From 14ec30c803e2c62dff3628a85c521425e386397b Mon Sep 17 00:00:00 2001
From: David <1511024+marabooy@users.noreply.github.com>
Date: Wed, 24 Sep 2025 03:23:08 +0300
Subject: [PATCH] Weekly Permissions sync 2025-09-24

---
 permissions/new/permissions.json      | 91 +++++++++++++--------------
 permissions/new/provisioningInfo.json | 54 ++++++++++++++++
 2 files changed, 99 insertions(+), 46 deletions(-)

diff --git a/permissions/new/permissions.json b/permissions/new/permissions.json
index 5eb84ee5..9d558e76 100644
--- a/permissions/new/permissions.json
+++ b/permissions/new/permissions.json
@@ -1270,22 +1270,22 @@
             "/applications(appid={value})/owners": "least=DelegatedWork,Application",
             "/applications(appid={value})/sponsors": "least=DelegatedWork,Application",
             "/applications(appid={value})/tokenRevocations": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/environmentAttributes": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/environmentAttributes/{name}": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/principalAttributes": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/principalAttributes/{name}": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/resources": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/resources/{name}": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/resources/{name}/actions": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/resources/{name}/actions/{name}": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/resources/{name}/attributes": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/resources/{name}/attributes/{name}": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/resources/{name}/parents": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/roleDefinitions": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/roleDefinitions/{id}": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/roleDefinitions/{id}/inheritsPermissionsFrom": "least=DelegatedWork,Application",
+            "/applications/{id}/authorization": "",
+            "/applications/{id}/authorization/resourceSchema": "",
+            "/applications/{id}/authorization/resourceSchema/environmentAttributes": "",
+            "/applications/{id}/authorization/resourceSchema/environmentAttributes/{name}": "",
+            "/applications/{id}/authorization/resourceSchema/principalAttributes": "",
+            "/applications/{id}/authorization/resourceSchema/principalAttributes/{name}": "",
+            "/applications/{id}/authorization/resourceSchema/resources": "",
+            "/applications/{id}/authorization/resourceSchema/resources/{name}": "",
+            "/applications/{id}/authorization/resourceSchema/resources/{name}/actions": "",
+            "/applications/{id}/authorization/resourceSchema/resources/{name}/actions/{name}": "",
+            "/applications/{id}/authorization/resourceSchema/resources/{name}/attributes": "",
+            "/applications/{id}/authorization/resourceSchema/resources/{name}/attributes/{name}": "",
+            "/applications/{id}/authorization/resourceSchema/resources/{name}/parents": "",
+            "/applications/{id}/authorization/roleDefinitions": "",
+            "/applications/{id}/authorization/roleDefinitions/{id}": "",
+            "/applications/{id}/authorization/roleDefinitions/{id}/inheritsPermissionsFrom": "",
             "/applications/{id}/federatedidentitycredentials": "least=DelegatedWork,Application",
             "/applications/{id}/onPremisesPublishing": "least=DelegatedWork,Application",
             "/applications/{id}/onPremisesPublishing/segmentsConfiguration/microsoft.graph.ipSegmentConfiguration/applicationSegments": "least=DelegatedWork,Application",
@@ -1498,16 +1498,16 @@
             "/applications(appid={value})/removekey": "least=DelegatedWork",
             "/applications(appid={value})/repair": "least=DelegatedWork",
             "/applications/{id}/addkey": "least=DelegatedWork",
-            "/applications/{id}/authorization/resourceSchema": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/environmentAttributes": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/ingest": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/principalAttributes": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/resources": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/resources/{name}/actions": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/resources/{name}/attributes": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/resources/{name}/parents": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/roleDefinitions": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/roleDefinitions/{id}/inheritsPermissionsFrom": "least=DelegatedWork,Application",
+            "/applications/{id}/authorization/resourceSchema": "",
+            "/applications/{id}/authorization/resourceSchema/environmentAttributes": "",
+            "/applications/{id}/authorization/resourceSchema/ingest": "",
+            "/applications/{id}/authorization/resourceSchema/principalAttributes": "",
+            "/applications/{id}/authorization/resourceSchema/resources": "",
+            "/applications/{id}/authorization/resourceSchema/resources/{name}/actions": "",
+            "/applications/{id}/authorization/resourceSchema/resources/{name}/attributes": "",
+            "/applications/{id}/authorization/resourceSchema/resources/{name}/parents": "",
+            "/applications/{id}/authorization/roleDefinitions": "",
+            "/applications/{id}/authorization/roleDefinitions/{id}/inheritsPermissionsFrom": "",
             "/applications/{id}/extendlifecycle": "",
             "/applications/{id}/onPremisesPublishing/segmentsConfiguration/microsoft.graph.ipSegmentConfiguration/applicationSegments": "least=DelegatedWork,Application",
             "/applications/{id}/pairwisebrokerembeddedappconfig": "least=DelegatedWork,Application",
@@ -1550,8 +1550,8 @@
             "/serviceprincipals/{id}/addkey": "least=DelegatedWork",
             "/serviceprincipals/{id}/addpassword": "least=DelegatedWork",
             "/serviceprincipals/{id}/addtokensigningcertificate": "least=DelegatedWork",
-            "/serviceprincipals/{id}/authorization": "least=DelegatedWork,Application",
-            "/serviceprincipals/{id}/authorization/elevateToUserAccessAdministrator": "least=DelegatedWork,Application",
+            "/serviceprincipals/{id}/authorization": "",
+            "/serviceprincipals/{id}/authorization/elevateToUserAccessAdministrator": "",
             "/serviceprincipals/{id}/checkmembergroups": "",
             "/serviceprincipals/{id}/checkmemberobjects": "",
             "/serviceprincipals/{id}/createpasswordsinglesignoncredentials": "least=DelegatedWork,Application;AlsoRequires=Directory.Read.All",
@@ -1655,17 +1655,17 @@
           "paths": {
             "/applications(appid={value})/owners/{id}": "least=DelegatedWork",
             "/applications(appid={value})/sponsors/{id}": "",
-            "/applications/{id}/authorization": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/environmentAttributes/{name}": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/principalAttributes/{name}": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/resources/{name}": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/resources/{name}/actions/{name}": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/resources/{name}/attributes/{name}": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/resources/{name}/parents/{name}": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/roleDefinitions/{id}": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/roleDefinitions/{id}/inheritsPermissionsFrom": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/roleDefinitions/{id}/inheritsPermissionsFrom/{id}": "least=DelegatedWork,Application",
+            "/applications/{id}/authorization": "",
+            "/applications/{id}/authorization/resourceSchema": "",
+            "/applications/{id}/authorization/resourceSchema/environmentAttributes/{name}": "",
+            "/applications/{id}/authorization/resourceSchema/principalAttributes/{name}": "",
+            "/applications/{id}/authorization/resourceSchema/resources/{name}": "",
+            "/applications/{id}/authorization/resourceSchema/resources/{name}/actions/{name}": "",
+            "/applications/{id}/authorization/resourceSchema/resources/{name}/attributes/{name}": "",
+            "/applications/{id}/authorization/resourceSchema/resources/{name}/parents/{name}": "",
+            "/applications/{id}/authorization/roleDefinitions/{id}": "",
+            "/applications/{id}/authorization/roleDefinitions/{id}/inheritsPermissionsFrom": "",
+            "/applications/{id}/authorization/roleDefinitions/{id}/inheritsPermissionsFrom/{id}": "",
             "/applications/{id}/owners/{id}": "least=DelegatedWork",
             "/applications/{id}/sponsors/{id}": "",
             "/applications/{id}/tokenissuancepolicies/{id}": "least=DelegatedWork;AlsoRequires=Policy.Read.All",
@@ -1777,13 +1777,12 @@
             "PATCH"
           ],
           "paths": {
-            "/applications/{id}/authorization/resourceSchema": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/environmentAttributes/{name}": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/principalAttributes/{name}": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/resources/{name}": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/resources/{name}/actions/{name}": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/resourceSchema/resources/{name}/attributes/{name}": "least=DelegatedWork,Application",
-            "/applications/{id}/authorization/roleDefinitions/{id}": "least=DelegatedWork,Application"
+            "/applications/{id}/authorization/resourceSchema/environmentAttributes/{name}": "",
+            "/applications/{id}/authorization/resourceSchema/principalAttributes/{name}": "",
+            "/applications/{id}/authorization/resourceSchema/resources/{name}": "",
+            "/applications/{id}/authorization/resourceSchema/resources/{name}/actions/{name}": "",
+            "/applications/{id}/authorization/resourceSchema/resources/{name}/attributes/{name}": "",
+            "/applications/{id}/authorization/roleDefinitions/{id}": ""
           }
         },
         {
diff --git a/permissions/new/provisioningInfo.json b/permissions/new/provisioningInfo.json
index 5782af3e..ad0a1e8e 100644
--- a/permissions/new/provisioningInfo.json
+++ b/permissions/new/provisioningInfo.json
@@ -17003,6 +17003,60 @@
         "isEnabled": true,
         "resourceAppId": "a3dfc3c6-2c7d-4f42-aeec-b2877f9bce97"
       }
+    ],
+    "ApplicationAuthorization.AssignAccessAdministrator": [
+      {
+        "id": "b7e2e2c1-5e2a-4b7a-8e2e-2c1b7e2e2c1a",
+        "scheme": "Application",
+        "environment": "public",
+        "isHidden": true,
+        "isEnabled": true,
+        "resourceAppId": "00000003-0000-0000-c000-000000000000"
+      },
+      {
+        "id": "c1a2b7e2-2e2c-4b7a-8e2e-2c1b7e2e2c1b",
+        "scheme": "DelegatedWork",
+        "environment": "public",
+        "isHidden": true,
+        "isEnabled": true,
+        "resourceAppId": "00000003-0000-0000-c000-000000000000"
+      }
+    ],
+    "ApplicationAuthorization.Read.All": [
+      {
+        "id": "e1f3a2b4-7c2d-4e5a-9b1c-2a3b4c5d6e7f",
+        "scheme": "Application",
+        "environment": "public",
+        "isHidden": true,
+        "isEnabled": true,
+        "resourceAppId": "00000003-0000-0000-c000-000000000000"
+      },
+      {
+        "id": "f2e4b3c5-8d3e-5f6b-0c2d-3b4c5d6e7f8a",
+        "scheme": "DelegatedWork",
+        "environment": "public",
+        "isHidden": true,
+        "isEnabled": true,
+        "resourceAppId": "00000003-0000-0000-c000-000000000000"
+      }
+    ],
+    "ApplicationAuthorization.ReadWrite.All": [
+      {
+        "id": "a2b3c4d5-6e7f-8a9b-0c1d-2e3f4a5b6c7d",
+        "scheme": "Application",
+        "environment": "public",
+        "isHidden": true,
+        "isEnabled": true,
+        "resourceAppId": "00000003-0000-0000-c000-000000000000"
+      },
+      {
+        "id": "b3c4d5e6-7f8a-9b0c-1d2e-3f4a5b6c7d8e",
+        "scheme": "DelegatedWork",
+        "environment": "public",
+        "isHidden": true,
+        "isEnabled": true,
+        "resourceAppId": "00000003-0000-0000-c000-000000000000"
+      }
     ]
   }
 }