@@ -41,8 +41,7 @@ if (-not $applicationName) {
4141if (-not $workloadName ) {
4242 $workloadName = Read-Host " Enter your workload name"
4343}
44- while (-not ($workloadName -match " ^Org\.[^.]+$"
45- {
44+ while (-not ($workloadName -match " ^Org\.[^.]+$"
4645 $workloadName = Read-Host " Workload name must start with Org. and contain only 2 segments!. please re-enter your workload name"
4746}
4847if (-not $tenantId ) {
@@ -74,172 +73,172 @@ $randomString = -join ((65..90) + (97..122) | Get-Random -Count $length | ForEac
7473$applicationIdUri = " api://localdevinstance/" + $tenantId + " /" + $workloadName + " /" + $randomString
7574
7675$application = @ {
77- displayName = $applicationName
78- signInAudience = " AzureADMultipleOrgs"
79- optionalClaims = @ {
76+ displayName = $applicationName
77+ signInAudience = " AzureADMultipleOrgs"
78+ optionalClaims = @ {
8079 accessToken = @ (
8180 @ {
8281 essential = $false
83- name = " idtyp"
82+ name = " idtyp"
8483 }
8584 )
8685 }
87- spa = @ {
86+ spa = @ {
8887 redirectUris = @ (
8988 $redirectUri
9089 )
9190 }
92- identifierUris = @ ($applicationIdUri )
93- api = @ {
94- oauth2PermissionScopes = @ ( # Scopes
91+ identifierUris = @ ($applicationIdUri )
92+ api = @ {
93+ oauth2PermissionScopes = @ ( # Scopes
9594 @ {
9695 adminConsentDisplayName = " FabricWorkloadControl"
9796 adminConsentDescription = " FabricWorkloadControl"
98- value = " FabricWorkloadControl"
99- id = $FabricWorkloadControlGuid
100- isEnabled = $true
101- type = " User"
97+ value = " FabricWorkloadControl"
98+ id = $FabricWorkloadControlGuid
99+ isEnabled = $true
100+ type = " User"
102101 },
103102 @ {
104103 adminConsentDisplayName = " Item1.Read.All"
105104 adminConsentDescription = " Item1.Read.All"
106- value = " Item1.Read.All"
107- id = $Item1ReadAllGuid
108- isEnabled = $true
109- type = " User"
105+ value = " Item1.Read.All"
106+ id = $Item1ReadAllGuid
107+ isEnabled = $true
108+ type = " User"
110109 },
111110 @ {
112111 adminConsentDisplayName = " Item1.ReadWrite.All"
113112 adminConsentDescription = " Item1.ReadWrite.All"
114- value = " Item1.ReadWrite.All"
115- id = $Item1ReadWriteAllGuid
116- isEnabled = $true
117- type = " User"
113+ value = " Item1.ReadWrite.All"
114+ id = $Item1ReadWriteAllGuid
115+ isEnabled = $true
116+ type = " User"
118117 },
119118 @ {
120119 adminConsentDisplayName = " FabricLakehouse.Read.All"
121120 adminConsentDescription = " FabricLakehouse.Read.All"
122- value = " FabricLakehouse.Read.All"
123- id = $FabricLakehouseReadAllGuid
124- isEnabled = $true
125- type = " User"
121+ value = " FabricLakehouse.Read.All"
122+ id = $FabricLakehouseReadAllGuid
123+ isEnabled = $true
124+ type = " User"
126125 },
127126 @ {
128127 adminConsentDisplayName = " FabricLakehouse.ReadWrite.All"
129128 adminConsentDescription = " FabricLakehouse.ReadWrite.All"
130- value = " FabricLakehouse.ReadWrite.All"
131- id = $FabricLakehouseReadWriteAllGuid
132- isEnabled = $true
133- type = " User"
129+ value = " FabricLakehouse.ReadWrite.All"
130+ id = $FabricLakehouseReadWriteAllGuid
131+ isEnabled = $true
132+ type = " User"
134133 },
135134 @ {
136135 adminConsentDisplayName = " KQLDatabase.ReadWrite.All"
137136 adminConsentDescription = " KQLDatabase.ReadWrite.All"
138- value = " KQLDatabase.ReadWrite.All"
139- id = $KQLDatabaseReadWriteAllGuid
140- isEnabled = $true
141- type = " User"
137+ value = " KQLDatabase.ReadWrite.All"
138+ id = $KQLDatabaseReadWriteAllGuid
139+ isEnabled = $true
140+ type = " User"
142141 },
143142 @ {
144143 adminConsentDisplayName = " FabricEventhouse.Read.All"
145144 adminConsentDescription = " FabricEventhouse.Read.All"
146- value = " FabricEventhouse.Read.All"
147- id = $FabricEventhouseReadAllGuid
148- isEnabled = $true
149- type = " User"
145+ value = " FabricEventhouse.Read.All"
146+ id = $FabricEventhouseReadAllGuid
147+ isEnabled = $true
148+ type = " User"
150149 }
151150 )
152151 preAuthorizedApplications = @ ( # Preauthorize
153152 @ {
154- appId = " 871c010f-5e61-4fb1-83ac-98610a7e9110"
153+ appId = " 871c010f-5e61-4fb1-83ac-98610a7e9110"
155154 delegatedPermissionIds = @ (
156155 $Item1ReadAllGuid , $Item1ReadWriteAllGuid , $FabricLakehouseReadAllGuid , $FabricLakehouseReadWriteAllGuid , $KQLDatabaseReadWriteAllGuid , $FabricEventhouseReadAllGuid
157156 )
158157 },
159- @ {
160- appId = " 00000009-0000-0000-c000-000000000000"
158+ @ {
159+ appId = " 00000009-0000-0000-c000-000000000000"
161160 delegatedPermissionIds = @ (
162161 $FabricWorkloadControlGuid
163162 )
164163 },
165164 @ {
166- appId = " d2450708-699c-41e3-8077-b0c8341509aa"
165+ appId = " d2450708-699c-41e3-8077-b0c8341509aa"
167166 delegatedPermissionIds = @ (
168167 $FabricWorkloadControlGuid
169168 )
170169 }
171170 )
172171 }
173- requiredResourceAccess = @ ( # API Permissions
174- @ {
175- resourceAppId = " e406a681-f3d4-42a8-90b6-c2b029497af1" # Azure Storage
176- resourceAccess = @ (
177- @ {
178- id = " 03e0da56-190b-40ad-a80c-ea378c433f7f" # user_impersonation
179- type = " Scope"
180- }
181- )
182- },
183- @ {
184- resourceAppId = " 2746ea77-4702-4b45-80ca-3c97e680e8b7" # Azure Data Explorer
185- resourceAccess = @ (
186- @ {
187- id = " 00d678f0-da44-4b12-a6d6-c98bcfd1c5fe" # user_impersonation
188- type = " Scope"
189- }
190- )
191- },
192- @ {
193- resourceAppId = " 00000003-0000-0000-c000-000000000000" # Graph
194- resourceAccess = @ (
195- @ {
196- id = " e1fe6dd8-ba31-4d61-89e7-88639da4683d" # User.Read
197- type = " Scope"
198- }
199- )
200- },
201- @ {
202- resourceAppId = " 00000009-0000-0000-c000-000000000000" # PBI Service
203- resourceAccess = @ (
204- @ {
205- id = " 7ba630b9-8110-4e27-8d17-81e5f2218787" # Fabric.Extend
206- type = " Scope"
207- },
208- @ {
209- id = " b2f1b2fa-f35c-407c-979c-a858a808ba85" # Workspace.Read.All
210- type = " Scope"
211- },
212- @ {
213- id = " caf40b1a-f10e-4da1-86e4-5fda17eb2b07" # Item.Execute.ALL
214- type = " Scope"
215- },
216- @ {
217- id = " d2bc95fc-440e-4b0e-bafd-97182de7aef5" # Item.Read.All
218- type = " Scope"
219- },
220- @ {
221- id = " 7a27a256-301d-4359-b77b-c2b759d2e362" # Item.ReadWrite.All
222- type = " Scope"
223- },
224- @ {
225- id = " 02e8d710-956c-4760-b996-2e83935c2cf5" # Item.Reshare.All
226- type = " Scope"
227- },
228- @ {
229- id = " 13060bfd-9305-4ec6-8388-8916580f4fa9" # Lakehouse.Read.All
230- type = " Scope"
231- },
232- @ {
233- id = " cd1718e4-3e09-4381-a6e1-183e245f8613" # Eventhouse.Read.All
234- type = " Scope"
235- },
236- @ {
237- id = " 726667b1-01a6-4be4-b04c-e95eae4023a8" # KQLDatabase.ReadWrite.All
238- type = " Scope"
239- }
240- )
241- }
242- )
172+ requiredResourceAccess = @ ( # API Permissions
173+ @ {
174+ resourceAppId = " e406a681-f3d4-42a8-90b6-c2b029497af1" # Azure Storage
175+ resourceAccess = @ (
176+ @ {
177+ id = " 03e0da56-190b-40ad-a80c-ea378c433f7f" # user_impersonation
178+ type = " Scope"
179+ }
180+ )
181+ },
182+ @ {
183+ resourceAppId = " 2746ea77-4702-4b45-80ca-3c97e680e8b7" # Azure Data Explorer
184+ resourceAccess = @ (
185+ @ {
186+ id = " 00d678f0-da44-4b12-a6d6-c98bcfd1c5fe" # user_impersonation
187+ type = " Scope"
188+ }
189+ )
190+ },
191+ @ {
192+ resourceAppId = " 00000003-0000-0000-c000-000000000000" # Graph
193+ resourceAccess = @ (
194+ @ {
195+ id = " e1fe6dd8-ba31-4d61-89e7-88639da4683d" # User.Read
196+ type = " Scope"
197+ }
198+ )
199+ },
200+ @ {
201+ resourceAppId = " 00000009-0000-0000-c000-000000000000" # PBI Service
202+ resourceAccess = @ (
203+ @ {
204+ id = " 7ba630b9-8110-4e27-8d17-81e5f2218787" # Fabric.Extend
205+ type = " Scope"
206+ },
207+ @ {
208+ id = " b2f1b2fa-f35c-407c-979c-a858a808ba85" # Workspace.Read.All
209+ type = " Scope"
210+ },
211+ @ {
212+ id = " caf40b1a-f10e-4da1-86e4-5fda17eb2b07" # Item.Execute.ALL
213+ type = " Scope"
214+ },
215+ @ {
216+ id = " d2bc95fc-440e-4b0e-bafd-97182de7aef5" # Item.Read.All
217+ type = " Scope"
218+ },
219+ @ {
220+ id = " 7a27a256-301d-4359-b77b-c2b759d2e362" # Item.ReadWrite.All
221+ type = " Scope"
222+ },
223+ @ {
224+ id = " 02e8d710-956c-4760-b996-2e83935c2cf5" # Item.Reshare.All
225+ type = " Scope"
226+ },
227+ @ {
228+ id = " 13060bfd-9305-4ec6-8388-8916580f4fa9" # Lakehouse.Read.All
229+ type = " Scope"
230+ },
231+ @ {
232+ id = " cd1718e4-3e09-4381-a6e1-183e245f8613" # Eventhouse.Read.All
233+ type = " Scope"
234+ },
235+ @ {
236+ id = " 726667b1-01a6-4be4-b04c-e95eae4023a8" # KQLDatabase.ReadWrite.All
237+ type = " Scope"
238+ }
239+ )
240+ }
241+ )
243242}
244243
245244# Convert to valid json format (escape the '"')
@@ -268,11 +267,11 @@ $startUtcDateTimeString = $startUtcDateTimeString.ToString('u') -replace ' ', 'T
268267$endUtcDateTimeString = $endUtcDateTimeString.ToString (' u' -replace ' ' , ' T'
269268
270269$passwordCreds = @ {
271- passwordCredential = @ {
272- displayName = " SampleSecret"
273- endDateTime = $endUtcDateTimeString
274- startDateTime = $startUtcDateTimeString
275- }
270+ passwordCredential = @ {
271+ displayName = " SampleSecret"
272+ endDateTime = $endUtcDateTimeString
273+ startDateTime = $startUtcDateTimeString
274+ }
276275}
277276
278277# Convert to valid json format (escape the '"')
0 commit comments