Skip to content

Commit

Permalink
moev ahead with the established pattern anyway
Browse files Browse the repository at this point in the history
  • Loading branch information
@yugangw-msft
yugangw-msft committed Mar 5, 2019
1 parent 1a5f6ad commit 590f27f
Showing 1 changed file with 210 additions and 14 deletions.
224 changes: 210 additions & 14 deletions specification/graphrbac/data-plane/Microsoft.GraphRbac/stable/1.6/graphrbac.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -387,7 +387,7 @@
"in": "body",
"required": true,
"schema": {
"$ref": "#/definitions/Application"
"$ref": "#/definitions/ApplicationUpdateParameters"
},
"description": "Parameters to update an existing application."
},
Expand Down Expand Up @@ -1304,7 +1304,7 @@
"in": "body",
"required": true,
"schema": {
"$ref": "#/definitions/ServicePrincipal"
"$ref": "#/definitions/ServicePrincipalUpdateParameters"
},
"description": "Parameters to update a service principal."
},
Expand Down Expand Up @@ -2748,15 +2748,9 @@
],
"description": "Specifies an OAuth 2.0 permission scope or an app role that an application requires. The resourceAccess property of the RequiredResourceAccess type is a collection of ResourceAccess."
},

"ApplicationBase": {
"type": "object",
"allOf": [
{
"$ref": "#/definitions/DirectoryObject"
}
],
"description": "Common properties used by GET, POST and PATCH",
"description": "Active Directive Application common properties shared among GET, POST and PATCH",
"properties": {
"allowGuestsSignIn": {
"description": "A property on the application to indicate if the application accepts other IDPs or not or partially accepts.",
Expand Down Expand Up @@ -2939,13 +2933,165 @@
"type": "object",
"allOf": [
{
"$ref": "#/definitions/ApplicationBase"
"$ref": "#/definitions/DirectoryObject"
}
],
"properties": {
"appId": {
"type": "string",
"description": "The application ID."
},
"allowGuestsSignIn": {
"description": "A property on the application to indicate if the application accepts other IDPs or not or partially accepts.",
"type": "boolean"
},
"allowPassthroughUsers": {
"description": "Indicates that the application supports pass through users who have no presence in the resource tenant.",
"type": "boolean"
},
"appLogoUrl": {
"description": "The url for the application logo image stored in a CDN.",
"type": "string"
},
"appRoles": {
"type": "array",
"items": {
"$ref": "#/definitions/AppRole"
},
"description": "The collection of application roles that an application may declare. These roles can be assigned to users, groups or service principals."
},
"appPermissions": {
"type": "array",
"items": {
"type": "string"
},
"description": "The application permissions."
},
"availableToOtherTenants": {
"type": "boolean",
"description": "Whether the application is available to other tenants."
},
"displayName": {
"type": "string",
"description": "The display name of the application."
},
"errorUrl": {
"description": "A URL provided by the author of the application to report errors when using the application.",
"type": "string"
},
"homepage": {
"type": "string",
"description": "The home page of the application."
},
"identifierUris": {
"type": "array",
"items": {
"type": "string"
},
"description": "A collection of URIs for the application."
},
"informationalUrls": {
"$ref": "#/definitions/InformationalUrl",
"description": "urls with more informations of the application."
},
"isDeviceOnlyAuthSupported": {
"description": "Specifies whether this application supports device authentication without a user. The default is false.",
"type": "boolean"
},
"keyCredentials": {
"type": "array",
"items": {
"$ref": "#/definitions/KeyCredential"
},
"description": "A collection of KeyCredential objects."
},
"knownClientApplications": {
"description": "Client applications that are tied to this resource application. Consent to any of the known client applications will result in implicit consent to the resource application through a combined consent dialog (showing the OAuth permission scopes required by the client and the resource).",
"type": "array",
"items": {
"type": "string"
}
},
"logoutUrl": {
"type": "string",
"description": "the url of the logout page"
},
"oauth2AllowImplicitFlow": {
"type": "boolean",
"description": "Whether to allow implicit grant flow for OAuth2"
},
"oauth2AllowUrlPathMatching": {
"description": "Specifies whether during a token Request Azure AD will allow path matching of the redirect URI against the applications collection of replyURLs. The default is false.",
"type": "boolean"
},
"oauth2Permissions": {
"description": "The collection of OAuth 2.0 permission scopes that the web API (resource) application exposes to client applications. These permission scopes may be granted to client applications during consent.",
"type": "array",
"items": {
"$ref": "#/definitions/OAuth2Permission"
}
},
"oauth2RequirePostResponse": {
"description": "Specifies whether, as part of OAuth 2.0 token requests, Azure AD will allow POST requests, as opposed to GET requests. The default is false, which specifies that only GET requests will be allowed.",
"type": "boolean"
},
"orgRestrictions": {
"description": "A list of tenants allowed to access application.",
"type": "array",
"items": {
"type": "string"
}
},
"optionalClaims": {
"$ref": "#/definitions/OptionalClaims"
},
"passwordCredentials": {
"type": "array",
"items": {
"$ref": "#/definitions/PasswordCredential"
},
"description": "A collection of PasswordCredential objects"
},
"preAuthorizedApplications": {
"type": "array",
"items": {
"$ref": "#/definitions/PreAuthorizedApplication"
},
"description": "list of pre-authorizaed applications."
},
"publicClient": {
"description": "Specifies whether this application is a public client (such as an installed application running on a mobile device). Default is false.",
"type": "boolean"
},
"publisherDomain": {
"description": "Reliable domain which can be used to identify an application.",
"type": "string"
},
"replyUrls": {
"type": "array",
"items": {
"type": "string"
},
"description": "A collection of reply URLs for the application."
},
"requiredResourceAccess": {
"type": "array",
"items": {
"$ref": "#/definitions/RequiredResourceAccess"
},
"description": "Specifies resources that this application requires access to and the set of OAuth permission scopes and application roles that it needs under each of those resources. This pre-configuration of required resource access drives the consent experience."
},
"samlMetadataUrl": {
"description": "The URL to the SAML metadata for the application.",
"type": "string"
},
"signInAudience": {
"description": "Audience for signing in to the application (AzureADMyOrganizatio, AzureADAllorganizations, AzureADAndMicrosofAccounts).",
"type": "string"
},
"wwwHomepage": {
"description": "The primary Web page.",
"type": "string"
}
},
"description": "Active Directory application information."
Expand Down Expand Up @@ -3251,20 +3397,71 @@
},
"description": "Server response for IsMemberOf API call"
},
"ServicePrincipalBase": {
"type": "object",
"description": "Active Directory service principal common perperties shared among GET, POST and PATCH",
"properties": {
"keyCredentials": {
"description": "The collection of key credentials associated with the service principal.",
"type": "array",
"items": {
"$ref": "#/definitions/KeyCredential"
}
},
"passwordCredentials": {
"description": "The collection of password credentials associated with the service principal.",
"type": "array",
"items": {
"$ref": "#/definitions/PasswordCredential"
}
},
"servicePrincipalType": {
"type": "string",
"description": "the type of the servie principal"
},
"accountEnabled": {
"description": "whether or not the service principal account is enabled",
"type": "string"
},
"tags": {
"description": "Optional list of tags that you can apply to your service principals. Not nullable.",
"type": "array",
"items": {
"type": "string"
}
}
}
},
"ServicePrincipalCreateParameters": {
"type": "object",
"allOf": [
{
"$ref": "#/definitions/ServicePrincipal"
"$ref": "#/definitions/ServicePrincipalBase"
}
],
"properties": {
"appId": {
"type": "string",
"description": "The application ID."
}
},
"required": [
"appId"
],
"description": "Request parameters for creating a new service principal."
},
"ServicePrincipalUpdateParameters": {
"type": "object",
"allOf": [
{
"$ref": "#/definitions/ServicePrincipalBase"
}
],
"description": "Request parameters for update an existing service principal."
},
"ServicePrincipal": {
"type": "object",
"description": "Active Directory service principal information.",
"allOf": [
{
"$ref": "#/definitions/DirectoryObject"
Expand Down Expand Up @@ -3373,7 +3570,7 @@
},
"servicePrincipalType": {
"type": "string",
"description": "the type of the servie principal"
"description": "the type of the servie principal"
},
"tags": {
"description": "Optional list of tags that you can apply to your service principals. Not nullable.",
Expand All @@ -3382,8 +3579,7 @@
"type": "string"
}
}
},
"description": "Active Directory service principal information."
}
},
"ServicePrincipalListResult": {
"type": "object",
Expand Down

0 comments on commit 590f27f

Please sign in to comment.