UNPKG

@pnp/cli-microsoft365

Version:

Manage Microsoft 365 and SharePoint Framework projects on any platform

pnp.github.io/cli-microsoft365/

pnp/cli-microsoft365

42 lines 2.18 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
import request from '../request.js'; const getRequestOptions = (roleDefinitionId, principalId, directoryScopeId) => ({ url: `https://graph.microsoft.com/v1.0/roleManagement/directory/roleAssignments`, headers: { accept: 'application/json;odata.metadata=none' }, responseType: 'json', data: { roleDefinitionId: roleDefinitionId, principalId: principalId, directoryScopeId: directoryScopeId } }); /** * Utils for RBAC. * Supported RBAC providers: * - Directory (Entra ID) */ export const roleAssignment = { /** * Assigns a specific role to a principal with scope to an administrative unit * @param roleDefinitionId Role which lists the actions that can be performed * @param principalId Object that represents a user, group, service principal, or managed identity that is requesting access to resources * @param administrativeUnitId Administrative unit which represents a current scope for a role assignment * @returns Returns unified role assignment object that represents a role definition assigned to a principal with scope to an administrative unit */ async createRoleAssignmentWithAdministrativeUnitScope(roleDefinitionId, principalId, administrativeUnitId) { const requestOptions = getRequestOptions(roleDefinitionId, principalId, `/administrativeUnits/${administrativeUnitId}`); return await request.post(requestOptions); }, /** * Assigns a specific role to a principal with scope to the whole tenant * @param roleDefinitionId Role which lists the actions that can be performed * @param principalId Object that represents a user, group, service principal, or managed identity that is requesting access to resources * @returns Returns unified role assignment object that represents a role definition assigned to a principal with scope to the whole tenant */ async createRoleAssignmentWithTenantScope(roleDefinitionId, principalId) { const requestOptions = getRequestOptions(roleDefinitionId, principalId, '/'); return await request.post(requestOptions); } }; //# sourceMappingURL=roleAssignment.js.map