API tools faq
paste
Advertisement
Guest User

Oauth2Permission Scopes for MS Graph January 2017

a guest
Jan 31st, 2017
3,780
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 13.28 KB | None | 0 0
raw download clone embed print report
  1. For: Microsoft Graph (Application Id: 00000003-0000-0000-c000-000000000000)
  2. 1/31/2017
  3.  
  4. Scope,EntitlementId,ApplicationPermission,DelegatedPermission,Description
  5. Files.Read.Selected,5447fe39-cb82-4c1a-b977-520e67e724eb,FALSE,TRUE,(Preview) Allows the app to read files that the user selects. The app has access for several hours after the user selects a file.
  6. Files.ReadWrite.Selected,17dde5bd-8c17-420f-a486-969730c1b827,FALSE,TRUE,(Preview) Allows the app to read and write files that the user selects. The app has access for several hours after the user selects a file.
  7. Files.ReadWrite.AppFolder,8019c312-3263-48e6-825e-2b833497195b,FALSE,TRUE,"(Preview) Allows the app to read, create, update and delete files in the application's folder."
  8. Files.Read.All,01d4889c-1287-42c6-ac1f-5d1e02578ef6,TRUE,FALSE,(Preview) Allows the app to read all files in all site collections without a signed in user.
  9. Files.ReadWrite.All,75359482-378d-4052-8f01-80520e7db3cd,TRUE,FALSE,"(Preview) Allows the app to read, create, update and delete all files in all site collections without a signed in user. "
  10. Reports.Read.All,230c1aed-a721-4c5d-9cb4-a90514e508ef,TRUE,FALSE,Allows an app to read all service usage reports without a signed-in user. Services that provide usage reports include Office 365 and Azure Active Directory.
  11. Reports.Read.All,02e97553-ed7b-43d0-ab3c-f8bace0d040c,FALSE,TRUE,Allows an app to read all service usage reports on behalf of the signed-in user. Services that provide usage reports include Office 365 and Azure Active Directory.
  12. Sites.ReadWrite.All,89fe6a52-be36-487e-b7d8-d061c450a026,FALSE,TRUE,Allows the application to edit or delete documents and list items in all site collections on behalf of the signed-in user.
  13. Member.Read.Hidden,658aa5d8-239f-45c4-aa12-864f4fc7e490,TRUE,FALSE,Allows the app to read the memberships of hidden groups and administrative units without a signed-in user.
  14. Tasks.ReadWrite.Shared,c5ddf11b-c114-4886-8558-8a4e557cd52b,FALSE,TRUE,"Allows the app to create, read, update, and delete tasks a user has permissions to, including their own and shared tasks."
  15. Tasks.Read.Shared,88d21fd4-8e5a-4c32-b5e2-4a1c95f34f72,FALSE,TRUE,"Allows the app to read tasks a user has permissions to access, including their own and shared tasks."
  16. Contacts.ReadWrite.Shared,afb6c84b-06be-49af-80bb-8f3f77004eab,FALSE,TRUE,"Allows the app to create, read, update, and delete contacts a user has permissions to, including their own and shared contacts."
  17. Contacts.Read.Shared,242b9d9e-ed24-4d09-9a52-f43769beb9d4,FALSE,TRUE,"Allows the app to read contacts a user has permissions to access, including their own and shared contacts."
  18. Calendars.ReadWrite.Shared,12466101-c9b8-439a-8589-dd09ee67e8e9,FALSE,TRUE,"Allows the app to create, read, update and delete events in all calendars in the organization user has permissions to access. This includes delegate and shared calendars."
  19. Calendars.Read.Shared,2b9c4092-424d-4249-948d-b43879977640,FALSE,TRUE,"Allows the app to read events in all calendars that the user can access, including delegate and shared calendars."
  20. Mail.Send.Shared,a367ab51-6b49-43bf-a716-a1fb06d2a174,FALSE,TRUE,"Allows the app to send mail as the signed-in user, including sending on-behalf of others."
  21. Mail.ReadWrite.Shared,5df07973-7d5d-46ed-9847-1271055cbd51,FALSE,TRUE,"Allows the app to create, read, update, and delete mail a user has permission to access, including their own and shared mail. Does not include permission to send mail."
  22. Mail.Read.Shared,7b9103a5-4610-446b-9670-80643382c1fa,FALSE,TRUE,"Allows the app to read mail a user can access, including their own and shared mail."
  23. User.Read,e1fe6dd8-ba31-4d61-89e7-88639da4683d,FALSE,TRUE,"Allows users to sign-in to the app, and allows the app to read the profile of signed-in users. It also allows the app to read basic company information of signed-in users."
  24. User.ReadWrite,b4e74841-8e56-480b-be8b-910348b18b4c,FALSE,TRUE,Allows the app to read your profile. It also allows the app to update your profile information on your behalf.
  25. User.ReadBasic.All,b340eb25-3456-403f-be2f-af7a0d370277,FALSE,TRUE,"Allows the app to read a basic set of profile properties of other users in your organization on behalf of the signed-in user. This includes display name, first and last name, email address and photo."
  26. User.Read.All,a154be20-db9c-4678-8ab7-66f6cc099a59,FALSE,TRUE,"Allows the app to read the full set of profile properties, reports, and managers of other users in your organization, on behalf of the signed-in user."
  27. User.ReadWrite.All,204e0828-b5ca-4ad8-b9f3-f32a958e7cc4,FALSE,TRUE,"Allows the app to read and write the full set of profile properties, reports, and managers of other users in your organization, on behalf of the signed-in user."
  28. Group.Read.All,5f8c59db-677d-491f-a6b8-5f174b11ec1d,FALSE,TRUE,"Allows the app to list groups, and to read their properties and all group memberships on behalf of the signed-in user. Also allows the app to read calendar, conversations, files, and other group content for all groups the signed-in user can access. "
  29. Group.ReadWrite.All,4e46008b-f24c-477d-8fff-7bb4ec7aafe0,FALSE,TRUE,Allows the app to create groups and read all group properties and memberships on behalf of the signed-in user. Additionally allows group owners to manage their groups and allows group members to update group content.
  30. Directory.Read.All,06da0dbc-49e2-44d2-8312-53f166ab848a,FALSE,TRUE,"Allows the app to read data in your organization's directory, such as users, groups and apps."
  31. Directory.ReadWrite.All,c5366453-9fb0-48a5-a156-24f0c49a4b84,FALSE,TRUE,"Allows the app to read and write data in your organization's directory, such as users, and groups. It does not allow the app to delete users or groups, or reset user passwords."
  32. Directory.AccessAsUser.All,0e263e50-5827-48a4-b97c-d940288653c7,FALSE,TRUE,Allows the app to have the same access to information in the directory as the signed-in user.
  33. Mail.Read,570282fd-fa5c-430d-a7fd-fc8dc98a9dca,FALSE,TRUE,Allows the app to read email in user mailboxes.
  34. Mail.ReadWrite,024d486e-b451-40bb-833d-3e66d98c5c73,FALSE,TRUE,"Allows the app to create, read, update, and delete email in user mailboxes. Does not include permission to send mail. "
  35. Mail.Send,e383f46e-2787-4529-855e-0e479a3ffac0,FALSE,TRUE,Allows the app to send mail as users in the organization.
  36. Calendars.Read,465a38f9-76ea-45b9-9f34-9e8b0d4b0b42,FALSE,TRUE,Allows the app to read events in user calendars .
  37. Calendars.ReadWrite,1ec239c2-d7c9-4623-a91a-a9775856bb36,FALSE,TRUE,"Allows the app to create, read, update, and delete events in user calendars. "
  38. Contacts.Read,ff74d97f-43af-4b68-9f2a-b77ee6968c5d,FALSE,TRUE,Allows the app to read user contacts.
  39. Contacts.ReadWrite,d56682ec-c09e-4743-aaf4-1a3aac4caa21,FALSE,TRUE,"Allows the app to create, read, update, and delete user contacts. "
  40. Files.Read,10465720-29dd-4523-a11a-6a75c743c9d9,FALSE,TRUE,Allows the app to read the signed-in user's files.
  41. Files.ReadWrite,5c28f0bf-8a70-41f1-8ab2-9032436ddb65,FALSE,TRUE,"Allows the app to read, create, update and delete the signed-in user's files."
  42. Files.Read.All,df85f4d6-205c-4ac5-a5ea-6bf408dba283,FALSE,TRUE,Allows the app to read all files the signed-in user can access.
  43. Files.ReadWrite.All,863451e7-0667-486c-a5d6-d135439485f0,FALSE,TRUE,"Allows the app to read, create, update and delete all files the signed-in user can access."
  44. Sites.Read.All,205e70e5-aba6-4c52-a976-6d2d46c48043,FALSE,TRUE,Allows the application to read documents and list items in all site collections on behalf of the signed-in user
  45. openid,37f7f235-527c-4136-accd-4a02d197296e,FALSE,TRUE,Allows users to sign in to the app with their work or school accounts and allows the app to see basic user profile information.
  46. offline_access,7427e0e9-2fba-42fe-b0c0-848c9e6a8182,FALSE,TRUE,"Allows the app to read and update user data, even when they are not currently using the app."
  47. People.Read,ba47897c-39ec-4d83-8086-ee8256fa737d,FALSE,TRUE,"Allows the app to read a ranked list of relevant people of the signed-in user. The list includes local contacts, contacts from social networking, your organization's directory, and people from recent communications (such as email and Skype)."
  48. Notes.Create,9d822255-d64d-4b7a-afdb-833b9a97ed02,FALSE,TRUE,"Allows the app to read the titles of notebooks and sections and create new pages, notebooks and sections on behalf of the signed-in user."
  49. Notes.ReadWrite.CreatedByApp,ed68249d-017c-4df5-9113-e684c7f8760b,FALSE,TRUE,"Allows the app to read the titles of notebooks and sections, create new pages on behalf of the signed-in user. Also allows the app to read and update pages created by the app."
  50. Notes.Read,371361e4-b9e2-4a3f-8315-2a301a3b0a3d,FALSE,TRUE,Allows the app to view the titles of OneNote notebooks and sections and to read all pages on behalf of the signed-in user. It cannot view password protected sections.
  51. Notes.ReadWrite,615e26af-c38a-4150-ae3e-c3b0d4cb1d6a,FALSE,TRUE,"Allows the app to read the titles of notebooks and sections, read all pages, write all pages and create new pages on behalf of the signed-in user. It cannot access password protected sections."
  52. Notes.Read.All,dfabfca6-ee36-4db2-8208-7a28381419b3,FALSE,TRUE,Allows the app to read the contents of all notebooks and sections that the signed-in user can access. It cannot read password protected sections.
  53. Notes.ReadWrite.All,64ac0503-b4fa-45d9-b544-71a463f05da0,FALSE,TRUE,Allows the app to read and write the contents of all notebooks and sections that the signed-in user can access. It cannot access password protected sections.
  54. Tasks.Read,f45671fb-e0fe-4b4b-be20-3d3ce43f1bcb,FALSE,TRUE,Allows the app to read user tasks
  55. Tasks.ReadWrite,2219042f-cab5-40cc-b0d2-16b1540b4c5f,FALSE,TRUE,"Allows the app to create, read, update and delete tasks and plans (and tasks in them), that are assigned to or shared with the signed-in user."
  56. email,64a6cdd6-aab1-4aaf-94b8-3cc8405e90d0,FALSE,TRUE,Allows the app to read your users' primary email address
  57. profile,14dad69e-099b-42c9-810b-d002981feec1,FALSE,TRUE,"Allows the app to see your users' basic profile (name, picture, user name)"
  58. Mail.Read,810c84a8-4a9e-49e6-bf7d-12d183f40d01,TRUE,FALSE,Allows the app to read mail in all mailboxes without a signed-in user.
  59. Mail.ReadWrite,e2a3a72e-5f79-4c64-b1b1-878b674786c9,TRUE,FALSE,"Allows the app to create, read, update, and delete mail in all mailboxes without a signed-in user. Does not include permission to send mail."
  60. Mail.Send,b633e1c5-b582-4048-a93e-9f11b44c7e96,TRUE,FALSE,Allows the app to send mail as any user without a signed-in user.
  61. Calendars.Read,798ee544-9d2d-430c-a058-570e29e34338,TRUE,FALSE,Allows the app to read events of all calendars without a signed-in user.
  62. Calendars.ReadWrite,ef54d2bf-783f-4e0f-bca1-3210c0444d99,TRUE,FALSE,"Allows the app to create, read, update, and delete events of all calendars without a signed-in user."
  63. Contacts.Read,089fe4d0-434a-44c5-8827-41ba8a0b17f5,TRUE,FALSE,Allows the app to read all contacts in all mailboxes without a signed-in user.
  64. Contacts.ReadWrite,6918b873-d17a-4dc1-b314-35f528134491,TRUE,FALSE,"Allows the app to create, read, update, and delete all contacts in all mailboxes without a signed-in user."
  65. Group.Read.All,5b567255-7703-4780-807c-7be8301ae99b,TRUE,FALSE,"Allows the app to read group properties and memberships, and read the calendar and conversations for all groups, without a signed-in user."
  66. Group.ReadWrite.All,62a82d76-70ea-41e2-9197-370581804d09,TRUE,FALSE,"Allows the app to create groups, read all group properties and memberships, update group properties and memberships, and delete groups. Also allows the app to read and write group calendar and conversations. All of these operations can be performed by the app without a signed-in user."
  67. Directory.Read.All,7ab1d382-f21e-4acd-a863-ba3e13f7da61,TRUE,FALSE,"Allows the app to read data in your organization's directory, such as users, groups and apps, without a signed-in user."
  68. Directory.ReadWrite.All,19dbc75e-c2e2-444c-a770-ec69d8559fc7,TRUE,FALSE,"Allows the app to read and write data in your organization's directory, such as users, and groups, without a signed-in user. Does not allow user or group deletion."
  69. Device.ReadWrite.All,1138cb37-bd11-4084-a2b7-9f71582aeddb,TRUE,FALSE,"Allows the app to read and write all device properties without a signed in user. Does not allow device creation, device deletion or update of device alternative security identifiers."
  70. User.Read.All,df021288-bdef-4463-88db-98f22de89214,TRUE,FALSE,Allows the app to read user profiles without a signed in user.
  71. User.ReadWrite.All,741f803b-c850-494e-b5df-cde7c675a1ca,TRUE,FALSE,Allows the app to read and update user profiles without a signed in user.
  72. MailboxSettings.ReadWrite,818c620a-27a9-40bd-a6a5-d96f7d610b4b,FALSE,TRUE,"Allows the app to create, read, update, and delete user's mailbox settings. Does not include permission to send mail."
  73. MailboxSettings.ReadWrite,6931bccd-447a-43d1-b442-00a195474933,TRUE,FALSE,"Allows the app to create, read, update, and delete user's mailbox settings without a signed-in user. Does not include permission to send mail."
  74. IdentityRiskEvent.Read.All,8f6a01e7-0391-4ee5-aa22-a3af122cef27,FALSE,TRUE,Allows the app to read identity risk event information for all users in your organization on behalf of the signed-in user.
  75. IdentityRiskEvent.Read.All,6e472fd1-ad78-48da-a0f0-97ab2c6b769e,TRUE,FALSE,Allows the app to read the identity risk event information for your organization without a signed in user.
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!