Namespace: microsoft.graph + +Get the properties of a column represented as a [columnDefinition](../resources/columndefinition.md) in a [fileStorageContainer](../resources/filestoragecontainer.md). + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-get-columns-permissions.md)] + +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + +## HTTP request + + +``` http +GET /storageContainers/{containerId}/columns/{columnId} +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a [columnDefinition](../resources/columndefinition.md) object in the response body. + +## Examples + +### Request + +The following example shows a request. + +``` http +GET https://graph.microsoft.com/v1.0/storageContainers/b!ISJs1WRro0y0EWgkUYcktDa0mE8zSlFEqFzqRn70Zwp1CEtDEBZgQICPkRbil_5Z/columns/99ddcf45-e2f7-4f17-82b0-6fba34445103 +``` + + +### Response + +The following example shows the response. +>**Note:** The response object shown here might be shortened for readability. + +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "description": "test", + "displayName": "Title", + "enforceUniqueValues": false, + "hidden": false, + "id": "99ddcf45-e2f7-4f17-82b0-6fba34445103", + "indexed": false, + "name": "Title", + "text": { + "allowMultipleLines": false, + "appendChangesToExistingText": false, + "linesForEditing": 0, + "maxLength": 255 + } +} +``` + diff --git a/api-reference/v1.0/api/filestoragecontainer-get.md b/api-reference/v1.0/api/filestoragecontainer-get.md index 187bb6a4749..babb979ad00 100644 --- a/api-reference/v1.0/api/filestoragecontainer-get.md +++ b/api-reference/v1.0/api/filestoragecontainer-get.md @@ -90,6 +90,8 @@ GET https://graph.microsoft.com/v1.0/storage/fileStorage/containers/b!ISJs1WRro0 ### Response The following example shows the response. +>**Note:** The response object shown here might be shortened for readability. + +[!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-list-columns-permissions.md)] + +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + +## HTTP request + + + +``` http +GET /storage/fileStorage/containers/{containerId}/columns +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a collection of [columnDefinition](../resources/columndefinition.md) objects in the response body. + +## Examples + +### Request + +The following example shows a request. + + +``` http +GET https://graph.microsoft.com/v1.0/storage/fileStorage/containers/b!ISJs1WRro0y0EWgkUYcktDa0mE8zSlFEqFzqRn70Zwp1CEtDEBZgQICPkRbil_5Z/columns +``` +### Response + +The following example shows the response. + +>**Note:** The response object shown here might be shortened for readability. + + +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value": [ + { + "description": "", + "displayName": "Title", + "hidden": false, + "id": "99ddcf45-e2f7-4f17-82b0-6fba34445103", + "indexed": false, + "name": "Title", + "readOnly": false, + "required": false, + "text": { + "allowMultipleLines": false, + "appendChangesToExistingText": false, + "linesForEditing": 0, + "maxLength": 255 + } + }, + { + "description": "", + "displayName": "Address", + "id": "11dfef35-e2f7-4f17-82b0-6fba34445103", + "indexed": false, + "name": "Address", + "readOnly": false, + "required": false, + "text": { + "allowMultipleLines": false, + "appendChangesToExistingText": false, + "linesForEditing": 0, + "maxLength": 255 + } + } + ] +} +``` + diff --git a/api-reference/v1.0/api/filestoragecontainer-list-permissions.md b/api-reference/v1.0/api/filestoragecontainer-list-permissions.md index a546fe4800a..7c0db339533 100644 --- a/api-reference/v1.0/api/filestoragecontainer-list-permissions.md +++ b/api-reference/v1.0/api/filestoragecontainer-list-permissions.md @@ -1,13 +1,13 @@ --- -title: "List permissions" -description: "Get the permissions for a fileStorageContainer." +title: "List fileStorageContainer permissions" +description: "Get the set of permissions for a fileStorageContainer." author: "tonchan-msft" ms.localizationpriority: medium ms.subservice: "onedrive" doc_type: apiPageType --- -# List permissions +# List fileStorageContainer permissions Namespace: microsoft.graph @@ -37,6 +37,8 @@ GET /storage/fileStorage/containers/{containerId}/permissions ## Optional query parameters This method supports the `$skip`, `$top`, `$orderBy`, and `$filter` OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters). +By default, this API lists only container-scoped permissions. You can use the `includeAllContainerUsers=true` query parameter to include entries for identities that may have at least one item-level permission in the container but don't have container-scoped permission. + ## Request headers |Name|Description| |:---|:---| diff --git a/api-reference/v1.0/api/filestoragecontainer-list-recyclebinitem.md b/api-reference/v1.0/api/filestoragecontainer-list-recyclebinitem.md new file mode 100644 index 00000000000..03dbf84f8c8 --- /dev/null +++ b/api-reference/v1.0/api/filestoragecontainer-list-recyclebinitem.md @@ -0,0 +1,105 @@ +--- +title: "List recycleBinItems" +description: "Get a list of recycleBinItems from a fileStorageContainer recycleBin." +author: "harmoneddie" +ms.localizationpriority: medium +ms.subservice: "onedrive" +doc_type: apiPageType +--- + +# List recycleBinItems + +Namespace: microsoft.graph + +Get a list of [recycleBinItem](../resources/recyclebinitem.md) objects from the [recycleBin](../resources/recyclebin.md) of a [fileStorageContainer](../resources/filestoragecontainer.md). + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-list-recyclebinitem-permissions.md)] + +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + +## HTTP request + + + +``` http +GET /storage/fileStorage/containers/{containerId}/recycleBin/items +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a collection of [recycleBinItem](../resources/recyclebinitem.md) objects in the response body. + +## Examples + +### Request + +The following example shows a request. + + +``` http +GET https://graph.microsoft.com/v1.0/storage/fileStorage/containers/b!ISJs1WRro0y0EWgkUYcktDa0mE8zSlFEqFzqRn70Zwp1CEtDEBZgQICPkRbil_5Z/recycleBin/items +``` + +### Response + +The following example shows the response. + +>**Note:** The response object shown here might be shortened for readability. + + + +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value": [ + { + "id": "5d625d33-338c-4a77-a98a-3e287116440c", + "name": "document.docx", + "size": 1024, + "deletedDateTime": "2022-04-25T20:11:51Z", + "title": "my document", + "deletedBy": { + "user": { + "displayName": "Tenant Admin User", + "id": "EBA7DBE0-B42F-4BC8-AEF6-97B66EFC77D0", + "userPrincipalName": "jhan@contoso.com" + } + } + } + ] +} +``` + diff --git a/api-reference/v1.0/api/filestoragecontainer-lock.md b/api-reference/v1.0/api/filestoragecontainer-lock.md new file mode 100644 index 00000000000..43e98553316 --- /dev/null +++ b/api-reference/v1.0/api/filestoragecontainer-lock.md @@ -0,0 +1,73 @@ +--- +title: "fileStorageContainer: lock" +description: "Lock a fileStorageContainer." +author: "harmoneddie" +ms.localizationpriority: medium +ms.subservice: "onedrive" +doc_type: apiPageType +--- + +# fileStorageContainer: lock + +Namespace: microsoft.graph + +Lock a [fileStorageContainer](../resources/filestoragecontainer.md) to prevent modifications to its contents. + +This action updates the [lockState](../resources/enums.md#sitelockstate-values). + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-lock-permissions.md)] + +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + +> [!NOTE] +> When delegated permissions are used, only members who are assigned the `owner` role can call this method. + +## HTTP request + +``` http +POST /storage/fileStorage/containers/{containerId}/lock +``` + +## Request body +In the request body, you can optionally include a JSON representation of the **lockState** property. + +```json +{ + "lockState": "lockedReadOnly" +} +``` + +## Request headers +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Response + +If successful, this method returns a `204 No Content` response code. + +## Examples + +### Request +The following example shows how to lock a fileStorageContainer. + +``` http +POST https://graph.microsoft.com/v1.0/storage/fileStorage/containers/b!ISJs1WRro0y0EWgkUYcktDa0mE8zSlFEqFzqRn70Zwp1CEtDEBZgQICPkRbil_5Z/lock + +{ + "lockState": "lockedReadOnly" +} +``` + +### Response +The following example shows the response. + +``` http +HTTP/1.1 204 No Content +``` + diff --git a/api-reference/v1.0/api/filestoragecontainer-permanentdelete.md b/api-reference/v1.0/api/filestoragecontainer-permanentdelete.md index 1fe60c124ad..c664312fba6 100644 --- a/api-reference/v1.0/api/filestoragecontainer-permanentdelete.md +++ b/api-reference/v1.0/api/filestoragecontainer-permanentdelete.md @@ -34,7 +34,7 @@ Choose the permission or permissions marked as least privileged for this API. Us } --> ``` http -POST /storageContainers/{containerId}/permanentDelete +POST /storage/fileStorage/containers/{containerId}/permanentDelete ``` ## Request headers diff --git a/api-reference/v1.0/api/filestoragecontainer-post-columns.md b/api-reference/v1.0/api/filestoragecontainer-post-columns.md new file mode 100644 index 00000000000..0d5c4566e6e --- /dev/null +++ b/api-reference/v1.0/api/filestoragecontainer-post-columns.md @@ -0,0 +1,135 @@ +--- +title: "Create column" +description: "Create a columnDefinition in a fileStorageContainer." +author: "harmoneddie" +ms.localizationpriority: medium +ms.subservice: "onedrive" +doc_type: apiPageType +--- + +# Create column + +Namespace: microsoft.graph + +Create a columnDefinition for a [fileStorageContainer](../resources/filestoragecontainer.md) that specifies a [columnDefinition](../resources/columndefinition.md). + +[!INCLUDE [national-cloud-support](../../includes/global-only.md)] + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-post-columns-permissions.md)] + +> [!NOTE] +> [!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + +## HTTP request + + +``` http +POST /storage/fileStorage/containers/{containerId}/columns +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| +|Content-Type|application/json. Required.| + +## Request body + +In the request body, supply a JSON representation of the [columnDefinition](../resources/columndefinition.md) object. + +Only the following type-related properties are supported and they're mutually exclusive; a column can only have one of them specified at a time. + +|Property|Type|Description| +|:---|:---|:---| +|Boolean|[booleanColumn](../resources/booleancolumn.md)|This column stores Boolean values.| +|choice|[choiceColumn](../resources/choicecolumn.md)|This column stores data from a list of choices.| +|currency|[currencyColumn](../resources/currencycolumn.md)|This column stores currency values.| +|dateTime|[dateTimeColumn](../resources/datetimecolumn.md)|This column stores DateTime values.| +|hyperlinkOrPicture|[hyperlinkOrPictureColumn](../resources/hyperlinkorpicturecolumn.md)|This column stores hyperlink or picture values.| +|number|[numberColumn](../resources/numbercolumn.md)|This column stores number values.| +|personOrGroup|[personOrGroupColumn](../resources/personorgroupcolumn.md)|This column stores Person or Group values.| +|text|[textColumn](../resources/textcolumn.md)|This column stores text values.| + +## Response + +If successful, this method returns a `201 Created` response code and a [columnDefinition](../resources/columndefinition.md) object in the response body. + +## Examples + +### Request + +The following example shows a request. + + + +``` http +POST https://graph.microsoft.com/v1.0/storage/fileStorage/containers/b!ISJs1WRro0y0EWgkUYcktDa0mE8zSlFEqFzqRn70Zwp1CEtDEBZgQICPkRbil_5Z/columns +Content-Type: application/json + +{ + "description": "test", + "enforceUniqueValues": false, + "hidden": false, + "indexed": false, + "name": "Title", + "text": { + "allowMultipleLines": false, + "appendChangesToExistingText": false, + "linesForEditing": 0, + "maxLength": 255 + } +} +``` +--- + +### Response + +The following example shows the response. + +>**Note:** The response object shown here might be shortened for readability. + + + +``` http +HTTP/1.1 201 Created +Content-Type: application/json + +{ + "description": "test", + "displayName": "Title", + "enforceUniqueValues": false, + "hidden": false, + "id": "99ddcf45-e2f7-4f17-82b0-6fba34445103", + "indexed": false, + "name": "Title", + "text": { + "allowMultipleLines": false, + "appendChangesToExistingText": false, + "linesForEditing": 0, + "maxLength": 255 + } +} +``` + diff --git a/api-reference/v1.0/api/filestoragecontainer-post-customproperty.md b/api-reference/v1.0/api/filestoragecontainer-post-customproperty.md index c529057cfc5..e0c0d2a4a52 100644 --- a/api-reference/v1.0/api/filestoragecontainer-post-customproperty.md +++ b/api-reference/v1.0/api/filestoragecontainer-post-customproperty.md @@ -53,7 +53,9 @@ If successful, this method returns a `200 Created` response code. ## Examples -### Request +### Example 1: Create a custom property + +#### Request The following example shows how to create a custom property called `clientUniqueId` for a container. # [HTTP](#tab/http) +[!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-restore-recyclebinitem-permissions.md)] + +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + +## HTTP request + + + +``` http +POST /storage/fileStorage/containers/{containerId}/recycleBin/items/restore +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| +|Content-Type|application/json. Required.| + +## Request body + +In the request body, supply a JSON representation of the [recycleBinItem](../resources/recyclebinitem.md) objects to restore. + +## Response + +If successful, this method returns a `207 Multi-Status` response code and the set of restored [recycleBinItem](../resources/recyclebinitem.md) objects in the response body. + +## Examples + +### Request + +The following example shows a request. + + + +``` http +POST https://graph.microsoft.com/v1.0/storage/fileStorage/containers/b!ISJs1WRro0y0EWgkUYcktDa0mE8zSlFEqFzqRn70Zwp1CEtDEBZgQICPkRbil_5Z/recycleBin/items/restore +Content-Type: application/json + +{ + "ids": ["5d625d33-338c-4a77-a98a-3e287116440c", "73133853-48f2-4956-bc4a-03f8d1675042"] +} +``` +### Response + +The following example shows the response. + +>**Note:** The response object shown here might be shortened for readability. + + + +``` http +HTTP/1.1 207 Multi-Status +Content-Type: application/json + +{ + "value": [ + { + "id": "5d625d33-338c-4a77-a98a-3e287116440c" + }, + { + "id": "73133853-48f2-4956-bc4a-03f8d1675042" + } + ] +} +``` + diff --git a/api-reference/v1.0/api/filestoragecontainer-restore.md b/api-reference/v1.0/api/filestoragecontainer-restore.md new file mode 100644 index 00000000000..6046022e10b --- /dev/null +++ b/api-reference/v1.0/api/filestoragecontainer-restore.md @@ -0,0 +1,94 @@ +--- +title: "Restore deleted fileStorageContainer" +description: "Restore deleted fileStorageContainer from the deleted container collection." +author: "harmoneddie" +ms.localizationpriority: medium +ms.subservice: "onedrive" +doc_type: apiPageType +--- + +# fileStorageContainer: restore + +Namespace: microsoft.graph + +Restore a deleted [fileStorageContainer](../resources/filestoragecontainer.md) from the deleted container collection. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-restore-permissions.md)] + +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + +## HTTP request + + +``` http +POST /deletedStorageContainers/{containerId}/restore +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this action returns a `200 OK` response code and a [fileStorageContainer](../resources/filestoragecontainer.md) in the response body. + +## Examples + +### Request + +The following example shows a request. + + +``` http +POST https://graph.microsoft.com/v1.0/deletedStorageContainers/b!ISJs1WRro0y0EWgkUYcktDa0mE8zSlFEqFzqRn70Zwp1CEtDEBZgQICPkRbil_5Z/restore +``` + + +### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "@odata.type": "microsoft.graph.fileStorageContainer", + "id": "b!ISJs1WRro0y0EWgkUYcktDa0mE8zSlFEqFzqRn70Zwp1CEtDEBZgQICPkRbil_5Z", + "displayName": "My Application Storage Container", + "containerTypeId": "91710488-5756-407f-9046-fbe5f0b4de73", + "createdDateTime": "2021-11-24T15:41:52.347Z", + "deletedDateTime": "2022-08-11T12:35:16.300Z" +} +``` + diff --git a/api-reference/v1.0/api/filestoragecontainer-unlock.md b/api-reference/v1.0/api/filestoragecontainer-unlock.md new file mode 100644 index 00000000000..ef0da42f26d --- /dev/null +++ b/api-reference/v1.0/api/filestoragecontainer-unlock.md @@ -0,0 +1,63 @@ +--- +title: "fileStorageContainer: unlock" +description: "Unlock a fileStorageContainer." +author: "harmoneddie" +ms.localizationpriority: medium +ms.subservice: "onedrive" +doc_type: apiPageType +--- + +# fileStorageContainer: unlock + +Namespace: microsoft.graph + +Unlock a [fileStorageContainer](../resources/filestoragecontainer.md) for users and application-only identities to allow adding, updating, and deleting content. + +This action updates the value of the **lockState** property. + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + +When delegated permissions are used, only members in the `owner` role can call this method. + + +[!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-unlock-permissions.md)] + +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + +## HTTP request + +``` http +POST /storage/fileStorage/containers/{containerId}/unlock +``` + +## Request headers +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `204 No Content` response code. + +## Examples + +### Request +The following example shows how to unlock a **fileStorageContainer**. + +``` http +POST https://graph.microsoft.com/v1.0/storage/fileStorage/containers/b!ISJs1WRro0y0EWgkUYcktDa0mE8zSlFEqFzqRn70Zwp1CEtDEBZgQICPkRbil_5Z/unlock +``` + +### Response +The following example shows the response. + +``` http +HTTP/1.1 204 No Content +``` + diff --git a/api-reference/v1.0/api/filestoragecontainer-update-column.md b/api-reference/v1.0/api/filestoragecontainer-update-column.md new file mode 100644 index 00000000000..18fe2477276 --- /dev/null +++ b/api-reference/v1.0/api/filestoragecontainer-update-column.md @@ -0,0 +1,109 @@ +--- +title: "Update column" +description: "Update a columnDefinition in a fileStorageContainer." +author: "harmoneddie" +ms.localizationpriority: medium +ms.subservice: "onedrive" +doc_type: apiPageType +--- + +# Update column + +Namespace: microsoft.graph + +Update an existing column represented as a [columnDefinition](../resources/columndefinition.md) in a [fileStorageContainer](../resources/filestoragecontainer.md). + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-update-columns-permissions.md)] + +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + +## HTTP request + + +``` http +PATCH /storage/fileStorage/containers/{containerId}/columns/{columnId} +``` + +## Request headers + +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| +|Content-Type|application/json. Required.| + +## Request body + +In the request body, supply a JSON representation of the [columnDefinition](../resources/columndefinition.md) object with the properties to update. The `id` property can't be changed. Existing properties not included in the request body maintain their previous values. To optimize performance, don't include existing values that didn't change. + +## Response + +If successful, this method returns a `200 OK` response code and a [columnDefinition](../resources/columndefinition.md) object in the response body. + +## Examples + +### Request + +The following example shows a request. + + +``` http +PATCH https://graph.microsoft.com/v1.0/storage/fileStorage/containers/b!ISJs1WRro0y0EWgkUYcktDa0mE8zSlFEqFzqRn70Zwp1CEtDEBZgQICPkRbil_5Z/columns/11dfef35-e2f7-4f17-82b0-6fba34445103 +Content-Type: application/json + +{ + "required": true, + "hidden": false +} +``` + +### Response + +The following example shows the response. + +> **Note:** The response object shown here might be shortened for readability. + + +``` http +HTTP/1.1 200 OK +Content-type: application/json + +{ + "description": "", + "displayName": "Custom Column", + "enforceUniqueValues": false, + "hidden": false, + "id": "11dfef35-e2f7-4f17-82b0-6fba34445103", + "indexed": false, + "name": "Custom Column", + "readOnly": false, + "required": true, + "text": { + "allowMultipleLines": false, + "appendChangesToExistingText": false, + "linesForEditing": 0, + "maxLength": 255 + } +} +``` + diff --git a/api-reference/v1.0/api/filestoragecontainer-update-customproperty.md b/api-reference/v1.0/api/filestoragecontainer-update-customproperty.md index 9056c54bdf6..c3720a51482 100644 --- a/api-reference/v1.0/api/filestoragecontainer-update-customproperty.md +++ b/api-reference/v1.0/api/filestoragecontainer-update-customproperty.md @@ -11,11 +11,11 @@ doc_type: apiPageType Namespace: microsoft.graph -Update one or multiple custom properties on a [fileStorageContainer](../resources/filestoragecontainer.md). Only the **value** and **isSearchable** attributes of custom properties can be updated. Only the custom properties specified in the request body are updated. Custom properties specified in the request body are created if they don't already exist on the container. +Update one or multiple custom properties on a [fileStorageContainer](../resources/filestoragecontainer.md). Only the **value** and **isSearchable** attributes of custom properties can be updated. Only the custom properties specified in the request body are updated. If a custom property specified in the request body doesn't exist on the container, it will be created. Updating a custom property to a `null` value deletes the property from the container. -The application calling this API must have read/write permissions to the **fileStorageContainer** for the respective container type. +The application calling this API must have read and write permissions to the **fileStorageContainer** for the respective container type. ## Permissions Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). @@ -58,7 +58,7 @@ If successful, this action returns a `200 OK` response code. ## Examples ### Request -The following example updates the `value` property of the custom properties `clientUniqeId` and `color`. In this example, `isSearchable` for `clientUniqueId` was set to `true` before calling the API. +The following example updates the `value` property of the custom properties `clientUniqeId` and `color`. Note that `isSearchable` for `clientUniqueId` was set to `true` before calling this API. # [HTTP](#tab/http) +[!INCLUDE [permissions-table](../includes/permissions/filestoragecontainer-update-recyclebinsettings-permissions.md)] + +[!INCLUDE [app-permissions](../includes/sharepoint-embedded-app-permissions.md)] + +## HTTP request + + +``` http +PATCH /storage/fileStorage/containers/{containerId}/recycleBin/settings +``` + +## Request headers +|Name|Description| +|:---|:---| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| +|Content-Type|application/json. Required.| + +## Request body +In the request body, supply the new values for the **recycleBinSettings** properties. Existing properties that aren't included in the request body maintain their previous values. To optimize performance, don't include existing values that didn't change. + +## Response + +If successful, this method returns a `200 OK` response code. + +## Examples + +### Request +The following example shows a request. + + +``` http +PATCH https://graph.microsoft.com/v1.0/storage/fileStorage/containers/b!ISJs1WRro0y0EWgkUYcktDa0mE8zSlFEqFzqRn70Zwp1CEtDEBZgQICPkRbil_5Z/recycleBin/settings +Content-Type: application/json + +{ + "retentionPeriodOverrideDays": 180 +} +``` +--- + +### Response +The following example shows the response. + +``` http +HTTP/1.1 200 OK +``` + diff --git a/api-reference/v1.0/api/filestoragecontainer-update.md b/api-reference/v1.0/api/filestoragecontainer-update.md index 661ef740e4c..212da5e4aaf 100644 --- a/api-reference/v1.0/api/filestoragecontainer-update.md +++ b/api-reference/v1.0/api/filestoragecontainer-update.md @@ -123,7 +123,9 @@ Content-type: application/json "status": "active", "createdDateTime": "2021-11-24T15:41:52.347Z", "settings": { - "isOcrEnabled": false + "isOcrEnabled": false, + "itemMajorVersionLimit": 50, + "isItemVersioningEnabled": true } } ``` diff --git a/api-reference/v1.0/api/recyclebin-list-items.md b/api-reference/v1.0/api/recyclebin-list-items.md new file mode 100644 index 00000000000..20fe08bf8fa --- /dev/null +++ b/api-reference/v1.0/api/recyclebin-list-items.md @@ -0,0 +1,94 @@ +--- +author: "vanshisingh" +title: "List items" +description: "Get a collection of recycleBinItem resources in the recycleBin of the specified SharePoint site." +ms.localizationpriority: "medium" +ms.subservice: "sharepoint" +doc_type: apiPageType +--- + +# List items + +Namespace: microsoft.graph + +Get a collection of [recycleBinItem](../resources/recyclebinitem.md) resources in the [recycleBin](../resources/recyclebin.md) of the specified SharePoint [site](../resources/site.md). + +[!INCLUDE [national-cloud-support](../../includes/global-only.md)] + +## Permissions + +Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions [only if your app requires it](/graph/permissions-overview#best-practices-for-using-microsoft-graph-permissions). For details about delegated and application permissions, see [Permission types](/graph/permissions-overview#permission-types). To learn more about these permissions, see the [permissions reference](/graph/permissions-reference). + + +[!INCLUDE [permissions-table](../includes/permissions/recyclebin-list-items-permissions.md)] + +## HTTP request + + +``` http +GET /sites/{siteId}/recycleBin/items +``` + +## Optional query parameters + +This method supports the `$select` and `$top` OData query parameters to customize the response. For general information, see [OData query parameters](/graph/query-parameters). + +## Request headers + +|Name |Description | +|:-------------|:------------------------| +|Authorization|Bearer {token}. Required. Learn more about [authentication and authorization](/graph/auth/auth-concepts).| + +## Request Body + +Don't supply a request body for this method. + +## Response + +If successful, this method returns a `200 OK` response code and a collection of [recycleBinItem](../resources/recyclebinitem.md) objects in the response body. + +## Examples + +### Request + +The following example shows a request to list all **recycleBinItem** resources under a specific site. + + +``` http +GET https://graph.microsoft.com/v1.0/sites/contoso.sharepoint.com,48f1898f-77d9-4a1b-bddc-1f49bb6dc134,7206fc09-e4af-48b3-8730-ed7321396d7a/recycleBin/items +``` + +### Response + +The following example shows the response. + + +``` http +HTTP/1.1 200 OK +Content-Type: application/json + +{ + "value": [ + { + "id": "825e764f-c118-438f-b5c4-b8fbe60ab569", + "name": "file1.txt", + "size": 469, + "deletedDateTime": "2023-03-27T12:06:59Z", + "deletedFromLocation": "Shared Documents/folder1" + } + ] +} +``` + + diff --git a/api-reference/v1.0/api/security-ediscoverycustodian-get.md b/api-reference/v1.0/api/security-ediscoverycustodian-get.md index 948cff2babb..b66dd4d114b 100644 --- a/api-reference/v1.0/api/security-ediscoverycustodian-get.md +++ b/api-reference/v1.0/api/security-ediscoverycustodian-get.md @@ -30,7 +30,6 @@ Choose the permission or permissions marked as least privileged for this API. Us --> ``` http GET /security/cases/ediscoveryCases/{ediscoveryCaseId}/custodians/{ediscoveryCustodianId} -GET /security/cases/ediscoveryCases/{ediscoveryCaseId}/reviewSets/{ediscoveryReviewSetId}/files/{ediscoveryFileId}/custodian ``` ## Optional query parameters diff --git a/api-reference/v1.0/includes/permissions/filestorage-delete-deletedcontainers-permissions.md b/api-reference/v1.0/includes/permissions/filestorage-delete-deletedcontainers-permissions.md new file mode 100644 index 00000000000..90739ea57e8 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/filestorage-delete-deletedcontainers-permissions.md @@ -0,0 +1,13 @@ +--- +description: Automatically generated file. DO NOT MODIFY +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permission|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|FileStorageContainer.Selected, FileStorageContainer.Manage.All|Not supported.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|FileStorageContainer.Selected|Not supported.| + + diff --git a/api-reference/v1.0/includes/permissions/filestoragecontainer-delete-columns-permissions.md b/api-reference/v1.0/includes/permissions/filestoragecontainer-delete-columns-permissions.md new file mode 100644 index 00000000000..03353dba0b0 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/filestoragecontainer-delete-columns-permissions.md @@ -0,0 +1,12 @@ +--- +description: Automatically generated file. DO NOT MODIFY +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permission|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|FileStorageContainer.Selected|Not supported.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|FileStorageContainer.Selected|Not supported.| + diff --git a/api-reference/v1.0/includes/permissions/filestoragecontainer-delete-recyclebinitem-permissions.md b/api-reference/v1.0/includes/permissions/filestoragecontainer-delete-recyclebinitem-permissions.md new file mode 100644 index 00000000000..03353dba0b0 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/filestoragecontainer-delete-recyclebinitem-permissions.md @@ -0,0 +1,12 @@ +--- +description: Automatically generated file. DO NOT MODIFY +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permission|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|FileStorageContainer.Selected|Not supported.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|FileStorageContainer.Selected|Not supported.| + diff --git a/api-reference/v1.0/includes/permissions/filestoragecontainer-get-columns-permissions.md b/api-reference/v1.0/includes/permissions/filestoragecontainer-get-columns-permissions.md new file mode 100644 index 00000000000..03353dba0b0 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/filestoragecontainer-get-columns-permissions.md @@ -0,0 +1,12 @@ +--- +description: Automatically generated file. DO NOT MODIFY +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permission|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|FileStorageContainer.Selected|Not supported.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|FileStorageContainer.Selected|Not supported.| + diff --git a/api-reference/v1.0/includes/permissions/filestoragecontainer-list-columns-permissions.md b/api-reference/v1.0/includes/permissions/filestoragecontainer-list-columns-permissions.md new file mode 100644 index 00000000000..8a0d20b128e --- /dev/null +++ b/api-reference/v1.0/includes/permissions/filestoragecontainer-list-columns-permissions.md @@ -0,0 +1,11 @@ +--- +description: Automatically generated file. DO NOT MODIFY +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permission|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|FileStorageContainer.Selected|Not supported.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|FileStorageContainer.Selected|Not supported.| diff --git a/api-reference/v1.0/includes/permissions/filestoragecontainer-list-recyclebinitem-permissions.md b/api-reference/v1.0/includes/permissions/filestoragecontainer-list-recyclebinitem-permissions.md new file mode 100644 index 00000000000..03353dba0b0 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/filestoragecontainer-list-recyclebinitem-permissions.md @@ -0,0 +1,12 @@ +--- +description: Automatically generated file. DO NOT MODIFY +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permission|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|FileStorageContainer.Selected|Not supported.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|FileStorageContainer.Selected|Not supported.| + diff --git a/api-reference/v1.0/includes/permissions/site-post-permissions-permissions.md b/api-reference/v1.0/includes/permissions/filestoragecontainer-lock-permissions.md similarity index 64% rename from api-reference/v1.0/includes/permissions/site-post-permissions-permissions.md rename to api-reference/v1.0/includes/permissions/filestoragecontainer-lock-permissions.md index c1dc2d60279..6b767ddf040 100644 --- a/api-reference/v1.0/includes/permissions/site-post-permissions-permissions.md +++ b/api-reference/v1.0/includes/permissions/filestoragecontainer-lock-permissions.md @@ -6,7 +6,6 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|Sites.FullControl.All|Not available.| +|Delegated (work or school account)|FileStorageContainer.Selected|FileStorageContainer.Manage.All| |Delegated (personal Microsoft account)|Not supported.|Not supported.| -|Application|Sites.FullControl.All|Not available.| - +|Application|FileStorageContainer.Selected|Not available.| \ No newline at end of file diff --git a/api-reference/v1.0/includes/permissions/filestoragecontainer-post-columns-permissions.md b/api-reference/v1.0/includes/permissions/filestoragecontainer-post-columns-permissions.md new file mode 100644 index 00000000000..03353dba0b0 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/filestoragecontainer-post-columns-permissions.md @@ -0,0 +1,12 @@ +--- +description: Automatically generated file. DO NOT MODIFY +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permission|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|FileStorageContainer.Selected|Not supported.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|FileStorageContainer.Selected|Not supported.| + diff --git a/api-reference/v1.0/includes/permissions/filestoragecontainer-restore-permissions.md b/api-reference/v1.0/includes/permissions/filestoragecontainer-restore-permissions.md new file mode 100644 index 00000000000..90739ea57e8 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/filestoragecontainer-restore-permissions.md @@ -0,0 +1,13 @@ +--- +description: Automatically generated file. DO NOT MODIFY +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permission|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|FileStorageContainer.Selected, FileStorageContainer.Manage.All|Not supported.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|FileStorageContainer.Selected|Not supported.| + + diff --git a/api-reference/v1.0/includes/permissions/filestoragecontainer-restore-recyclebinitem-permissions.md b/api-reference/v1.0/includes/permissions/filestoragecontainer-restore-recyclebinitem-permissions.md new file mode 100644 index 00000000000..03353dba0b0 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/filestoragecontainer-restore-recyclebinitem-permissions.md @@ -0,0 +1,12 @@ +--- +description: Automatically generated file. DO NOT MODIFY +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permission|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|FileStorageContainer.Selected|Not supported.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|FileStorageContainer.Selected|Not supported.| + diff --git a/api-reference/v1.0/includes/permissions/filestoragecontainer-unlock-permissions.md b/api-reference/v1.0/includes/permissions/filestoragecontainer-unlock-permissions.md new file mode 100644 index 00000000000..6b767ddf040 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/filestoragecontainer-unlock-permissions.md @@ -0,0 +1,11 @@ +--- +description: "Automatically generated file. DO NOT MODIFY" +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|FileStorageContainer.Selected|FileStorageContainer.Manage.All| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|FileStorageContainer.Selected|Not available.| \ No newline at end of file diff --git a/api-reference/v1.0/includes/permissions/filestoragecontainer-update-columns-permissions.md b/api-reference/v1.0/includes/permissions/filestoragecontainer-update-columns-permissions.md new file mode 100644 index 00000000000..03353dba0b0 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/filestoragecontainer-update-columns-permissions.md @@ -0,0 +1,12 @@ +--- +description: Automatically generated file. DO NOT MODIFY +ms.topic: include +ms.localizationpriority: medium +--- + +|Permission type|Least privileged permission|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|FileStorageContainer.Selected|Not supported.| +|Delegated (personal Microsoft account)|Not supported.|Not supported.| +|Application|FileStorageContainer.Selected|Not supported.| + diff --git a/api-reference/beta/includes/permissions/site-post-permissions-permissions.md b/api-reference/v1.0/includes/permissions/filestoragecontainer-update-recyclebinsettings-permissions.md similarity index 66% rename from api-reference/beta/includes/permissions/site-post-permissions-permissions.md rename to api-reference/v1.0/includes/permissions/filestoragecontainer-update-recyclebinsettings-permissions.md index 4d99a37884e..50bac7778ae 100644 --- a/api-reference/beta/includes/permissions/site-post-permissions-permissions.md +++ b/api-reference/v1.0/includes/permissions/filestoragecontainer-update-recyclebinsettings-permissions.md @@ -6,7 +6,6 @@ ms.localizationpriority: medium |Permission type|Least privileged permissions|Higher privileged permissions| |:---|:---|:---| -|Delegated (work or school account)|Site.FullControl.All|Not available.| +|Delegated (work or school account)|FileStorageContainer.Selected|Not available.| |Delegated (personal Microsoft account)|Not supported.|Not supported.| -|Application|Sites.FullControl.All|Not available.| - +|Application|FileStorageContainer.Selected|Not available.| diff --git a/api-reference/v1.0/includes/permissions/recyclebin-list-items-permissions.md b/api-reference/v1.0/includes/permissions/recyclebin-list-items-permissions.md new file mode 100644 index 00000000000..663d886e8b3 --- /dev/null +++ b/api-reference/v1.0/includes/permissions/recyclebin-list-items-permissions.md @@ -0,0 +1,5 @@ +|Permission type|Least privileged permissions|Higher privileged permissions| +|:---|:---|:---| +|Delegated (work or school account)|Files.Read|Files.Read.All, Files.ReadWrite, Files.ReadWrite.All, Sites.Read.All, Sites.ReadWrite.All| +|Delegated (personal Microsoft account)|Files.Read|Files.ReadWrite, Files.Read.All, Files.ReadWrite.All| +|Application|Files.Read.All|Files.ReadWrite.All, Sites.Read.All, Sites.ReadWrite.All| \ No newline at end of file diff --git a/api-reference/v1.0/resources/apiapplication.md b/api-reference/v1.0/resources/apiapplication.md index bbc5e33e8d0..93008a68b80 100644 --- a/api-reference/v1.0/resources/apiapplication.md +++ b/api-reference/v1.0/resources/apiapplication.md @@ -11,7 +11,7 @@ author: "sureshja" Namespace: microsoft.graph -Specifies settings for an application that implements a web API. +Specifies settings for an [application](application.md) that implements a web API. ## Properties diff --git a/api-reference/v1.0/resources/applicationauthenticationmethodpolicy.md b/api-reference/v1.0/resources/applicationauthenticationmethodpolicy.md index d7e892cc920..f0681eebd3e 100644 --- a/api-reference/v1.0/resources/applicationauthenticationmethodpolicy.md +++ b/api-reference/v1.0/resources/applicationauthenticationmethodpolicy.md @@ -1,59 +1,61 @@ --- -title: "Microsoft Entra application authentication methods API overview" -description: "Application authentication methods allow apps to acquire tokens to access data in Azure AD." +title: "Microsoft Entra application management policy API overview" +description: "Application management policies allow administrators to set rules on how Entra apps in their tenant can be configured." ms.localizationpriority: medium author: "madansr7" ms.subservice: "entra-sign-in" doc_type: "conceptualPageType" --- -# Microsoft Entra application authentication methods API overview +# Microsoft Entra application management policies API overview Namespace: microsoft.graph -Application authentication methods such as certificates and password secrets allow apps to acquire tokens to access data in Microsoft Entra ID. The policies allow IT admins to enforce best practices for how apps in their organizations use these application authentication methods. For example, an admin might configure a policy to block the use or limit the lifetime of password secrets, and use the creation date of the object to enforce the policy. +Application management policies allow IT admins to enforce best practices for how apps in their organizations should be configured. For example, an admin might configure a policy to block the use or limit the lifetime of password secrets, and use the creation date of the object to enforce the policy. These policies allow organizations to take advantage of the new app security hardening features. By enforcing restrictions that are based on the application or service principal created date, an organization can review their current app security posture, inventory apps, and enforce controls per their resourcing schedules and needs. This approach using the created date allows the organization to enforce the policy for new applications and also apply it to existing applications. There are two types of policy controls: - Tenant default policy that applies to all applications or service principals. -- App (application or service principal) management policies that allow inclusion or exclusion of individual applications from the tenant default policy. +- App (application or service principal) management policies that allow individual applications to be included or excluded from the tenant default policy. ## Tenant default app management policy A tenant default policy is a single object that always exists and is disabled by default. It's defined by the [tenantAppManagementPolicy](tenantappmanagementpolicy.md) resource and enforces restrictions on application vs service principal objects. It contains the following two properties: - **applicationRestrictions** allows targeting applications owned by the tenant (application objects). -- **servicePrincipalRestrictions** allows targeting provisioned from another tenant (service principal objects. +- **servicePrincipalRestrictions** allows targeting provisioned from another tenant (service principal objects). + +These properties enable an organization to separately control the configuration of apps that originate from their tenant vs. their tenant's instance of an externally owned application. -These properties enable an organization to lock down credential usage in apps that originate from their tenant and provide a mechanism to control credential addition in externally provisioned applications to protect them from credential abuse. The application owner of a multi-tenant app could still use any type of credentials in their application object, but the policy only protects the service principal from credential abuse. ## App management policy for applications and service principals -App management policies are defined in the [appManagementPolicy](appmanagementpolicy.md) resource, which contains a collection of policies with varying restrictions or different enforcement dates from what's defined in tenant default policy. One of these policies can be assigned to an application or service principal, excluding them from the tenant default policy. +App management policies are defined in the [appManagementPolicy](appmanagementpolicy.md) resource, which contains a collection of policies with varying restrictions or different enforcement dates from what's defined in tenant default policy. One of these policies can be assigned to an application or service principal to override the tenant default policy. -When both the tenant default policy and an app management policy exist, the app management policy takes precedence and the assigned application or service principal doesn't inherit from the tenant default policy. Only one policy can be assigned to an application or service principal. +When the tenant default policy and an app management policy define the same restriction, the app management policy takes precedence. If a restriction is set on an app management policy in a `disabled` state, that restriction won't apply to apps with that policy linked to them, regardless of what the tenant default policy would normally enforce. Similarly, if a restriction is set on an app management policy in an `enabled` state, that restriction applies to apps with that policy linked to them. However, if the app management policy doesn't define any behavior for a certain restriction, it falls back to the tenant default policy's behavior. Only one app management policy can be assigned to an application or service principal. > [!Note] -> Neither the tenant default policies nor the app management policies block token issuance for existing applications. An application that does not meet the policy requirements will continue to work until it tries to update the resource to add a new secret. +> Neither the tenant default nor the app management policies block token issuance for existing applications. An application that does not meet the policy requirements continues to work; only the app creation/update operation that violates the policy is blocked. ## What restrictions can be managed in Microsoft Graph? The application authentication methods policy API offers the following restrictions: -| Restriction name | Description | Examples | -| :--------------------- | :--------------------------------------------------------------------- | :--------------------------------------------------------------------------------------------------------- | -| passwordAddition | Restrict password secrets on applications altogether. | Block new passwords on applications created on or after '01/01/2019'. | -| passwordLifetime | Enforce a max lifetime range for a password secret. | Restrict all new password secrets to a maximum of 30 days for applications created after 01/01/2015. | -| customPasswordAddition | Restrict a custom password secret on application or service principal. | Restrict all new custom password secrets on applications created after 01/01/2015. | -| symmetricKeyAddition | Restrict symmetric keys on applications. | Block new symmetric keys on applications created on or after 01/01/2019. | -| symmetricKeyLifetime | Enforce a max lifetime range for a symmetric key. | Restrict all new symmetric keys to a maximum of 30 days for applications created after 01/01/2019. | -| asymmetricKeyLifetime | Enforce a max lifetime range for an asymmetric key (certificate). | Restrict all new asymmetric key credentials to a maximum of 30 days for applications created after 01/01/2019. | +| Restriction name | Description | Examples | +| :--------------------- | :--------------------------------------------------------------------- | :---------------------------------------------------------------------------------------------------------- | +| passwordAddition | Restrict password secrets on applications altogether. | Block new passwords on applications created on or after '01/01/2019'. | +| passwordLifetime | Enforce a max lifetime range for a password secret. | Restrict all new password secrets to a maximum of 30 days for applications created after 01/01/2015. | +| customPasswordAddition | Restrict a custom password secret on application or service principal. | Restrict all new custom (non-Azure AD generated) password secrets on applications created after 01/01/2015. | +| symmetricKeyAddition | Restrict symmetric keys on applications. | Block new symmetric keys on applications created on or after 01/01/2019. | +| symmetricKeyLifetime | Enforce a max lifetime range for a symmetric key. | Restrict all new symmetric keys to a maximum of 30 days for applications created after 01/01/2019. | +| asymmetricKeyLifetime | Enforce a max lifetime range for an asymmetric key (certificate). | Restrict all new asymmetric key credentials to a maximum of 30 days for applications created after 01/01/2019. | > [!Note] > All lifetime restrictions are expressed in ISO-8601 duration format (For example: P4DT12H30M5S). -> Restricting customPasswordAddition restriction will block any legacy PowerShell modules that provide a client generated password secret for applications. This restriction still allows the application developer to request Microsoft Entra ID-generated application password secrets. - +> +> Applying the **customPasswordAddition** restriction will block any legacy PowerShell modules that add a client-generated password secret to applications or service principals. This restriction does not block Microsoft Entra ID-generated application or service principal password secrets. + ### Single vs multi-tenant apps Depending on whether your app is a single tenant or multitenant app, you apply the policy on either an application or the service principal object as follows: @@ -67,17 +69,15 @@ Depending on whether your app is a single tenant or multitenant app, you apply t | Tenant default policy | App management policy | | ---------------------------------------------------------------------------------- | --------------------------------------------------------------------------------------------------------------------------------------------------- | | Policy always exists. | Policy objects can be created or updated to override default policy. | -| Restrictions are disabled by default for app/SP. | Allows customization for single tenant or multi tenant(backing app in home tenant or provisioned apps). | | Allows only single restriction object definition for all resources. | Allows multiple policy objects to be defined, but only one can be applied to a resource. | | Allows distinction of restrictions for application objects vs. service principals. | Policy can be applied to either an application or service principal object. | -| Applies all restrictions configured to all apps or service principals. | Applies only the restrictions configured in the resource policy to the specified app or service principal, and doesn't inherit from default policy. | +| Applies all restrictions configured to all apps or service principals. | Applies the restrictions configured in the resource policy to the specified app or service principal. Anything not defined inherits from default policy. | ## Requirements -- The least privileged Microsoft Entra roles for the management of application authentication method policies are Application Administrator and Cloud Application Administrator. -- All app policy management operations require a [Microsoft Entra Workload ID Premium license](/azure/active-directory/workload-identities/workload-identities-faqs#what-is-the-cost-of-workload-identities-premium-plan). +- The least privileged [Microsoft Entra roles](/entra/identity/role-based-access-control/permissions-reference?toc=%2Fgraph%2Ftoc.json) for management of application authentication method policies are Application Administrator and Cloud Application Administrator. -## Next steps +## Related content -- [tenantAppManagementPolicy](tenantappmanagementpolicy.md) resource type. -- [appManagementPolicy](appmanagementpolicy.md) resource type. +- [tenantAppManagementPolicy](tenantappmanagementpolicy.md) +- [appManagementPolicy](appmanagementpolicy.md) diff --git a/api-reference/v1.0/resources/callrecords-administrativeunitinfo.md b/api-reference/v1.0/resources/callrecords-administrativeunitinfo.md new file mode 100644 index 00000000000..40d0ffbb52f --- /dev/null +++ b/api-reference/v1.0/resources/callrecords-administrativeunitinfo.md @@ -0,0 +1,46 @@ +--- +title: "administrativeUnitInfo resource type" +description: "Represents the administrative units associated with a call participant." +author: "mcm223" +ms.localizationpriority: medium +ms.subservice: "cloud-communications" +doc_type: resourcePageType +--- + +# administrativeUnitInfo resource type + +Namespace: microsoft.graph.callRecords + +Represents the administrative units associated with a [participant object](callrecords-participantbase.md). + +## Properties + +| Property | Type | Description | +|:---------|:-------|------------------------------------------------| +| id | String | Unique identifier for the administrative unit. | + +## Methods + +None. + +## JSON representation + +The following JSON representation shows the resource type. + + +```json +{ + "id": "String (identifier)" +} +``` + +## See also + +For more information on administrative units, see [administrativeUnit resource type](administrativeUnit.md). diff --git a/api-reference/v1.0/resources/callrecords-organizer.md b/api-reference/v1.0/resources/callrecords-organizer.md index e48e067bbf7..f750529c452 100644 --- a/api-reference/v1.0/resources/callrecords-organizer.md +++ b/api-reference/v1.0/resources/callrecords-organizer.md @@ -21,6 +21,11 @@ Inherits from [participantBase](callrecords-participantbase.md). |:---------|:------------------------------|:--------------------------------------------------------| | id | String | Unique identifier for the call organizer. Inherited from [participantBase](callrecords-participantbase.md). | | identity | [microsoft.graph.communicationsIdentitySet](communicationsidentityset.md) | The identity of the call organizer. Inherited from [participantBase](callrecords-participantbase.md). | +| administrativeUnitInfos | [microsoft.graph.callRecords.administrativeUnitInfo](callrecords-administrativeunitinfo.md) collection | The list of [administrativeUnitInfo](callrecords-administrativeunitinfo.md) objects for the call participant. Inherited from [participantBase](callrecords-participantbase.md). | + +## Methods + +None. ## JSON representation @@ -31,17 +36,19 @@ The following JSON representation shows the resource type. "@odata.type": "microsoft.graph.callRecords.organizer", "optionalProperties": [ "id", - "identity" + "identity", + "administrativeUnitInfos" ], "openType": true } --> ```json { "id": "String (identity)", - "identity": {"@odata.type": "microsoft.graph.communicationsIdentitySet"} + "identity": {"@odata.type": "microsoft.graph.communicationsIdentitySet"}, + "administrativeUnitInfos": [{"@odata.type": "microsoft.graph.callRecords.administrativeUnitInfo"}] } ``` ## See also -For examples that show how to use the **organizer** resource, see [callRecord](callrecords-callrecord.md). +For examples that show how to use the **organizer** resource, see [callRecord resource type](callrecords-callrecord.md). diff --git a/api-reference/v1.0/resources/callrecords-participant.md b/api-reference/v1.0/resources/callrecords-participant.md index 254da661ba2..cbbc43d7e72 100644 --- a/api-reference/v1.0/resources/callrecords-participant.md +++ b/api-reference/v1.0/resources/callrecords-participant.md @@ -27,6 +27,11 @@ Inherits from [participantBase](callrecords-participantbase.md). |:---------|:------------------------------|:--------------------------------------------------------| | id | String | Unique identifier for the call participant. Inherited from [participantBase](callrecords-participantbase.md). | | identity | [microsoft.graph.communicationsIdentitySet](communicationsidentityset.md) | The identity of the call participant. Inherited from [participantBase](callrecords-participantbase.md). | +| administrativeUnitInfos | [microsoft.graph.callRecords.administrativeUnitInfo](callrecords-administrativeunitinfo.md) collection | List of [administrativeUnitInfo](callrecords-administrativeunitinfo.md) objects for the call participant. Inherited from [participantBase](callrecords-participantbase.md). | + +## Methods + +None. ## JSON representation @@ -37,14 +42,16 @@ The following JSON representation shows the resource type. "@odata.type": "microsoft.graph.callRecords.participant", "optionalProperties": [ "id", - "identity" + "identity", + "administrativeUnitInfos" ], "openType": true } --> ```json { "id": "String (identifier)", - "identity": {"@odata.type": "microsoft.graph.communicationsIdentitySet"} + "identity": {"@odata.type": "microsoft.graph.communicationsIdentitySet"}, + "administrativeUnitInfos": [{"@odata.type": "microsoft.graph.callRecords.administrativeUnitInfo"}] } ``` diff --git a/api-reference/v1.0/resources/callrecords-participantbase.md b/api-reference/v1.0/resources/callrecords-participantbase.md index 138b026e0a4..cccc3e1e3e2 100644 --- a/api-reference/v1.0/resources/callrecords-participantbase.md +++ b/api-reference/v1.0/resources/callrecords-participantbase.md @@ -22,6 +22,11 @@ Base type of [organizer](callrecords-organizer.md) and [participant](callrecords |:------------|:------------------------------|:------------------------------------------------| | id | String | Unique identifier for the call participant. | | identity | [microsoft.graph.communicationsIdentitySet](communicationsidentityset.md) | The identity of the call participant. | +| administrativeUnitInfos | [microsoft.graph.callRecords.administrativeUnitInfo](callrecords-administrativeunitinfo.md) collection | List of [administrativeUnitInfo](callrecords-administrativeunitinfo.md) objects for the call participant. | + +## Methods + +None. ## JSON representation @@ -32,14 +37,16 @@ The following JSON representation shows the resource type. "@odata.type": "microsoft.graph.callRecords.participantBase", "optionalProperties": [ "id", - "identity" + "identity", + "administrativeUnitInfos" ], "openType": true } --> ```json { "id": "String (identifier)", - "identity": {"@odata.type": "microsoft.graph.communicationsIdentitySet"} + "identity": {"@odata.type": "microsoft.graph.communicationsIdentitySet"}, + "administrativeUnitInfos": [{"@odata.type": "microsoft.graph.callRecords.administrativeUnitInfo"}] } ``` diff --git a/api-reference/v1.0/resources/enums.md b/api-reference/v1.0/resources/enums.md index 64df3fdbdf5..116df055e85 100644 --- a/api-reference/v1.0/resources/enums.md +++ b/api-reference/v1.0/resources/enums.md @@ -44,6 +44,13 @@ Namespace: microsoft.graph | active | | unknownfuturevalue | +### siteLockState values + +| Member | +| --------------- | +| unlocked | +| lockedReadOnly | + ### binaryOperator values | Member | diff --git a/api-reference/v1.0/resources/filestoragecontainer.md b/api-reference/v1.0/resources/filestoragecontainer.md index 4a5e389cadb..464cd4dbe34 100644 --- a/api-reference/v1.0/resources/filestoragecontainer.md +++ b/api-reference/v1.0/resources/filestoragecontainer.md @@ -23,16 +23,29 @@ Represents a location where multiple users or a group of users can store files a |[Update](../api/filestoragecontainer-update.md)|[fileStorageContainer](../resources/filestoragecontainer.md)|Update the properties of a [fileStorageContainer](../resources/filestoragecontainer.md) object.| |[Delete](../api/filestorage-delete-containers.md)|None|Delete a [fileStorageContainer](../resources/filestoragecontainer.md) object.| |[Activate](../api/filestoragecontainer-activate.md)|None|Activate a [fileStorageContainer](../resources/filestoragecontainer.md) object.| +|[Restore deleted container](../api/filestoragecontainer-restore.md)|[fileStorageContainer](../resources/filestoragecontainer.md)|Restore a deleted [fileStorageContainer](../resources/filestoragecontainer.md) object.| +|[Remove deleted containers](../api/filestorage-delete-deletedcontainers.md)|None|Remove a deleted [fileStorageContainer](../resources/filestoragecontainer.md) object.| |[Permanently delete](../api/filestoragecontainer-permanentdelete.md)|None|Permanently delete a [fileStorageContainer](../resources/filestoragecontainer.md) object.| |[Get drive](../api/filestoragecontainer-get-drive.md)|[drive](../resources/drive.md)|Get the drive resource from a [fileStorageContainer](../resources/filestoragecontainer.md) object.| |[List permissions](../api/filestoragecontainer-list-permissions.md)|[permission](../resources/permission.md)| List permissions on a fileStorageContainer.| -|[Create permissions](../api/filestoragecontainer-post-permissions.md)|[permission](../resources/permission.md)|Add permission to a fileStorageContainer.| +|[Add permissions](../api/filestoragecontainer-post-permissions.md)|[permission](../resources/permission.md)|Add permission to a fileStorageContainer.| |[Update permissions](../api/filestoragecontainer-update-permissions.md)|[permission](../resources/permission.md)|Update permission on a fileStorageContainer.| |[Delete permissions](../api/filestoragecontainer-delete-permissions.md)|[permission](../resources/permission.md)|Delete permission from a fileStorageContainer.| |[List custom property](../api/filestoragecontainer-list-customproperty.md)|[filestoragecontainercustompropertyvalue](../resources/filestoragecontainercustompropertyvalue.md)|List custom properties of the fileStorageContainer.| -|[Create custom property](../api/filestoragecontainer-post-customproperty.md)|[filestoragecontainercustompropertyvalue](../resources/filestoragecontainercustompropertyvalue.md)|Create custom property to the fileStorageContainer.| +|[Add custom property](../api/filestoragecontainer-post-customproperty.md)|[filestoragecontainercustompropertyvalue](../resources/filestoragecontainercustompropertyvalue.md)|Create custom property to the fileStorageContainer.| |[Update custom property](../api/filestoragecontainer-update-customproperty.md)|[filestoragecontainercustompropertyvalue](../resources/filestoragecontainercustompropertyvalue.md)|Update custom property on a fileStorageContainer.| |[Delete custom property](../api/filestoragecontainer-delete-customproperty.md)|[filestoragecontainercustompropertyvalue](../resources/filestoragecontainercustompropertyvalue.md)|Delete custom property from a fileStorageContainer.| +|[List columns](../api/filestoragecontainer-list-columns.md)|[columnDefinition](../resources/columndefinition.md) collection|List columns in a fileStorageContainer.| +|[Add column](../api/filestoragecontainer-post-columns.md)|[columnDefinition](../resources/columndefinition.md)|Create a columnDefinition for afileStorageContainer.| +|[Update column](../api/filestoragecontainer-update-column.md)|[columnDefinition](../resources/columndefinition.md)|Update a column in a fileStorageContainer.| +|[Delete file storage container column](../api/filestoragecontainer-delete-column.md)|None|Delete a column from a fileStorageContainer.| +|[Get column](../api/filestoragecontainer-get-column.md)|[columnDefinition](../resources/columndefinition.md)|Get a column from a fileStorageContainer.| +|[Update recycle bin settings](../api/filestoragecontainer-update-recyclebinsettings.md)|[recyclebinsettings](../resources/recyclebinsettings.md)|Update recycleBin settings for a fileStorageContainer.| +|[Restore recycle bin items](../api/filestoragecontainer-restore-recyclebinitem.md)|[recycleBinItem](../resources/recyclebinitem.md) collection|Restore recycle bin items in a fileStorageContainer.| +|[Delete recycle bin items](../api/filestoragecontainer-delete-recyclebinitem.md)|None|Delete recycle bin items from a fileStorageContainer.| +|[Get recycle bin items](../api/filestoragecontainer-list-recyclebinitem.md)|[recycleBinItem](../resources/recyclebinitem.md) collection|List recycle bin items in a fileStorageContainer.| +|[Lock](../api/filestoragecontainer-lock.md)|None|Lock a [fileStorageContainer](../resources/filestoragecontainer.md).| +|[Unlock](../api/filestoragecontainer-unlock.md)|None|Unlock a [fileStorageContainer](../resources/filestoragecontainer.md).| ## Properties @@ -44,16 +57,19 @@ Represents a location where multiple users or a group of users can store files a |description|String|Provides a user-visible description of the **fileStorageContainer**. Read-write.| |displayName|String|The display name of the **fileStorageContainer**. Read-write.| |id|String|The unique stable identifier of the **filerStorageContainer**. Read-only.| +|lockState|siteLockState|Indicates the lock state of the **fileStorageContainer**. The possible values are `unlocked` and `lockedReadOnly`. Read-only.| |status|fileStorageContainerStatus|Status of the **fileStorageContainer**. Containers are created as inactive and require activation. Inactive containers are subjected to automatic deletion in 24 hours. The possible values are: `inactive `, `active `. Read-only.| +|settings|[fileStorageContainerSettings](../resources/filestoragecontainersettings.md)|Settings associated with a **fileStorageContainer**. Read-write.| |viewpoint|[fileStorageContainerViewpoint](../resources/filestoragecontainerviewpoint.md)|Data specific to the current user. Read-only.| ## Relationships |Relationship|Type|Description| |:---|:---|:---| +|columns|[columnDefinition](../resources/columndefinition.md) collection|The set of custom structured metadata supported by the **fileStorageContainer**. Read-write.| |drive|[drive](../resources/drive.md)|The drive of the resource **fileStorageContainer**. Read-only.| |permissions|[permission](../resources/permission.md) collection|The set of permissions for users in the **fileStorageContainer**. Permission for each user is set by the **roles** property. The possible values are: `reader`, `writer`, `manager`, and `owner`. Read-write.| -|settings|[fileStorageContainerSettings](../resources/filestoragecontainersettings.md)|Settings associated with a **fileStorageContainer**. Read-write. +|recycleBin|[recycleBin](../resources/recyclebin.md)|Recycle bin of the **fileStorageContainer**. Read-only.| ### roles property values diff --git a/api-reference/v1.0/resources/filestoragecontainersettings.md b/api-reference/v1.0/resources/filestoragecontainersettings.md index 1f30e1139c6..fe498c96bed 100644 --- a/api-reference/v1.0/resources/filestoragecontainersettings.md +++ b/api-reference/v1.0/resources/filestoragecontainersettings.md @@ -11,22 +11,22 @@ doc_type: resourcePageType Namespace: microsoft.graph -Represents settings associated with a [fileStorageContainer](../resources/filestoragecontainer.md). +Represents the settings of a [fileStorageContainer](../resources/filestoragecontainer.md) object. ## Properties - |Property|Type|Description| |:---|:---|:---| -|isOcrEnabled|Boolean|Indicates whether optical character recognition (OCR) is enabled for a given container. When OCR is enabled on a container, OCR extraction is performed for new and updated documents of supported types. The extracted fields are added to the metadata of the document, enabling end-user search and search-driven solutions. Changing this property from `true` to `false` doesn't remove OCR metadata that was created while it was `true`. Default value is `false`.| +|isOcrEnabled|Boolean|Indicates whether Optical Character Recognition (OCR) is enabled for the container. The default value is `false`. When set to `true`, OCR extraction is performed for new and updated documents of supported document types, and the extracted fields in the metadata of the document enable end-user search and search-driven solutions. When set to `false`, existing OCR metadata is not impacted. Optional. Read-write.| +|itemMajorVersionLimit|Int32|The maximum major versions allowed for items in the container. Optional. Read-write.| +|isItemVersioningEnabled|Boolean|Indicates whether versioning is enabled for items in the container. Optional. Read-write.| ## Relationships - None. ## JSON representation -The following JSON representation shows the resource type. +The following JSON representation shows the resource type. + +```json +{ + "id": "String (identifier)", + "settings": { "@odata.type": "microsoft.graph.recycleBinSettings" } +} +``` + + diff --git a/api-reference/v1.0/resources/recyclebinitem.md b/api-reference/v1.0/resources/recyclebinitem.md new file mode 100644 index 00000000000..70e11a0d297 --- /dev/null +++ b/api-reference/v1.0/resources/recyclebinitem.md @@ -0,0 +1,62 @@ +--- +author: "vanshisingh" +title: "recycleBinItem resource type" +description: "Represents information about a deleted item in a recycleBin of a SharePoint site." +ms.localizationpriority: "medium" +doc_type: resourcePageType +ms.subservice: "sharepoint" +--- + +# recycleBinItem resource type + +Namespace: microsoft.graph + +Represents information about a deleted item in a [recycleBin](recyclebin.md) of a SharePoint [site](site.md) or a SharePoint Embedded fileStorageContainer. + +Inherits from [baseItem](baseitem.md). + +## Methods + +| Method | Return Type | Description | +|:--------------------------------------------------------|:------------------------------------------------------------|:-----------------------------------------------------------------------------------------| +| [List](../api/recyclebin-list-items.md) | [recycleBinItem](../resources/recyclebinitem.md) collection |Get a collection of [recycleBinItem](../resources/recyclebinitem.md) resources in the [recycleBin](../resources/recyclebin.md) of the specified SharePoint [site](../resources/site.md). | + +## Properties + +| Property | Type | Description | +|:--------------------|:---------------|:------------------| +| deletedDateTime | DateTimeOffset | Date and time when the item was deleted. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`. | +| deletedFromLocation | String | Relative URL of the list or folder that originally contained the item. | +| id | String | Unique identifier of the delete transaction. Inherited from [baseItem](baseitem.md). | +| name | String | Name of the item. Inherited from [baseItem](baseitem.md). | +| size | Int64 | Size of the item in bytes. | + +## JSON Representation + +The following JSON representation shows the resource type. + + + +```json +{ + "deletedDateTime": "String (timestamp)", + "deletedFromLocation": "String", + "id": "String (identifier)", + "name": "String", + "size": "Int64" +} +``` + + diff --git a/api-reference/v1.0/resources/recyclebinsettings.md b/api-reference/v1.0/resources/recyclebinsettings.md new file mode 100644 index 00000000000..6f6c913a9b9 --- /dev/null +++ b/api-reference/v1.0/resources/recyclebinsettings.md @@ -0,0 +1,38 @@ +--- +title: "recycleBinSettings resource type" +description: "Settings for the recycle bin resource type." +author: "harmoneddie" +ms.localizationpriority: medium +ms.subservice: "sharepoint" +doc_type: resourcePageType +--- + +# recycleBinSettings resource type + +Namespace: microsoft.graph + +[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] + +Represents settings for the [recycleBin](recyclebin.md) resource type. + +## Properties +|Property|Type|Description| +|:---|:---|:---| +|retentionPeriodOverrideDays|Int32|Recycle bin retention period override in days for deleted content. The default value is `93`; the value range is `7` to `180`. The setting applies to newly deleted content only. Setting this property to `null` reverts to its default value. Read-write.| + +## Relationships +None. + +## JSON representation +The following JSON representation shows the resource type. + +``` json +{ + "@odata.type": "#microsoft.graph.recycleBinSettings", + "retentionPeriodOverrideDays": "int32" +} +``` diff --git a/api-reference/v1.0/resources/security-ediscoverycase.md b/api-reference/v1.0/resources/security-ediscoverycase.md index a4402b761e1..f366e67eed1 100644 --- a/api-reference/v1.0/resources/security-ediscoverycase.md +++ b/api-reference/v1.0/resources/security-ediscoverycase.md @@ -18,25 +18,27 @@ In the context of eDiscovery, contains custodians, searches, review sets. For de ## Methods |Method|Return type|Description| |:---|:---|:---| -|[List ediscoveryCases](../api/security-casesroot-list-ediscoverycases.md)|[microsoft.graph.security.ediscoveryCase](../resources/security-ediscoverycase.md) collection|Get a list of the [ediscoveryCase](../resources/security-ediscoverycase.md) objects and their properties.| -|[Create ediscoveryCase](../api/security-casesroot-post-ediscoverycases.md)|[microsoft.graph.security.ediscoveryCase](../resources/security-ediscoverycase.md)|Create a new [ediscoveryCase](../resources/security-ediscoverycase.md) object.| -|[Get ediscoveryCase](../api/security-ediscoverycase-get.md)|[microsoft.graph.security.ediscoveryCase](../resources/security-ediscoverycase.md)|Read the properties and relationships of an [ediscoveryCase](../resources/security-ediscoverycase.md) object.| -|[Update ediscoveryCase](../api/security-ediscoverycase-update.md)|[microsoft.graph.security.ediscoveryCase](../resources/security-ediscoverycase.md)|Update the properties of an [ediscoveryCase](../resources/security-ediscoverycase.md) object.| -|[Delete ediscoveryCase](../api/security-casesroot-delete-ediscoverycases.md)|None|Delete an [ediscoveryCase](../resources/security-ediscoverycase.md) object.| +|[List](../api/security-casesroot-list-ediscoverycases.md)|[microsoft.graph.security.ediscoveryCase](../resources/security-ediscoverycase.md) collection|Get a list of the [ediscoveryCase](../resources/security-ediscoverycase.md) objects and their properties.| +|[Create](../api/security-casesroot-post-ediscoverycases.md)|[microsoft.graph.security.ediscoveryCase](../resources/security-ediscoverycase.md)|Create a new [ediscoveryCase](../resources/security-ediscoverycase.md) object.| +|[Get](../api/security-ediscoverycase-get.md)|[microsoft.graph.security.ediscoveryCase](../resources/security-ediscoverycase.md)|Read the properties and relationships of an [ediscoveryCase](../resources/security-ediscoverycase.md) object.| +|[Update](../api/security-ediscoverycase-update.md)|[microsoft.graph.security.ediscoveryCase](../resources/security-ediscoverycase.md)|Update the properties of an [ediscoveryCase](../resources/security-ediscoverycase.md) object.| +|[Delete](../api/security-casesroot-delete-ediscoverycases.md)|None|Delete an [ediscoveryCase](../resources/security-ediscoverycase.md) object.| +|[Close](../api/security-ediscoverycase-close.md)|None|Close an [ediscoveryCase](../resources/security-ediscoverycase.md) object.| +|[Reopen](../api/security-ediscoverycase-reopen.md)|None|Reopen an [ediscoveryCase](../resources/security-ediscoverycase.md) object.| |[List custodians](../api/security-ediscoverycase-list-custodians.md)|[microsoft.graph.security.ediscoveryCustodian](../resources/security-ediscoverycustodian.md) collection|Get the ediscoveryCustodian resources from the custodians navigation property.| -|[Create ediscoveryCustodian](../api/security-ediscoverycase-post-custodians.md)|[microsoft.graph.security.ediscoveryCustodian](../resources/security-ediscoverycustodian.md)|Create a new ediscoveryCustodian object.| -|[List legalHolds](../api/security-ediscoverycase-list-legalholds.md)|[microsoft.graph.security.ediscoveryHoldPolicy](../resources/security-ediscoveryholdpolicy.md) collection|Get the ediscoveryHoldPolicy resources from the legalHolds navigation property.| -|[Delete legalholds](../api/security-ediscoverycase-delete-legalholds.md)|None|Delete an [ediscoveryHoldPolicy](../resources/security-ediscoveryholdpolicy.md) object.| -|[Create ediscoveryHoldPolicy](../api/security-ediscoverycase-post-legalholds.md)|[microsoft.graph.security.ediscoveryHoldPolicy](../resources/security-ediscoveryholdpolicy.md)|Create a new ediscoveryHoldPolicy object.| -|[List noncustodialDataSources](../api/security-ediscoverysearch-list-noncustodialsources.md)|[microsoft.graph.security.ediscoveryNoncustodialDataSource](../resources/security-ediscoverynoncustodialdatasource.md) collection|Get the ediscoveryNoncustodialDataSource resources from the noncustodialDataSources navigation property.| -|[Create ediscoveryNoncustodialDataSource](../api/security-ediscoverycase-post-noncustodialdatasources.md)|[microsoft.graph.security.ediscoveryNoncustodialDataSource](../resources/security-ediscoverynoncustodialdatasource.md)|Create a new ediscoveryNoncustodialDataSource object.| +|[Create custodian](../api/security-ediscoverycase-post-custodians.md)|[microsoft.graph.security.ediscoveryCustodian](../resources/security-ediscoverycustodian.md)|Create a new ediscoveryCustodian object.| +|[List legal holds](../api/security-ediscoverycase-list-legalholds.md)|[microsoft.graph.security.ediscoveryHoldPolicy](../resources/security-ediscoveryholdpolicy.md) collection|Get the ediscoveryHoldPolicy resources from the legalHolds navigation property.| +|[Delete legal holds](../api/security-ediscoverycase-delete-legalholds.md)|None|Delete an [ediscoveryHoldPolicy](../resources/security-ediscoveryholdpolicy.md) object.| +|[Create hold policy](../api/security-ediscoverycase-post-legalholds.md)|[microsoft.graph.security.ediscoveryHoldPolicy](../resources/security-ediscoveryholdpolicy.md)|Create a new ediscoveryHoldPolicy object.| +|[List noncustodial data sources](../api/security-ediscoverysearch-list-noncustodialsources.md)|[microsoft.graph.security.ediscoveryNoncustodialDataSource](../resources/security-ediscoverynoncustodialdatasource.md) collection|Get the ediscoveryNoncustodialDataSource resources from the noncustodialDataSources navigation property.| +|[Create noncustodial data source](../api/security-ediscoverycase-post-noncustodialdatasources.md)|[microsoft.graph.security.ediscoveryNoncustodialDataSource](../resources/security-ediscoverynoncustodialdatasource.md)|Create a new ediscoveryNoncustodialDataSource object.| |[List operations](../api/security-ediscoverycase-list-operations.md)|[microsoft.graph.security.caseOperation](../resources/security-caseoperation.md) collection|Get the caseOperation resources from the operations navigation property.| -|[List reviewSets](../api/security-ediscoverycase-list-reviewsets.md)|[microsoft.graph.security.ediscoveryReviewSet](../resources/security-ediscoveryreviewset.md) collection|Get the ediscoveryReviewSet resources from the reviewSets navigation property.| -|[Create ediscoveryReviewSet](../api/security-ediscoverycase-post-reviewsets.md)|[microsoft.graph.security.ediscoveryReviewSet](../resources/security-ediscoveryreviewset.md)|Create a new ediscoveryReviewSet object.| +|[List review sets](../api/security-ediscoverycase-list-reviewsets.md)|[microsoft.graph.security.ediscoveryReviewSet](../resources/security-ediscoveryreviewset.md) collection|Get the ediscoveryReviewSet resources from the reviewSets navigation property.| +|[Create review set](../api/security-ediscoverycase-post-reviewsets.md)|[microsoft.graph.security.ediscoveryReviewSet](../resources/security-ediscoveryreviewset.md)|Create a new ediscoveryReviewSet object.| |[List searches](../api/security-ediscoverycase-list-searches.md)|[microsoft.graph.security.ediscoverySearch](../resources/security-ediscoverysearch.md) collection|Get the ediscoverySearch resources from the searches navigation property.| -|[Create ediscoverySearch](../api/security-ediscoverycase-post-searches.md)|[microsoft.graph.security.ediscoverySearch](../resources/security-ediscoverysearch.md)|Create a new ediscoverySearch object.| +|[Create search](../api/security-ediscoverycase-post-searches.md)|[microsoft.graph.security.ediscoverySearch](../resources/security-ediscoverysearch.md)|Create a new ediscoverySearch object.| |[List tags](../api/security-ediscoverycase-list-tags.md)|[microsoft.graph.security.ediscoveryReviewTag](../resources/security-ediscoveryreviewtag.md) collection|Get the ediscoveryReviewTag resources from the tags navigation property.| -|[Create ediscoveryReviewTag](../api/security-ediscoverycase-post-tags.md)|[microsoft.graph.security.ediscoveryReviewTag](../resources/security-ediscoveryreviewtag.md)|Create a new ediscoveryReviewTag object.| +|[Create review tag](../api/security-ediscoverycase-post-tags.md)|[microsoft.graph.security.ediscoveryReviewTag](../resources/security-ediscoveryreviewtag.md)|Create a new ediscoveryReviewTag object.| ## Properties |Property|Type|Description| diff --git a/api-reference/v1.0/toc/files/toc.yml b/api-reference/v1.0/toc/files/toc.yml index 63b32ff42d6..bc279bd39ee 100644 --- a/api-reference/v1.0/toc/files/toc.yml +++ b/api-reference/v1.0/toc/files/toc.yml @@ -144,13 +144,17 @@ items: href: ../../api/filestorage-delete-containers.md - name: Activate href: ../../api/filestoragecontainer-activate.md + - name: Restore deleted + href: ../../api/filestoragecontainer-restore.md + - name: Remove deleted + href: ../../api/filestorage-delete-deletedcontainers.md - name: Permanently delete href: ../../api/filestoragecontainer-permanentdelete.md - name: Get drive href: ../../api/filestoragecontainer-get-drive.md - name: List permissions href: ../../api/filestoragecontainer-list-permissions.md - - name: Create permissions + - name: Add permissions href: ../../api/filestoragecontainer-post-permissions.md - name: Update permissions href: ../../api/filestoragecontainer-update-permissions.md @@ -158,12 +162,34 @@ items: href: ../../api/filestoragecontainer-delete-permissions.md - name: List custom property href: ../../api/filestoragecontainer-list-customproperty.md - - name: Create custom property + - name: Add custom property href: ../../api/filestoragecontainer-post-customproperty.md - name: Update custom property href: ../../api/filestoragecontainer-update-customproperty.md - name: Delete custom property href: ../../api/filestoragecontainer-delete-customproperty.md + - name: List columns + href: ../../api/filestoragecontainer-list-columns.md + - name: Add column + href: ../../api/filestoragecontainer-post-columns.md + - name: Update column + href: ../../api/filestoragecontainer-update-column.md + - name: Delete file storage container column + href: ../../api/filestoragecontainer-delete-column.md + - name: Get column + href: ../../api/filestoragecontainer-get-column.md + - name: Update recycle bin settings + href: ../../api/filestoragecontainer-update-recyclebinsettings.md + - name: Restore recycle bin items + href: ../../api/filestoragecontainer-restore-recyclebinitem.md + - name: Delete recycle bin items + href: ../../api/filestoragecontainer-delete-recyclebinitem.md + - name: Get recycle bin items + href: ../../api/filestoragecontainer-list-recyclebinitem.md + - name: Lock + href: ../../api/filestoragecontainer-lock.md + - name: Unlock + href: ../../api/filestoragecontainer-unlock.md - name: Shared drive item items: - name: Shared drive item diff --git a/api-reference/v1.0/toc/sites-and-lists/toc.yml b/api-reference/v1.0/toc/sites-and-lists/toc.yml index 6aa6a11fb0c..7e4bf4f24f6 100644 --- a/api-reference/v1.0/toc/sites-and-lists/toc.yml +++ b/api-reference/v1.0/toc/sites-and-lists/toc.yml @@ -168,6 +168,12 @@ items: href: ../../api/documentsetversion-delete.md - name: Restore href: ../../api/documentsetversion-restore.md +- name: Recycle bin item + items: + - name: Recycle bin item + href: ../../resources/recyclebinitem.md + - name: List + href: ../../api/recyclebin-list-items.md - name: Rich long running operation items: - name: Rich long running operation diff --git a/api-reference/v1.0/toc/toc.mapping.json b/api-reference/v1.0/toc/toc.mapping.json index 20f9eea8dc9..becf0af0578 100644 --- a/api-reference/v1.0/toc/toc.mapping.json +++ b/api-reference/v1.0/toc/toc.mapping.json @@ -1635,6 +1635,7 @@ "contentType", "listItem", "documentSetVersion", + "recycleBinItem", "richLongRunningOperation", "sharepointSettings" ], diff --git a/changelog/Microsoft.CloudManagedDesktop.json b/changelog/Microsoft.CloudManagedDesktop.json index da80043a507..fa7fb73bc02 100644 --- a/changelog/Microsoft.CloudManagedDesktop.json +++ b/changelog/Microsoft.CloudManagedDesktop.json @@ -1,5 +1,23 @@ { "changelog": [ + { + "ChangeList": [ + { + "Id": "8efd6ed8-dce5-4fb2-b59d-06a05d851029", + "ApiChange": "Method", + "ChangedApiName": "apply", + "ChangeType": "Addition", + "Description": "Added the **reservePercentage** to the [apply](https://learn.microsoft.com/en-us/graph/api/cloudpcprovisioningpolicy-apply?view=graph-rest-beta) method.", + "Target": "cloudPcProvisioningPolicy" + } + ], + "Id": "8efd6ed8-dce5-4fb2-b59d-06a05d851029", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2024-11-11T01:25:21.3434973Z", + "WorkloadArea": "Device and app management", + "SubArea": "Cloud PC" + }, { "ChangeList": [ { diff --git a/changelog/Microsoft.CopilotSettings.json b/changelog/Microsoft.CopilotSettings.json new file mode 100644 index 00000000000..cb9bd8461ff --- /dev/null +++ b/changelog/Microsoft.CopilotSettings.json @@ -0,0 +1,46 @@ +{ + "changelog": [ + { + "ChangeList": [ + { + "Id": "23e6f05c-f98d-49a4-8df2-b63a6491c249", + "ApiChange": "Resource", + "ChangedApiName": "copilotAdmin", + "ChangeType": "Addition", + "Description": "Added the [copilotAdmin](https://learn.microsoft.com/en-us/graph/api/resources/copilotAdmin?view=graph-rest-beta) resource.", + "Target": "copilotAdmin" + }, + { + "Id": "23e6f05c-f98d-49a4-8df2-b63a6491c249", + "ApiChange": "Resource", + "ChangedApiName": "copilotAdminLimitedMode", + "ChangeType": "Addition", + "Description": "Added the [copilotAdminLimitedMode](https://learn.microsoft.com/en-us/graph/api/resources/copilotAdminLimitedMode?view=graph-rest-beta) resource and its methods.", + "Target": "copilotAdminLimitedMode" + }, + { + "Id": "23e6f05c-f98d-49a4-8df2-b63a6491c249", + "ApiChange": "Resource", + "ChangedApiName": "copilotAdminSetting", + "ChangeType": "Addition", + "Description": "Added the [copilotAdminSetting](https://learn.microsoft.com/en-us/graph/api/resources/copilotAdminSetting?view=graph-rest-beta) resource.", + "Target": "copilotAdminSetting" + }, + { + "Id": "23e6f05c-f98d-49a4-8df2-b63a6491c249", + "ApiChange": "Resource", + "ChangedApiName": "copilotRoot", + "ChangeType": "Addition", + "Description": "Added the [copilotRoot](https://learn.microsoft.com/en-us/graph/api/resources/copilotRoot?view=graph-rest-beta) resource.", + "Target": "copilotRoot" + } + ], + "Id": "23e6f05c-f98d-49a4-8df2-b63a6491c249", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2024-11-11T19:12:08.7280528Z", + "WorkloadArea": "Teamwork and communications", + "SubArea": "Calls and online meetings" + } + ] +} diff --git a/changelog/Microsoft.FileServices.json b/changelog/Microsoft.FileServices.json index 414bd7f367f..1c014e20b28 100644 --- a/changelog/Microsoft.FileServices.json +++ b/changelog/Microsoft.FileServices.json @@ -3871,6 +3871,152 @@ "CreatedDateTime": "2024-09-10T05:34:22.37196Z", "WorkloadArea": "Files", "SubArea": "" - } + }, + { + "ChangeList": [ + { + "Id": "d4cad5ca-ea99-4c26-bb63-35d74f43", + "ApiChange": "Method", + "ChangedApiName": "Delete", + "ChangeType": "Addition", + "Description": "Added the [Delete deletedContainers](https://learn.microsoft.com/en-us/graph/api/filestorage-delete-deletedcontainers?view=graph-rest-1.0) method to the [filestorage](https://learn.microsoft.com/en-us/graph/api/resources/filestorage?view=graph-rest-1.0) resource.", + "Target": "filestorage" + }, + { + "Id": "d4cad5ca-ea99-4c26-bb63-35d74f43", + "ApiChange": "Method", + "ChangedApiName": "Delete", + "ChangeType": "Addition", + "Description": "Added the [Delete column](https://learn.microsoft.com/en-us/graph/api/filestoragecontainer-delete-column?view=graph-rest-1.0) method to the [filestoragecontainer](https://learn.microsoft.com/en-us/graph/api/resources/filestoragecontainer?view=graph-rest-1.0) resource.", + "Target": "filestoragecontainer" + }, + { + "Id": "d4cad5ca-ea99-4c26-bb63-35d74f43", + "ApiChange": "Method", + "ChangedApiName": "Delete", + "ChangeType": "Addition", + "Description": "Added the [Delete recycleBinItem](https://learn.microsoft.com/en-us/graph/api/filestoragecontainer-delete-recyclebinitem?view=graph-rest-1.0) method to the [filestoragecontainer](https://learn.microsoft.com/en-us/graph/api/resources/filestoragecontainer?view=graph-rest-1.0) resource.", + "Target": "filestoragecontainer" + }, + { + "Id": "d4cad5ca-ea99-4c26-bb63-35d74f43", + "ApiChange": "Method", + "ChangedApiName": "get", + "ChangeType": "Addition", + "Description": "Added the [Get column](https://learn.microsoft.com/en-us/graph/api/filestoragecontainer-get-column?view=graph-rest-1.0) method to the [filestoragecontainer](https://learn.microsoft.com/en-us/graph/api/resources/filestoragecontainer?view=graph-rest-1.0) resource.", + "Target": "filestoragecontainer" + }, + { + "Id": "d4cad5ca-ea99-4c26-bb63-35d74f43", + "ApiChange": "Method", + "ChangedApiName": "List", + "ChangeType": "Addition", + "Description": "Added the [List columns](https://learn.microsoft.com/en-us/graph/api/filestoragecontainer-list-columns?view=graph-rest-1.0) method to the [filestoragecontainer](https://learn.microsoft.com/en-us/graph/api/resources/filestoragecontainer?view=graph-rest-1.0) resource.", + "Target": "filestoragecontainer" + }, + { + "Id": "d4cad5ca-ea99-4c26-bb63-35d74f43", + "ApiChange": "Method", + "ChangedApiName": "List", + "ChangeType": "Addition", + "Description": "Added the [List recycleBinItem](https://learn.microsoft.com/en-us/graph/api/filestoragecontainer-list-recyclebinitem?view=graph-rest-1.0) method to the [filestoragecontainer](https://learn.microsoft.com/en-us/graph/api/resources/filestoragecontainer?view=graph-rest-1.0) resource.", + "Target": "filestoragecontainer" + }, + { + "Id": "d4cad5ca-ea99-4c26-bb63-35d74f43", + "ApiChange": "Method", + "ChangedApiName": "lock", + "ChangeType": "Addition", + "Description": "Added the [Lock](https://learn.microsoft.com/en-us/graph/api/filestoragecontainer-lock?view=graph-rest-1.0) method to the [filestoragecontainer](https://learn.microsoft.com/en-us/graph/api/resources/filestoragecontainer?view=graph-rest-1.0) resource.", + "Target": "filestoragecontainer" + }, + { + "Id": "d4cad5ca-ea99-4c26-bb63-35d74f43", + "ApiChange": "Method", + "ChangedApiName": "post", + "ChangeType": "Addition", + "Description": "Added the [Create columns](https://learn.microsoft.com/en-us/graph/api/filestoragecontainer-post-columns?view=graph-rest-1.0) method to the [filestoragecontainer](https://learn.microsoft.com/en-us/graph/api/resources/filestoragecontainer?view=graph-rest-1.0) resource.", + "Target": "filestoragecontainer" + }, + { + "Id": "d4cad5ca-ea99-4c26-bb63-35d74f43", + "ApiChange": "Method", + "ChangedApiName": "Restore", + "ChangeType": "Addition", + "Description": "Added the [Restore recyclebintem](https://learn.microsoft.com/en-us/graph/api/filestoragecontainer-restore-recyclebinitem?view=graph-rest-1.0) method to the [filestoragecontainer](https://learn.microsoft.com/en-us/graph/api/resources/filestoragecontainer?view=graph-rest-1.0) resource.", + "Target": "filestoragecontainer" + }, + { + "Id": "d4cad5ca-ea99-4c26-bb63-35d74f43", + "ApiChange": "Method", + "ChangedApiName": "Restore", + "ChangeType": "Addition", + "Description": "Added the [Restore](https://learn.microsoft.com/en-us/graph/api/filestoragecontainer-restore?view=graph-rest-1.0) method to the [filestoragecontainer](https://learn.microsoft.com/en-us/graph/api/resources/filestoragecontainer?view=graph-rest-1.0) resource.", + "Target": "filestoragecontainer" + }, + { + "Id": "d4cad5ca-ea99-4c26-bb63-35d74f43", + "ApiChange": "Method", + "ChangedApiName": "Unlock", + "ChangeType": "Addition", + "Description": "Added the [Unlock](https://learn.microsoft.com/en-us/graph/api/filestoragecontainer-unlock?view=graph-rest-1.0) method to the [filestoragecontainer](https://learn.microsoft.com/en-us/graph/api/resources/filestoragecontainer?view=graph-rest-1.0) resource.", + "Target": "filestoragecontainer" + }, + { + "Id": "d4cad5ca-ea99-4c26-bb63-35d74f43", + "ApiChange": "Method", + "ChangedApiName": "Update", + "ChangeType": "Addition", + "Description": "Added the [Update column](https://learn.microsoft.com/en-us/graph/api/filestoragecontainer-update-column?view=graph-rest-1.0) method to the [filestoragecontainer](https://learn.microsoft.com/en-us/graph/api/resources/filestoragecontainer?view=graph-rest-1.0) resource.", + "Target": "filestoragecontainer" + }, + { + "Id": "d4cad5ca-ea99-4c26-bb63-35d74f43", + "ApiChange": "Method", + "ChangedApiName": "Update", + "ChangeType": "Addition", + "Description": "Added the [Update recycleBinSettings](https://learn.microsoft.com/en-us/graph/api/filestoragecontainer-update-recyclebinsettings?view=graph-rest-1.0) method to the [filestoragecontainer](https://learn.microsoft.com/en-us/graph/api/resources/filestoragecontainer?view=graph-rest-1.0) resource.", + "Target": "filestoragecontainer" + }, + { + "Id": "d4cad5ca-ea99-4c26-bb63-35d74f43", + "ApiChange": "Method", + "ChangedApiName": "List", + "ChangeType": "Addition", + "Description": "Added the [List items](https://learn.microsoft.com/en-us/graph/api/recyclebin-list-items?view=graph-rest-1.0) method to the [recyclebin](https://learn.microsoft.com/en-us/graph/api/resources/recyclebin?view=graph-rest-1.0) resource.", + "Target": "recyclebin" + }, + { + "Id": "d4cad5ca-ea99-4c26-bb63-35d74f43", + "ApiChange": "Resource", + "ChangedApiName": "recyclebin", + "ChangeType": "Addition", + "Description": "Added the [recycleBin](https://learn.microsoft.com/en-us/graph/api/resources/recyclebin?view=graph-rest-1.0) resource.", + "Target": "recyblebin" + }, + { + "Id": "d4cad5ca-ea99-4c26-bb63-35d74f43", + "ApiChange": "Resource", + "ChangedApiName": "recyclebinitem", + "ChangeType": "Addition", + "Description": "Added the [recycleBinItem](https://learn.microsoft.com/en-us/graph/api/resources/recyclebinitem?view=graph-rest-1.0) resource.", + "Target": "recyclebinitem" + }, + { + "Id": "d4cad5ca-ea99-4c26-bb63-35d74f43", + "ApiChange": "Resource", + "ChangedApiName": "recyclebinsettings", + "ChangeType": "Addition", + "Description": "Added the [recycleBinSettings](https://learn.microsoft.com/en-us/graph/api/resources/recyclebinsettings?view=graph-rest-1.0) resource.", + "Target": "recyclebinsettings" + } + ], + "Id": "d4cad5ca-ea99-4c26-bb63-35d74f43", + "Cloud": "Prod", + "Version": "v1.0", + "CreatedDateTime": "2024-11-11T06:57:37.5509045Z", + "WorkloadArea": "Files", + "SubArea": "" + } ] } diff --git a/changelog/Microsoft.IC3.DataPlatform.json b/changelog/Microsoft.IC3.DataPlatform.json index 6c807111f9d..05118bd289a 100644 --- a/changelog/Microsoft.IC3.DataPlatform.json +++ b/changelog/Microsoft.IC3.DataPlatform.json @@ -993,6 +993,48 @@ "CreatedDateTime": "2024-02-29T13:49:01.0804836Z", "WorkloadArea": "Teamwork and communications", "SubArea": "Calls and online meetings" - } + }, + { + "ChangeList": [ + { + "Id": "bb8eae43-f5ac-47a1-94b9-16492af7e7b1", + "ApiChange": "Resource", + "ChangedApiName": "administrativeUnitInfo", + "ChangeType": "Addition", + "Description": "Added the [administrativeUnitInfo](https://learn.microsoft.com/en-us/graph/api/resources/callRecords-administrativeUnitInfo?view=graph-rest-1.0) resource.", + "Target": "administrativeUnitInfo" + }, + { + "Id": "bb8eae43-f5ac-47a1-94b9-16492af7e7b1", + "ApiChange": "Property", + "ChangedApiName": "administrativeUnitInfos", + "ChangeType": "Addition", + "Description": "Added the **administrativeUnitInfos** property to the [participantBase](https://learn.microsoft.com/en-us/graph/api/resources/callRecords-participantBase?view=graph-rest-1.0) resource.", + "Target": "participantBase" + }, + { + "Id": "bb8eae43-f5ac-47a1-94b9-16492af7e7b1", + "ApiChange": "Property", + "ChangedApiName": "administrativeUnitInfos", + "ChangeType": "Addition", + "Description": "Added the **administrativeUnitInfos** property to the [participant](https://learn.microsoft.com/en-us/graph/api/resources/callRecords-participant?view=graph-rest-1.0) resource.", + "Target": "participant" + }, + { + "Id": "bb8eae43-f5ac-47a1-94b9-16492af7e7b1", + "ApiChange": "Property", + "ChangedApiName": "administrativeUnitInfos", + "ChangeType": "Addition", + "Description": "Added the **administrativeUnitInfos** property to the [organizer](https://learn.microsoft.com/en-us/graph/api/resources/callRecords-organizer?view=graph-rest-1.0) resource.", + "Target": "organizer" + } + ], + "Id": "bb8eae43-f5ac-47a1-94b9-16492af7e7b1", + "Cloud": "Prod", + "Version": "v1.0", + "CreatedDateTime": "2024-11-11T14:22:24.0228479Z", + "WorkloadArea": "Teamwork and communications", + "SubArea": "Calls and online meetings" + } ] } diff --git a/changelog/Microsoft.ZTNA.json b/changelog/Microsoft.ZTNA.json index fe15e484dcd..ec1af0fd55a 100644 --- a/changelog/Microsoft.ZTNA.json +++ b/changelog/Microsoft.ZTNA.json @@ -691,6 +691,32 @@ "CreatedDateTime": "2024-04-10T00:00:00.8805486Z", "WorkloadArea": "Identity and access", "SubArea": "Network access" + }, + { + "ChangeList": [ + { + "Id": "2f78a000-b6f6-425e-be85-84ec0e6941ed", + "ApiChange": "Resource", + "ChangedApiName": "fqdnFilteringRule", + "ChangeType": "Addition", + "Description": "Added the [fqdnFilteringRule](https://learn.microsoft.com/en-us/graph/api/resources/networkaccess-fqdnfilteringrule?view=graph-rest-beta) resource type.", + "Target": "fqdnFilteringRule" + }, + { + "Id": "2f78a000-b6f6-425e-be85-84ec0e6941ed", + "ApiChange": "Resource", + "ChangedApiName": "webCategoryFilteringRule", + "ChangeType": "Addition", + "Description": "Added the [webCategoryFilteringRule](https://learn.microsoft.com/en-us/graph/api/resources/networkaccess-webcategoryfilteringrule?view=graph-rest-beta) resource type.", + "Target": "webCategoryFilteringRule" + } + ], + "Id": "2f78a000-b6f6-425e-be85-84ec0e6941ed", + "Cloud": "Prod", + "Version": "beta", + "CreatedDateTime": "2024-11-11T00:00:00.8805486Z", + "WorkloadArea": "Identity and access", + "SubArea": "Network access" } ] -} \ No newline at end of file +} diff --git a/concepts/permissions-reference.md b/concepts/permissions-reference.md index d9e1459ba3d..0bc7c647f92 100644 --- a/concepts/permissions-reference.md +++ b/concepts/permissions-reference.md @@ -7,7 +7,7 @@ ms.localizationpriority: high ms.topic: reference ms.subservice: entra-applications ms.custom: graphiamtop20, scenarios:getting-started -ms.date: 11/04/2024 +ms.date: 11/11/2024 #Customer intent: As a developer, I want to learn more about the permissions available in Microsoft Graph, so that I understand the impact of granting specific permissions to my app. --- diff --git a/concepts/tutorial-lifecycle-workflows-set-employeeleavedatetime.md b/concepts/tutorial-lifecycle-workflows-set-employeeleavedatetime.md index ed427c32519..1c32d37aa2f 100644 --- a/concepts/tutorial-lifecycle-workflows-set-employeeleavedatetime.md +++ b/concepts/tutorial-lifecycle-workflows-set-employeeleavedatetime.md @@ -30,14 +30,16 @@ For delegated scenarios, the admin must also have the Global Administrator [Micr > [!NOTE] > This information is best updated via automation by using either an HR provisioning, Microsoft Entra Connect, or custom sync solution. For more information about this process, see [How to synchronize attributes for lifecycle workflows](/entra/id-governance/how-to-lifecycle-workflow-sync-attributes). -## Request +## Set the employeeLeaveDateTime property + +### Request The following example configures September 30, 2022 at 23:59 as the date and time when the user will leave the organization. # [HTTP](#tab/http) ```http -PATCH https://graph.microsoft.com/v1.0/users/df744d9e-2148-4922-88a8-633896c1e929 +PATCH https://graph.microsoft.com/v1.0/users/aaaaaaaa-bbbb-cccc-1111-222222222222 { "employeeLeaveDateTime": "2022-09-30T23:59:59Z" @@ -61,6 +63,18 @@ PATCH https://graph.microsoft.com/v1.0/users/df744d9e-2148-4922-88a8-633896c1e92 --- +## Reset the employeeLeveDateTime property back to null + +The request returns a `204 No Content` response code. + +```http +PATCH https://graph.microsoft.com/v1.0/users/aaaaaaaa-bbbb-cccc-1111-222222222222 + +{ + "employeeLeaveDateTime": null +} +``` + ## Related content - [Lifecycle Workflows API overview](/graph/api/resources/identitygovernance-lifecycleworkflows-overview) diff --git a/concepts/whats-new-overview.md b/concepts/whats-new-overview.md index 53e19bef641..db39bebc0ab 100644 --- a/concepts/whats-new-overview.md +++ b/concepts/whats-new-overview.md @@ -25,6 +25,10 @@ The Defender for Identity sensors management API enables you to create detailed ## November 2024: New in preview only +### Identity and access | Network access + +List, create, get, update, and delete [fqdnFilteringRule](/graph/api/resources/networkaccess-fqdnfilteringrule?view=graph-rest-beta&preserve-view=true) and [webCategoryFilteringRule](/graph/api/resources/networkaccess-webcategoryfilteringrule?view=graph-rest-beta&preserve-view=true) resources that are derived types of [filteringRule](/graph/api/resources/networkaccess-filteringrule?view=graph-rest-beta&preserve-view=true). + ### Teamwork and communications | Calls and online meetings Use the **allowedLobbyAdmitters** property on [onlineMeeting](/graph/api/resources/onlinemeeting?view=graph-rest-beta&preserve-view=true) to get or set the users who can admit from the lobby.