Weekly Permissions sync 2025-06-17 (#1166)

marabooy · web-flow · commit d9ed6958fce9 · 2025-06-17T11:39:44.000+03:00
diff --git a/permissions/new/ProvisioningInfo.json b/permissions/new/ProvisioningInfo.json
@@ -6678,6 +6678,44 @@
         "resourceAppId": ""
       }
     ],
+    "MS-NotificationDeliveryStatus.Read": [
+      {
+        "id": "",
+        "scheme": "DelegatedWork",
+        "environment": "",
+        "isHidden": true,
+        "isEnabled": true,
+        "resourceAppId": "3138fe80-4087-4b04-80a6-8866c738028a"
+      }
+    ],
+    "MS-NotificationDeliveryStatus.Read.All": [
+      {
+        "id": "",
+        "scheme": "DelegatedWork",
+        "environment": "",
+        "isHidden": true,
+        "isEnabled": true,
+        "resourceAppId": "3138fe80-4087-4b04-80a6-8866c738028a"
+      },
+      {
+        "id": "",
+        "scheme": "Application",
+        "environment": "",
+        "isHidden": true,
+        "isEnabled": true,
+        "resourceAppId": "3138fe80-4087-4b04-80a6-8866c738028a"
+      }
+    ],
+    "MS-NotificationDeliveryStatus.ReadWrite.All": [
+      {
+        "id": "",
+        "scheme": "Application",
+        "environment": "",
+        "isHidden": true,
+        "isEnabled": true,
+        "resourceAppId": "3138fe80-4087-4b04-80a6-8866c738028a"
+      }
+    ],
     "LearningAssignedCourse.Read": [
       {
         "id": "ac08cdae-e845-41db-adf9-5899a0ec9ef6",
@@ -11539,7 +11577,7 @@
         "id": "a4633e44-d355-4474-99df-8c2de6b0e39e",
         "scheme": "DelegatedWork",
         "environment": "public",
-        "isHidden": true,
+        "isHidden": false,
         "isEnabled": true,
         "resourceAppId": "7c99d979-3b9c-4342-97dd-3239678fb300"
       }
@@ -11557,7 +11595,7 @@
         "id": "a42e3c42-b31e-4919-b699-696dca5dc9e7",
         "scheme": "DelegatedWork",
         "environment": "public;FairFax",
-        "isHidden": true,
+        "isHidden": false,
         "isEnabled": true,
         "resourceAppId": ""
       }
@@ -15119,7 +15157,7 @@
         "id": "1aeb73ce-68d7-49b7-913a-eedc80844551",
         "scheme": "DelegatedWork",
         "environment": "public",
-        "isHidden": true,
+        "isHidden": false,
         "isEnabled": true,
         "resourceAppId": "7c99d979-3b9c-4342-97dd-3239678fb300"
       },
@@ -15137,7 +15175,7 @@
         "id": "8b377c27-ea19-4863-a948-8a8588c8f2c3",
         "scheme": "DelegatedWork",
         "environment": "public",
-        "isHidden": true,
+        "isHidden": false,
         "isEnabled": true,
         "resourceAppId": "7c99d979-3b9c-4342-97dd-3239678fb300"
       },
diff --git a/permissions/new/permissions.json b/permissions/new/permissions.json
@@ -40096,6 +40096,192 @@
         "ownerSecurityGroup": "IdentityReq"
       }
     },
+    "SensitivityLabel.Evaluate": {
+      "authorizationType": "oAuth2",
+      "schemes": {
+        "DelegatedWork": {
+          "adminDisplayName": "Evaluate labels user scope.",
+          "adminDescription": "Allows the app to evaluate all sensitivity label.",
+          "userDisplayName": "Evaluate labels user scope",
+          "userDescription": "Evaluate labels tenant scope, on your behalf.",
+          "requiresAdminConsent": true,
+          "privilegeLevel": 4
+        },
+        "Application": {
+          "adminDisplayName": "Evaluate labels user scope.",
+          "adminDescription": "Allows the app to evaluate all sensitivity label.",
+          "requiresAdminConsent": true,
+          "privilegeLevel": 4
+        }
+      },
+      "pathSets": [
+        {
+          "schemeKeys": [
+            "DelegatedWork",
+            "Application"
+          ],
+          "methods": [
+            "GET"
+          ],
+          "paths": {
+            "/security/dataSecurityAndGovernance/sensitivityLabels/computeInheritance": "",
+            "/security/dataSecurityAndGovernance/sensitivityLabels/computeInheritance(labelIds={labelIds},locale={locale},contentFormats={contentFormats})": ""
+          }
+        },
+        {
+          "schemeKeys": [
+            "DelegatedWork",
+            "Application"
+          ],
+          "methods": [
+            "POST"
+          ],
+          "paths": {
+            "/security/dataSecurityAndGovernance/sensitivityLabels/computeRightsAndInheritance": ""
+          }
+        }
+      ],
+      "ownerInfo": {
+        "ownerSecurityGroup": "DcsMsGraphSchemaAdmins"
+      }
+    },
+    "SensitivityLabel.Evaluate.All": {
+      "authorizationType": "oAuth2",
+      "schemes": {
+        "DelegatedWork": {
+          "adminDisplayName": "Evaluate labels tenant scope.",
+          "adminDescription": "Allows the app to evaluate all sensitivity label.",
+          "userDisplayName": "Evaluate labels tenant scope",
+          "userDescription": "Evaluate labels tenant scope, on your behalf.",
+          "requiresAdminConsent": true,
+          "privilegeLevel": 4
+        },
+        "Application": {
+          "adminDisplayName": "Evaluate labels tenant scope.",
+          "adminDescription": "Allows the app to evaluate all sensitivity label.",
+          "requiresAdminConsent": true,
+          "privilegeLevel": 4
+        }
+      },
+      "pathSets": [
+        {
+          "schemeKeys": [
+            "DelegatedWork",
+            "Application"
+          ],
+          "methods": [
+            "POST"
+          ],
+          "paths": {
+            "/informationProtection/sensitivityLabels/evaluate": "least=Application,DelegatedWork"
+          }
+        },
+        {
+          "schemeKeys": [
+            "DelegatedWork",
+            "Application"
+          ],
+          "methods": [
+            "POST"
+          ],
+          "paths": {
+            "/security/dataSecurityAndGovernance/sensitivityLabels/computeRightsAndInheritance": "least=DelegatedWork,Application"
+          }
+        },
+        {
+          "schemeKeys": [
+            "DelegatedWork",
+            "Application"
+          ],
+          "methods": [
+            "GET"
+          ],
+          "paths": {
+            "/security/dataSecurityAndGovernance/sensitivityLabels/computeInheritance": "least=DelegatedWork,Application",
+            "/security/dataSecurityAndGovernance/sensitivityLabels/computeInheritance(labelIds={labelIds},locale={locale},contentFormats={contentFormats})": "least=DelegatedWork,Application"
+          }
+        }
+      ],
+      "ownerInfo": {
+        "ownerSecurityGroup": "DcsMsGraphSchemaAdmins"
+      }
+    },
+    "SensitivityLabel.Read": {
+      "authorizationType": "oAuth2",
+      "schemes": {
+        "DelegatedWork": {
+          "adminDisplayName": "Get labels user scope.",
+          "adminDescription": "Allows the app to get sensitivity labels.",
+          "userDisplayName": "Get labels user scope",
+          "userDescription": "Get labels on behalf of user.",
+          "requiresAdminConsent": true,
+          "privilegeLevel": 1
+        },
+        "Application": {
+          "adminDisplayName": "Get labels application scope.",
+          "adminDescription": "Allows the app to get sensitivity labels.",
+          "requiresAdminConsent": true,
+          "privilegeLevel": 2
+        }
+      },
+      "pathSets": [
+        {
+          "schemeKeys": [
+            "DelegatedWork",
+            "Application"
+          ],
+          "methods": [
+            "GET"
+          ],
+          "paths": {
+            "/security/dataSecurityAndGovernance/sensitivityLabels": "least=DelegatedWork,Application",
+            "/security/dataSecurityAndGovernance/sensitivityLabels/{id}": "least=DelegatedWork,Application",
+            "/security/dataSecurityAndGovernance/sensitivityLabels/{id}/rights": "least=DelegatedWork,Application"
+          }
+        }
+      ],
+      "ownerInfo": {
+        "ownerSecurityGroup": "DcsMsGraphSchemaAdmins"
+      }
+    },
+    "SensitivityLabels.Read.All": {
+      "authorizationType": "oAuth2",
+      "schemes": {
+        "DelegatedWork": {
+          "adminDisplayName": "Get labels app scope.",
+          "adminDescription": "Allows the app to get sensitivity labels.",
+          "userDisplayName": "Get labels on behalf of user",
+          "userDescription": "Get labels on behalf of user.",
+          "requiresAdminConsent": true,
+          "privilegeLevel": 1
+        },
+        "Application": {
+          "adminDisplayName": "Get labels app scope.",
+          "adminDescription": "Allows the app to get sensitivity labels.",
+          "requiresAdminConsent": true,
+          "privilegeLevel": 2
+        }
+      },
+      "pathSets": [
+        {
+          "schemeKeys": [
+            "DelegatedWork",
+            "Application"
+          ],
+          "methods": [
+            "GET"
+          ],
+          "paths": {
+            "/security/dataSecurityAndGovernance/sensitivityLabels": "",
+            "/security/dataSecurityAndGovernance/sensitivityLabels/{id}": "",
+            "/security/dataSecurityAndGovernance/sensitivityLabels/{id}/rights": ""
+          }
+        }
+      ],
+      "ownerInfo": {
+        "ownerSecurityGroup": "DcsMsGraphSchemaAdmins"
+      }
+    },
     "ServiceActivity-Exchange.Read.All": {
       "schemes": {
         "DelegatedWork": {
