Microsoft Graph metadata captured and used for generating client library code files.
Home Page: https://graph.microsoft.com
License: MIT License
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot]")
![github-actions[bot] avatar](https://avatars.githubusercontent.com/in/15368?v=4 "github-actions[bot]")
Get-MGUserEventInstance fails with the message Get-MgUserEventInstance_List: This request requires a time window specified by the query string parameters StartDateTime and EndDateTime.
The Graph API Docs for "list instances" shows that start and end times are required but none of the parameters allow this.
$targetMailbox = '[email protected]'
$eventFilter = "Subject eq 'Meeting'"
$event = Get-MgUserEvent -UserId $targetMailbox -filter $eventFilter
Get-MgUserEventInstance -UserId $targetMailbox -EventId $event.Id -debug
The workaround:
$Uri = "https://graph.microsoft.com/beta/users/$targetMailbox/events/$($event.Id)/instances?startDateTime=2022-02-23T00:00:00&endDateTime=2022-02-24T00:00:00&$select=subject,bodyPreview,seriesMasterId,type,recurrence,start,end"
$Results = Invoke-MgGraphRequest -uri $uri -method GET
Our checkins for XSLT rules are not blocked by a PR gate that checks whether our transformations are still producing parsable outputs.
I can run "Get-MgAgreementAcceptance -AgreementId " to get the acceptances of that agreement. However running "Remove-MgAgreementAcceptance -AgreementAcceptanceId -AgreementId" with an id from the first step and the same agreement id gives the error:
Remove-MgAgreementAcceptance : No HTTP resource was found that matches the request URI
'https://api.termsofuse.identitygovernance.azure.com/v2.0/agreements('<agreementid')/acceptances('<agreementacceptanceid')?x-scenario=MSGraph&x-tenantid=[tenantId]'.
At line:1 char:1
+ CategoryInfo : InvalidOperation: ({ IfMatch = }:<>f__AnonymousType82`1) [Remove-MgAgreem...leteViaIdentity], RestException`1
+ FullyQualifiedErrorId : Microsoft.Graph.PowerShell.Cmdlets.RemoveMgAgreementAcceptance_DeleteViaIdentity
(NB: [tenantId] is as it appears in the error message.
I get the same error contructing a hash and passing it to the function.
I can find very little documentation around this function, am I calling it incorrectly, or is there an issue with the function?
There are recently added undocumented validation rules for Group ownership in Microsoft Graph which are broken. Discussions with the service team would indicate that this validation is intended to affect Microsoft 365 (unified) groups with the goal of preventing group creation without a group having an owner that is a user principal. However at the same time we are seeing errors around group ownership for security groups too and the behavior is inconsistent, sometimes preventing creation of a group no matter what combination of owners are specified.
At group creation time, this seems to manifest in a 400 response with the following error description:
HTTP/1.1 400 Bad Request
Date: Thu, 29 Jul 2021 10:20:37 GMT
Content-Type: application/json
Cache-Control: no-cache
Transfer-Encoding: chunked
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
request-id: fe3ae0a7-46d6-4a29-9c23-9ed2c4ad0b0a
client-request-id: fe3ae0a7-46d6-4a29-9c23-9ed2c4ad0b0a
x-ms-ags-diagnostic: {"ServerInfo":{"DataCenter":"West Europe","Slice":"E","Ring":"5","ScaleUnit":"003","RoleInstance":"AM1PEPF000051D7"}}
Link: <https://developer.microsoft-tst.com/en-us/graph/changes?$filterby=beta,PrivatePreview:Restricted_AU_Properties&from=2021-04-01&to=2021-05-01>;rel="deprecation";type="text/html"
Deprecation:
Sunset:
x-ms-resource-unit: 1
{
"error": {
"code": "Request_BadRequest",
"innerError": {
"client-request-id": "fe3ae0a7-46d6-4a29-9c23-9ed2c4ad0b0a",
"date": "2021-07-29T10:20:38",
"request-id": "fe3ae0a7-46d6-4a29-9c23-9ed2c4ad0b0a"
},
"message": "Request contains a property with duplicate values."
}
}
This does not correlate with the request payload which might for example look like the following:
POST https://graph.microsoft.com/beta/659c0000-0000-0000-0000-00000000a82e/groups
HTTP/1.1
Host: graph.microsoft.com
User-Agent: Hamilton (Go-http-client/1.1) HashiCorp Terraform/1.0.0 (+https://www.terraform.io) Terraform Plugin SDK/2.6.1 terraform-provider-azuread/1.6.0 pid-222c6c49-1b0a-5959-a213-6608f9eb8820
Content-Length: 233
Accept: application/json
Authorization: Bearer ...
Content-Type: application/json; charset=utf-8
Accept-Encoding: gzip
{
"displayName": "foobar2",
"mailEnabled": false,
"mailNickname": "6fb69a33-5961-f0a4-6041-7af7712c0d06",
"[email protected]": [
"https://graph.microsoft.com/beta/directoryObjects/06ee5fa0-7a61-4313-bae7-4d1bf50cbb03"
],
"securityEnabled": true
}This error is returned despite:
In addition, when removing owners from a group, where there are two owners and one of these is a service principal and the other is a user principal, and the group is a security group and not a unified group, a 400 response can sometimes be received with the following error:
The group must have at least one owner, hence this owner cannot be removed
These behaviors have been documented by ourselves and several community members, in the following related issues:
hashicorp/terraform-provider-azuread#464
hashicorp/terraform-provider-azuread#473
hashicorp/terraform-provider-azuread#478
hashicorp/terraform-provider-azuread#567
We should remove containment for windowsHelloForBusinessAuthenticationMethod/device since it results in a "No HTTP resource was found" error, and device navigation property can be expanded using $expand.
Addresses issue noted in microsoftgraph/msgraph-sdk-powershell#975.
API reference - https://docs.microsoft.com/en-us/graph/api/resources/windowshelloforbusinessauthenticationmethod?view=graph-rest-beta.
We should organize our XSLT based on scenarios. This will mean have a primary XSLT (the existing one) and import the scenarios. Tentative scenarios:
-- metadataFix.xsl - where we inventory and add metadata to fix issues in the production metadata. This fix is temporary until it is fixed in the metadata.
-- toolingFix.xsl - where we inventory and alter metadata that works around issues in our generation tools. This fix is temporary until we fix the tools.
-- apiWorkaround.xsl - where we inventory and alter metadata that works around OData non-conformance.
The bitlocker singleton is preventing us from generating valid OpenAPI for the bitlocker property under informationProtection.
AB#9238
The converted OpenAPI document currently represents response type of most report functions as application/json instead of application/octet-stream. To solve this, we need to ensure that response types of functions bound to reportRoot are accurately represented in the converted OpenAPI. Without this, code generators won't be able to know how to properly handle responses.
This CSDL with the wrong return type:
Gets converted to this in OpenAPI:
For reports to function as described in MS Graph docs, we need to ensure that they are described as shown below:
Related to microsoftgraph/msgraph-sdk-powershell#407
Set-MgApplicationLogo fails with Content-Type was application/octet-stream. Image Content-Type header should be one of the following: [image/bmp, image/emf, image/wmf, image/jpg, image/jpeg, image/gif, image/ico, image/png, image/exif, image/tif, image/tiff, image/*, images/*]..
The OpenAPI document currently describes the content-type as application/octet-stream. AutoREST.PowerShell expects the right content-type to be explicitly described in the OpenAPI document.
Set-MgApplicationLogo -ApplicationId $app.Id -InFile "C:\PATH_TO_LOGO\Logo.png"Related to microsoftgraph/msgraph-sdk-powershell#1028, microsoftgraph/msgraph-sdk-powershell#935
Both the v1.0 and beta validatoin pipelines need an update to deal with the fact that resource pipeline triggers cannot be restricted on resource path spec. The triggers only work on branch path specs. This causes both pipelines to be run when changes are made to both v1.0 and beta metadata resources.
Essentially, the validation pipelines will have failures since the artifact it needs will not be available in one run, but will be available in the other run since it will be available.
https://developercommunity.visualstudio.com/content/idea/928461/support-path-filter-for-pipeline-build-trigger.html
AB#7455
Hi there,
I'm trying to use openapi-generator to generate some Rust code. But it seems that it doesn't work somehow. Here's the step to reproduce:
Firstly, I download the YAML description file from this repo by:
wget https://raw.githubusercontent.com/microsoftgraph/msgraph-metadata/master/openapi/v1.0/openapi.yaml
...and then I installed the openapi-generator via npm:
npm install @openapitools/openapi-generator-cli -g
...and then run the generator:
openapi-generator generate -g rust -o out -i openapi.yaml
It will show me some errors like this:
[main] WARN io.swagger.v3.parser.OpenAPIV3Parser - Exception while reading:
com.fasterxml.jackson.dataformat.yaml.snakeyaml.error.YAMLException: special characters are not allowed
at [Source: (StringReader); line: 359942, column: 20]
at com.fasterxml.jackson.dataformat.yaml.snakeyaml.error.YAMLException.from(YAMLException.java:25)
at com.fasterxml.jackson.dataformat.yaml.YAMLParser.nextToken(YAMLParser.java:361)
at com.fasterxml.jackson.databind.deser.std.BaseNodeDeserializer.deserializeObject(JsonNodeDeserializer.java:249)
at com.fasterxml.jackson.databind.deser.std.BaseNodeDeserializer.deserializeObject(JsonNodeDeserializer.java:255)
at com.fasterxml.jackson.databind.deser.std.BaseNodeDeserializer.deserializeObject(JsonNodeDeserializer.java:255)
at com.fasterxml.jackson.databind.deser.std.BaseNodeDeserializer.deserializeArray(JsonNodeDeserializer.java:434)
at com.fasterxml.jackson.databind.deser.std.BaseNodeDeserializer.deserializeObject(JsonNodeDeserializer.java:258)
at com.fasterxml.jackson.databind.deser.std.BaseNodeDeserializer.deserializeObject(JsonNodeDeserializer.java:255)
at com.fasterxml.jackson.databind.deser.std.BaseNodeDeserializer.deserializeObject(JsonNodeDeserializer.java:255)
at com.fasterxml.jackson.databind.deser.std.BaseNodeDeserializer.deserializeObject(JsonNodeDeserializer.java:255)
at com.fasterxml.jackson.databind.deser.std.JsonNodeDeserializer.deserialize(JsonNodeDeserializer.java:68)
at com.fasterxml.jackson.databind.deser.std.JsonNodeDeserializer.deserialize(JsonNodeDeserializer.java:15)
at com.fasterxml.jackson.databind.ObjectMapper._readTreeAndClose(ObjectMapper.java:4056)
at com.fasterxml.jackson.databind.ObjectMapper.readTree(ObjectMapper.java:2551)
at io.swagger.v3.parser.OpenAPIV3Parser.readWithInfo(OpenAPIV3Parser.java:154)
at io.swagger.v3.parser.OpenAPIV3Parser.readLocation(OpenAPIV3Parser.java:58)
at io.swagger.parser.OpenAPIParser.readLocation(OpenAPIParser.java:16)
at org.openapitools.codegen.config.CodegenConfigurator.toContext(CodegenConfigurator.java:410)
at org.openapitools.codegen.config.CodegenConfigurator.toClientOptInput(CodegenConfigurator.java:458)
at org.openapitools.codegen.cmd.Generate.run(Generate.java:415)
at org.openapitools.codegen.OpenAPIGenerator.main(OpenAPIGenerator.java:60)
Caused by: org.yaml.snakeyaml.reader.ReaderException: special characters are not allowed
at org.yaml.snakeyaml.reader.StreamReader.update(StreamReader.java:211)
at org.yaml.snakeyaml.reader.StreamReader.ensureEnoughData(StreamReader.java:176)
at org.yaml.snakeyaml.reader.StreamReader.peek(StreamReader.java:136)
at org.yaml.snakeyaml.scanner.ScannerImpl.scanToNextToken(ScannerImpl.java:1185)
at org.yaml.snakeyaml.scanner.ScannerImpl.fetchMoreTokens(ScannerImpl.java:287)
at org.yaml.snakeyaml.scanner.ScannerImpl.checkToken(ScannerImpl.java:227)
at org.yaml.snakeyaml.parser.ParserImpl$ParseBlockMappingValue.produce(ParserImpl.java:586)
at org.yaml.snakeyaml.parser.ParserImpl.peekEvent(ParserImpl.java:158)
at org.yaml.snakeyaml.parser.ParserImpl.getEvent(ParserImpl.java:168)
at com.fasterxml.jackson.dataformat.yaml.YAMLParser.nextToken(YAMLParser.java:355)
... 19 common frames omitted
[main] WARN i.s.parser.util.DeserializationUtils - Error snake-parsing yaml content
io.swagger.parser.util.DeserializationUtils$SnakeException: Exception safe-checking yaml content (maxDepth 2000)
at io.swagger.parser.util.DeserializationUtils$CustomSnakeYamlConstructor.getSingleData(DeserializationUtils.java:300)
at org.yaml.snakeyaml.Yaml.loadFromReader(Yaml.java:524)
at org.yaml.snakeyaml.Yaml.load(Yaml.java:437)
at io.swagger.parser.util.DeserializationUtils.readYamlTree(DeserializationUtils.java:137)
at io.swagger.parser.Swagger20Parser.deserializeYaml(Swagger20Parser.java:83)
at io.swagger.parser.Swagger20Parser.readWithInfo(Swagger20Parser.java:64)
at io.swagger.parser.SwaggerParser.readWithInfo(SwaggerParser.java:32)
at io.swagger.v3.parser.converter.SwaggerConverter.readLocation(SwaggerConverter.java:96)
at io.swagger.parser.OpenAPIParser.readLocation(OpenAPIParser.java:16)
at org.openapitools.codegen.config.CodegenConfigurator.toContext(CodegenConfigurator.java:410)
at org.openapitools.codegen.config.CodegenConfigurator.toClientOptInput(CodegenConfigurator.java:458)
at org.openapitools.codegen.cmd.Generate.run(Generate.java:415)
at org.openapitools.codegen.OpenAPIGenerator.main(OpenAPIGenerator.java:60)
Caused by: org.yaml.snakeyaml.reader.ReaderException: special characters are not allowed
at org.yaml.snakeyaml.reader.StreamReader.update(StreamReader.java:211)
at org.yaml.snakeyaml.reader.StreamReader.ensureEnoughData(StreamReader.java:176)
at org.yaml.snakeyaml.reader.StreamReader.peek(StreamReader.java:136)
at org.yaml.snakeyaml.scanner.ScannerImpl.scanToNextToken(ScannerImpl.java:1185)
at org.yaml.snakeyaml.scanner.ScannerImpl.fetchMoreTokens(ScannerImpl.java:287)
at org.yaml.snakeyaml.scanner.ScannerImpl.checkToken(ScannerImpl.java:227)
at org.yaml.snakeyaml.parser.ParserImpl$ParseBlockMappingValue.produce(ParserImpl.java:586)
at org.yaml.snakeyaml.parser.ParserImpl.peekEvent(ParserImpl.java:158)
at org.yaml.snakeyaml.parser.ParserImpl.checkEvent(ParserImpl.java:148)
at org.yaml.snakeyaml.composer.Composer.composeNode(Composer.java:124)
at org.yaml.snakeyaml.composer.Composer.composeValueNode(Composer.java:236)
at org.yaml.snakeyaml.composer.Composer.composeMappingChildren(Composer.java:227)
at org.yaml.snakeyaml.composer.Composer.composeMappingNode(Composer.java:215)
at org.yaml.snakeyaml.composer.Composer.composeNode(Composer.java:144)
at org.yaml.snakeyaml.composer.Composer.composeValueNode(Composer.java:236)
at org.yaml.snakeyaml.composer.Composer.composeMappingChildren(Composer.java:227)
at org.yaml.snakeyaml.composer.Composer.composeMappingNode(Composer.java:215)
at org.yaml.snakeyaml.composer.Composer.composeNode(Composer.java:144)
at org.yaml.snakeyaml.composer.Composer.composeValueNode(Composer.java:236)
at org.yaml.snakeyaml.composer.Composer.composeMappingChildren(Composer.java:227)
at org.yaml.snakeyaml.composer.Composer.composeMappingNode(Composer.java:215)
at org.yaml.snakeyaml.composer.Composer.composeNode(Composer.java:144)
at org.yaml.snakeyaml.composer.Composer.composeSequenceNode(Composer.java:189)
at org.yaml.snakeyaml.composer.Composer.composeNode(Composer.java:142)
at org.yaml.snakeyaml.composer.Composer.composeValueNode(Composer.java:236)
at org.yaml.snakeyaml.composer.Composer.composeMappingChildren(Composer.java:227)
at org.yaml.snakeyaml.composer.Composer.composeMappingNode(Composer.java:215)
at org.yaml.snakeyaml.composer.Composer.composeNode(Composer.java:144)
at org.yaml.snakeyaml.composer.Composer.composeValueNode(Composer.java:236)
at org.yaml.snakeyaml.composer.Composer.composeMappingChildren(Composer.java:227)
at org.yaml.snakeyaml.composer.Composer.composeMappingNode(Composer.java:215)
at org.yaml.snakeyaml.composer.Composer.composeNode(Composer.java:144)
at org.yaml.snakeyaml.composer.Composer.composeValueNode(Composer.java:236)
at org.yaml.snakeyaml.composer.Composer.composeMappingChildren(Composer.java:227)
at org.yaml.snakeyaml.composer.Composer.composeMappingNode(Composer.java:215)
at org.yaml.snakeyaml.composer.Composer.composeNode(Composer.java:144)
at org.yaml.snakeyaml.composer.Composer.composeValueNode(Composer.java:236)
at org.yaml.snakeyaml.composer.Composer.composeMappingChildren(Composer.java:227)
at org.yaml.snakeyaml.composer.Composer.composeMappingNode(Composer.java:215)
at org.yaml.snakeyaml.composer.Composer.composeNode(Composer.java:144)
at org.yaml.snakeyaml.composer.Composer.getNode(Composer.java:85)
at org.yaml.snakeyaml.composer.Composer.getSingleNode(Composer.java:108)
at io.swagger.parser.util.DeserializationUtils$CustomSnakeYamlConstructor.getSingleData(DeserializationUtils.java:279)
... 12 common frames omitted
[main] WARN i.s.parser.util.DeserializationUtils - Error snake-parsing yaml content
io.swagger.parser.util.DeserializationUtils$SnakeException: Exception safe-checking yaml content (maxDepth 2000)
at io.swagger.parser.util.DeserializationUtils$CustomSnakeYamlConstructor.getSingleData(DeserializationUtils.java:300)
at org.yaml.snakeyaml.Yaml.loadFromReader(Yaml.java:524)
at org.yaml.snakeyaml.Yaml.load(Yaml.java:437)
at io.swagger.parser.util.DeserializationUtils.readYamlTree(DeserializationUtils.java:137)
at io.swagger.parser.Swagger20Parser.deserializeYaml(Swagger20Parser.java:83)
at io.swagger.parser.Swagger20Parser.readWithInfo(Swagger20Parser.java:64)
at io.swagger.parser.SwaggerParser.readWithInfo(SwaggerParser.java:42)
at io.swagger.v3.parser.converter.SwaggerConverter.readLocation(SwaggerConverter.java:96)
at io.swagger.parser.OpenAPIParser.readLocation(OpenAPIParser.java:16)
at org.openapitools.codegen.config.CodegenConfigurator.toContext(CodegenConfigurator.java:410)
at org.openapitools.codegen.config.CodegenConfigurator.toClientOptInput(CodegenConfigurator.java:458)
at org.openapitools.codegen.cmd.Generate.run(Generate.java:415)
at org.openapitools.codegen.OpenAPIGenerator.main(OpenAPIGenerator.java:60)
Caused by: org.yaml.snakeyaml.reader.ReaderException: special characters are not allowed
at org.yaml.snakeyaml.reader.StreamReader.update(StreamReader.java:211)
at org.yaml.snakeyaml.reader.StreamReader.ensureEnoughData(StreamReader.java:176)
at org.yaml.snakeyaml.reader.StreamReader.peek(StreamReader.java:136)
at org.yaml.snakeyaml.scanner.ScannerImpl.scanToNextToken(ScannerImpl.java:1185)
at org.yaml.snakeyaml.scanner.ScannerImpl.fetchMoreTokens(ScannerImpl.java:287)
at org.yaml.snakeyaml.scanner.ScannerImpl.checkToken(ScannerImpl.java:227)
at org.yaml.snakeyaml.parser.ParserImpl$ParseBlockMappingValue.produce(ParserImpl.java:586)
at org.yaml.snakeyaml.parser.ParserImpl.peekEvent(ParserImpl.java:158)
at org.yaml.snakeyaml.parser.ParserImpl.checkEvent(ParserImpl.java:148)
at org.yaml.snakeyaml.composer.Composer.composeNode(Composer.java:124)
at org.yaml.snakeyaml.composer.Composer.composeValueNode(Composer.java:236)
at org.yaml.snakeyaml.composer.Composer.composeMappingChildren(Composer.java:227)
at org.yaml.snakeyaml.composer.Composer.composeMappingNode(Composer.java:215)
at org.yaml.snakeyaml.composer.Composer.composeNode(Composer.java:144)
at org.yaml.snakeyaml.composer.Composer.composeValueNode(Composer.java:236)
at org.yaml.snakeyaml.composer.Composer.composeMappingChildren(Composer.java:227)
at org.yaml.snakeyaml.composer.Composer.composeMappingNode(Composer.java:215)
at org.yaml.snakeyaml.composer.Composer.composeNode(Composer.java:144)
at org.yaml.snakeyaml.composer.Composer.composeValueNode(Composer.java:236)
at org.yaml.snakeyaml.composer.Composer.composeMappingChildren(Composer.java:227)
at org.yaml.snakeyaml.composer.Composer.composeMappingNode(Composer.java:215)
at org.yaml.snakeyaml.composer.Composer.composeNode(Composer.java:144)
at org.yaml.snakeyaml.composer.Composer.composeSequenceNode(Composer.java:189)
at org.yaml.snakeyaml.composer.Composer.composeNode(Composer.java:142)
at org.yaml.snakeyaml.composer.Composer.composeValueNode(Composer.java:236)
at org.yaml.snakeyaml.composer.Composer.composeMappingChildren(Composer.java:227)
at org.yaml.snakeyaml.composer.Composer.composeMappingNode(Composer.java:215)
at org.yaml.snakeyaml.composer.Composer.composeNode(Composer.java:144)
at org.yaml.snakeyaml.composer.Composer.composeValueNode(Composer.java:236)
at org.yaml.snakeyaml.composer.Composer.composeMappingChildren(Composer.java:227)
at org.yaml.snakeyaml.composer.Composer.composeMappingNode(Composer.java:215)
at org.yaml.snakeyaml.composer.Composer.composeNode(Composer.java:144)
at org.yaml.snakeyaml.composer.Composer.composeValueNode(Composer.java:236)
at org.yaml.snakeyaml.composer.Composer.composeMappingChildren(Composer.java:227)
at org.yaml.snakeyaml.composer.Composer.composeMappingNode(Composer.java:215)
at org.yaml.snakeyaml.composer.Composer.composeNode(Composer.java:144)
at org.yaml.snakeyaml.composer.Composer.composeValueNode(Composer.java:236)
at org.yaml.snakeyaml.composer.Composer.composeMappingChildren(Composer.java:227)
at org.yaml.snakeyaml.composer.Composer.composeMappingNode(Composer.java:215)
at org.yaml.snakeyaml.composer.Composer.composeNode(Composer.java:144)
at org.yaml.snakeyaml.composer.Composer.getNode(Composer.java:85)
at org.yaml.snakeyaml.composer.Composer.getSingleNode(Composer.java:108)
at io.swagger.parser.util.DeserializationUtils$CustomSnakeYamlConstructor.getSingleData(DeserializationUtils.java:279)
... 12 common frames omitted
[main] ERROR i.s.parser.SwaggerCompatConverter - failed to read resource listing
com.fasterxml.jackson.core.JsonParseException: Unrecognized token 'openapi': was expecting ('true', 'false' or 'null')
at [Source: (StringReader); line: 1, column: 8]
at com.fasterxml.jackson.core.JsonParser._constructError(JsonParser.java:1804)
at com.fasterxml.jackson.core.base.ParserMinimalBase._reportError(ParserMinimalBase.java:673)
at com.fasterxml.jackson.core.json.ReaderBasedJsonParser._reportInvalidToken(ReaderBasedJsonParser.java:2835)
at com.fasterxml.jackson.core.json.ReaderBasedJsonParser._handleOddValue(ReaderBasedJsonParser.java:1889)
at com.fasterxml.jackson.core.json.ReaderBasedJsonParser.nextToken(ReaderBasedJsonParser.java:747)
at com.fasterxml.jackson.databind.ObjectMapper._readTreeAndClose(ObjectMapper.java:4042)
at com.fasterxml.jackson.databind.ObjectMapper.readTree(ObjectMapper.java:2551)
at io.swagger.parser.SwaggerCompatConverter.readResourceListing(SwaggerCompatConverter.java:210)
at io.swagger.parser.SwaggerCompatConverter.read(SwaggerCompatConverter.java:123)
at io.swagger.parser.SwaggerCompatConverter.readWithInfo(SwaggerCompatConverter.java:94)
at io.swagger.parser.SwaggerParser.readWithInfo(SwaggerParser.java:42)
at io.swagger.v3.parser.converter.SwaggerConverter.readLocation(SwaggerConverter.java:96)
at io.swagger.parser.OpenAPIParser.readLocation(OpenAPIParser.java:16)
at org.openapitools.codegen.config.CodegenConfigurator.toContext(CodegenConfigurator.java:410)
at org.openapitools.codegen.config.CodegenConfigurator.toClientOptInput(CodegenConfigurator.java:458)
at org.openapitools.codegen.cmd.Generate.run(Generate.java:415)
at org.openapitools.codegen.OpenAPIGenerator.main(OpenAPIGenerator.java:60)
[main] ERROR i.s.parser.SwaggerCompatConverter - failed to read resource listing
com.fasterxml.jackson.core.JsonParseException: Unrecognized token 'openapi': was expecting ('true', 'false' or 'null')
at [Source: (StringReader); line: 1, column: 8]
at com.fasterxml.jackson.core.JsonParser._constructError(JsonParser.java:1804)
at com.fasterxml.jackson.core.base.ParserMinimalBase._reportError(ParserMinimalBase.java:673)
at com.fasterxml.jackson.core.json.ReaderBasedJsonParser._reportInvalidToken(ReaderBasedJsonParser.java:2835)
at com.fasterxml.jackson.core.json.ReaderBasedJsonParser._handleOddValue(ReaderBasedJsonParser.java:1889)
at com.fasterxml.jackson.core.json.ReaderBasedJsonParser.nextToken(ReaderBasedJsonParser.java:747)
at com.fasterxml.jackson.databind.ObjectMapper._readTreeAndClose(ObjectMapper.java:4042)
at com.fasterxml.jackson.databind.ObjectMapper.readTree(ObjectMapper.java:2551)
at io.swagger.parser.SwaggerCompatConverter.readResourceListing(SwaggerCompatConverter.java:210)
at io.swagger.parser.SwaggerCompatConverter.read(SwaggerCompatConverter.java:123)
at io.swagger.parser.SwaggerCompatConverter.readWithInfo(SwaggerCompatConverter.java:94)
at io.swagger.parser.SwaggerParser.readWithInfo(SwaggerParser.java:42)
at io.swagger.v3.parser.converter.SwaggerConverter.readLocation(SwaggerConverter.java:96)
at io.swagger.parser.OpenAPIParser.readLocation(OpenAPIParser.java:16)
at org.openapitools.codegen.config.CodegenConfigurator.toContext(CodegenConfigurator.java:410)
at org.openapitools.codegen.config.CodegenConfigurator.toClientOptInput(CodegenConfigurator.java:458)
at org.openapitools.codegen.cmd.Generate.run(Generate.java:415)
at org.openapitools.codegen.OpenAPIGenerator.main(OpenAPIGenerator.java:60)
Exception in thread "main" java.lang.NullPointerException
at java.util.HashSet.<init>(HashSet.java:119)
at org.openapitools.codegen.config.CodegenConfigurator.toContext(CodegenConfigurator.java:413)
at org.openapitools.codegen.config.CodegenConfigurator.toClientOptInput(CodegenConfigurator.java:458)
at org.openapitools.codegen.cmd.Generate.run(Generate.java:415)
at org.openapitools.codegen.OpenAPIGenerator.main(OpenAPIGenerator.java:60)
Did I miss something? Or is there any corruptions or syntax errors in the YAML file?
Regards,
Jackson
AB#7452
The type graph.report looks like this:
<ComplexType Name="report">
<Property Name="content" Type="Edm.Stream"/>
</ComplexType>The report type is returned by a number of functions, for example:
<Function Name="getMailboxUsageDetail" IsBound="true" IsComposable="true">
<Parameter Name="bindingParameter" Type="graph.reportRoot"/>
<Parameter Name="period" Type="Edm.String" Nullable="false" Unicode="false"/>
<ReturnType Type="graph.report" Nullable="false"/>
</Function>What this suggests to me is that the url to return the report (a CSV file to be read as a stream) above would look like this:
https://graph.microsoft.com/v1.0/reports/getMailboxUsageDetail(period%3D'D7')/content
but in fact the url to return the report is:
https://graph.microsoft.com/v1.0/reports/getMailboxUsageDetail(period%3D'D7')
I couldn't spot anything in the OData 4.01 specifications supporting this strange wrapping of the Stream type (with special behaviour to ignore the content property name). Why isn't the ReturnType for all these functions just Edm.Stream?
The command "Remove-MgUserAuthenticationMethod" doesn't work as expected.
Remove-MgUserAuthenticationMethod -UserId [email protected] -AuthenticationMethodId 1234a56b-789c-0123-456d-78e9012345f6
Remove-MgUserAuthenticationMethod : {"Message":"No HTTP resource was found that matches the request URI
'https://mface.windowsazure.com/odata/users('TestUser%40domain.com')/authentication/methods('1234a56b-789c-0123-456d-78e9012345f6')'.","MessageDetail":"No type was found that matches
the controller named 'users'."}
At line:6 char:13
Remove-MgUserAuthenticationMethod -UserId $MgUser.UserPri ...
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
3) [Remove-MgUserAuthenticationMethod_Delete], RestException1The OpenAPI Document Lists the Response for the following endpoint as shown below:-
/deviceManagement/virtualEndpoint/auditEvents/microsoft.graph.getAuditActivityTypes():
get:
tags:
- deviceManagement.Functions
summary: Invoke function getAuditActivityTypes
operationId: deviceManagement.virtualEndpoint.auditEvents.getAuditActivityTypes
responses:
'200':
description: Success
content:
application/json:
schema:
type: array
items:
type: string
nullable: true
default:
$ref: '#/components/responses/error'
x-ms-docs-operation-type: function
However, the API returns the following format:-
{
"@odata.context": "https://graph.microsoft.com/beta/$metadata#Collection(Edm.String)",
"value": [
"*"
]
}
As such the above OpenAPI Doc should be changed to:-
/deviceManagement/virtualEndpoint/auditEvents/microsoft.graph.getAuditActivityTypes():
get:
tags:
- deviceManagement.Functions
summary: Invoke function getAuditActivityTypes
operationId: deviceManagement.virtualEndpoint.auditEvents_getAuditActivityTypes
responses:
'200':
description: Success
content:
application/json:
schema:
type: object
properties:
value:
type: array
items:
type: string
nullable: true
default:
$ref: '#/components/responses/error'
x-ms-docs-operation-type: function
This issue also affects getEffectivePermissions
The associated metadata:-
Using Update-MgUserPlanner to update a plannerUser object fails with the following error:
PS C:\> Select-MgProfile beta
PS C:\> Update-MgUserPlanner -UserId $env:App_User_Id -Debug
DEBUG: URLCreated: https://graph.microsoft.com/beta/users/{user-id}/planner
Content-Type: application/json
{
}
Update-MgUserPlanner_UpdateExpanded: The If-Match header must be specified for this kind of request.
...Customers do not currently have an option for specifying request headers. The OpenAPI spec states that a document should explicitly declare request headers in an operation's parameters object with an in: header e.g.,
/planner:
patch:
tags:
- planner.planner
summary: Update planerUser object.
operationId: planner.planner_UpdatePlanner
parameters:
- name: If-match
in: header
schema:
type: stringI tried to generate java classes for MS graph beta API with the following command ,
.\scripts\runTypewriter.ps1 -verbosity Info -metadata https://raw.githubusercontent.com/microsoftgraph/msgraph-metadata/master/clean_beta_metadata/cleanMetadataWithDescriptionsbeta.xml -output .\temp -generationMode Files -cleanup $false -l Java โจ
however, it generate a huge amount of java classes (> 13k), which leads to slow compilation, are there any ways to exclude unused classes?
Regards
Pong
The current XSLT transform only applies the ConsistencyLevel customHeader annotation to entitySets and singletons. The customHeader annotation will need to be added to all supported collections of directoryObjects as described here: https://devblogs.microsoft.com/microsoft365dev/build-advanced-queries-with-count-filter-search-and-orderby/.
A DerivedTypeConstraint annotation term should be added for all derived types of namedLocation shown below:
XSLT transform doesn't copy ProposedNewTime parameter while reordering of parameters alphabetically for tentativelyAccept and decline actions.
Assumption is that ProposedNewTime parameter didn't exist in metadata when the reordering rule was defined.
AB#7456
Please add ConsistencyLevel support to Get-MgOauth2PermissionGrant in order to enable advanced queries, which are supported for these objects (https://docs.microsoft.com/en-us/graph/aad-advanced-queries).
Hi,
The Open API Specification (OAS)/Definition here is very useful, however, it is understandably quite large.
Are there any OAS files on a per major service basis?
Thanks
AB#7979
Hello,
According to https://docs.microsoft.com/en-us/graph/api/phoneauthenticationmethod-update?view=graph-rest-beta&tabs=http&viewFallbackFrom=graph-rest-1.0 the method used to update the phone number is PUT but the current code is using PATCH method:
https://github.com/microsoftgraph/msgraph-metadata/blob/master/openapi/beta/openapi.yaml#L391776 (for the /me) and
https://github.com/microsoftgraph/msgraph-metadata/blob/master/openapi/beta/openapi.yaml#L634531 for /users)
I don't know if I can just do a PR for that or if it's just a generated file I should have to modify by myself.
Thank you :)
AB#7629
It looks like we are adding a base type to a complex type that shouldn't have one.
According to the live metadata, chatMessageMention is a complex type with no base type, but in the clean metadata, we seem to be adding a base type of entity to it. This leads to a property conflict since both entity and chatMessageMention have an id property of different types, a string for entity and int32 for chatMessageMention.
The same applies to the clean v1.0 metadata.
ContainsTarget=True on EducationAssignment's rubric Navigation Property is not correct. This is due to a bug in AGS where it fails if the metadata has containstarget=false, so for now the metadata has to be incorrect.
The conclusion is therefore to make it one of the xslt transform rules that are mapped onto the raw Graph metadata
AB#10264
Design an annotation mechanism for disabling generation of the odata.type initialization code. Let's track where this needs to happen:
This is supposed to be a temporary low cost fix to unblock customers as it is the responsibility of workload APIs to ignore instance attributes they don't support. We need to investigate whether VIPR and Typewriter will easily support this to determine actual cost.
AB#7454
When attempting to generate code from the current state of metadata from the service metadata urls on 2020-09-21, I found the following problems:
v1.0:
microsoft.graph.policyRoot
microsoft.graph.educationRoot
microsoft.graph.cloudCommunications
microsoft.graph.planner
microsoft.graph.security
microsoft.graph.appCatalogs
microsoft.graph.teamwork
microsoft.graph.informationProtection
beta:
microsoft.graph.auditLogRoot
microsoft.graph.policyRoot
microsoft.graph.bitlocker
microsoft.graph.compliance
microsoft.graph.identityContainer
microsoft.graph.trustFramework
microsoft.graph.directory
microsoft.graph.roleManagement
microsoft.graph.educationRoot
microsoft.graph.identityGovernance
microsoft.graph.identityProtectionRoot
microsoft.graph.officeConfiguration
microsoft.graph.financials
microsoft.graph.planner
microsoft.graph.print
microsoft.graph.security
microsoft.graph.commsApplication
microsoft.graph.external
microsoft.graph.appCatalogs
The fix for all of these is to add the attribute BaseType="graph.entity" but of course that's for you guys to confirm. I notice that the current state of the metadata in this repository seems to have these issues fixed (I didn't check all of them). When will the new metadata be published?
BTW thanks for exposing this metadata repo! Just what I wanted (assuming that the Graph team address issues raised here!).
We want to start expanding all valid containment navigation properties. This PR helped us remove some of the invalid containments. However, the Files OpenAPI doc., generated by PowerShell to be processed by AutoREST for cmdlet generation is currently at ~10MB for the beta version. This is beyond AutoREST's file processing capability of ~6MB. We need to reduce the size of the Files OpenAPI doc. before we can fully release the process of expanding all containment navigation properties in the generated OpenAPI doc. We can do this by adding annotations to remove the indexability of the following navigation properties:
Using the OpenAPI.NET.OData converter lib., adding these annotations should be useful in preventing expansion of these navigation properties. Restricting the expansion of these navigation properties will not lead to a breaking change, as they are currently not being expanded anyway in the converted OpenAPI document.
See below the Current vs Proposed changes snapshots. The operations highlighted in yellow are under the new expanded paths.
Current:
microsoft.graph.user/drives
microsoft.graph.group/drives
microsoft.graph.sharedDriveItem/site
Proposed:
microsoft.graph.user/drives
microsoft.graph.group/drives
microsoft.graph.sharedDriveItem/site
startDateTime & endDateTime not documented, but the service complains with 400 if their not present
https://docs.microsoft.com/en-us/graph/api/calendar-list-calendarview?view=graph-rest-1.0&tabs=http
I'm opening this issue here in hope that this is the feed for the api being shown via:
https://graphexplorerapi.azurewebsites.net/openapi?tags=me.calendar&openApiVersion=2&graphVersion=v1.0&format=json&style=PowerPlatform
A previous attempt to contribute is here: https://github.com/microsoftgraph/microsoft-graph-openapi/issues/12
In order for SDKs such as PowerShell to support advanced queries, the CSDL needs to have a custom header annotation nested under a read restrictions on all entitySets that accept a consistencyLevel header.
AGS does not currently expose all readRestrictions annotations in the CSDL. As a workaround, we should add customHeader to the following entitySets via XSLT:
<EntitySet Name="users" EntityType="Microsoft.DirectoryServices.user">
<Annotation Term="Org.OData.Capabilities.V1.ReadRestrictions">
<Record>
<PropertyValue Property="CustomHeaders">
<Collection>
<Record>
<PropertyValue Property="Name" String="ConsistencyLevel" />
<PropertyValue Property="Description" String="Indicates the requested consistency level." />
<PropertyValue Property="DocumentationURL" String="https://docs.microsoft.com/en-us/graph/api/orgcontact-list?view=graph-rest-beta" />
<PropertyValue Property="Required" Bool="false" />
<PropertyValue Property="ExampleValues">
<Collection>
<Record>
<PropertyValue Property="Value" String="eventual" />
<PropertyValue Property="Description" String="$search and $count queries require the client to set the ConsistencyLevel HTTP header to 'eventual'." />
</Record>
</Collection>
</PropertyValue>
</Record>
</Collection>
</PropertyValue>
</Record>
</Annotation>
</EntitySet>https://developer.microsoft.com/en-us/microsoft-365/blogs/build-advanced-queries-with-count-filter-search-and-orderby/
AB#6355
Parameterize the removal of annotations
AB#8879
Hi, am trying to create an external group, but this isn't working.
Reference Docs: https://docs.microsoft.com/en-us/graph/api/externalconnection-post-groups?view=graph-rest-beta&tabs=http
I have created a connection, schema with some properties. I need to create an externalGroup to restrict access to items for certain users.
I've tried this in postman for example,
POST https://graph.microsoft.com/beta/external/connections/now/groups ("now" is my connection id)
Request Body:
{
"@odata.type": "#microsoft.graph.externalGroup",
"id": "testgroup",
"displayName": "Test Group",
"description": "Test Group"
}
but it doesn't work, I get a 400 Bad Request error with following response Body
Response:
{
"error": {
"code": "InvalidRequest",
"message": "The request is malformed or incorrect.",
"innerError": {
"code": "DeserializationError",
"message": "A type named 'microsoft.substrateConnectors.externalGroup' could not be resolved by the model. When a model is available, each type name must resolve to a valid type.",
"date": "2021-03-14T18:41:29",
"request-id": "60af803c-30e3-4bd7-8d38-0e2fb45f0a0b",
"client-request-id": "60af803c-30e3-4bd7-8d38-0e2fb45f0a0b"
}
}
}
Is this the right way to query this?
Similar Issue can be seen for externalGroupMembers as well. https://docs.microsoft.com/en-us/graph/api/externalgroup-post-members?view=graph-rest-beta&tabs=http
Getting the latest v1.0 OpenAPI document from DevX API results in a duplicate key error for accept action.
Repro steps:
"An item with the same key has already been added. Key: /groups/{group-id}/calendar/calendarView/{event-id}/instances/{event-id1}/microsoft.graph.accept" error is retuned.It looks like this change is coming from our XSLT transform step which adds an additional accept action that is bound to an event.
This is currently blocking the release of PR microsoftgraph/msgraph-sdk-powershell#519.
Related to microsoftgraph/microsoft-graph-devx-api#432.
\cc @MIchaelMainer, @zengin
AB#7828
ConsistencyLevel header should also be added to DirectoryObjects EntitySet :
<EntitySet Name="directoryObjects" EntityType="microsoft.graph.directoryObject">
<Annotation Term="Org.OData.Capabilities.V1.ReadRestrictions">
<Record>
<PropertyValue Property="CustomHeaders">
<Collection>
<Record>
<PropertyValue Property="Name" String="ConsistencyLevel" />
<PropertyValue Property="Description" String="Indicates the requested consistency level." />
<PropertyValue Property="DocumentationURL" String="https://docs.microsoft.com/en-us/graph/api/orgcontact-list?view=graph-rest-beta" />
<PropertyValue Property="Required" Bool="false" />
<PropertyValue Property="ExampleValues">
<Collection>
<Record>
<PropertyValue Property="Value" String="eventual" />
<PropertyValue Property="Description" String="$search and $count queries require the client to set the ConsistencyLevel HTTP header to 'eventual'." />
</Record>
</Collection>
</PropertyValue>
</Record>
</Collection>
</PropertyValue>
</Record>
</Annotation>
</EntitySet>We need to remove the containment for the below navigation property paths:
microsoft.graph.listItem/driveItem
microsoft.graph.sharedDriveItem/driveItem
microsoft.graph.sharedDriveItem/root
microsoft.graph.sharedDriveItem/items
microsoft.graph.site/drive
microsoft.graph.site/drives
microsoft.graph.list/drive
microsoft.graph.onenotePage/parentNotebook
microsoft.graph.onenoteSection/parentNotebook
microsoft.graph.sectionGroup/parentNotebook
microsoft.graph.itemActivityOLD/driveItem
microsoft.graph.itemActivity/driveItem
microsoft.graph.accessPackage/incompatibleGroups
These lead to the generation of multiple redundant paths when converting from CSDL to OpenAPI using the OpenAPI.NET.OData converter lib.
The capability annotations that are limiting access to the DirectoryObject entity set are being applied to all derived types. This is causing valid capabilities to be removed. Capability annotations should be applied to where types are used and not on the type itself where possible. We should remove the capability annotations on DirectoryObject and as the workload to put them in the correct place.
The attribute will be consumed by OpenAPI.NET.OData lib to limit the paths that are expanded. If a navigation property has Explode="false" and ContainsTarget="true", OpenAPI.NET.OData will only generate paths to access the nav property (collection and by-key). All paths after the nav property will be dropped.
This PR in the OpenAPI.NET.OData conversion library will change the expansion logic for containment navigation properties. This means we will have an explosion of paths for containment navigation properties which were hitherto not being expanded. We need to remove the containments of some of the invalid ContainsTarget=true for the cleanMetadataWithDescriptionsAndAnnotationsbeta and cleanMetadataWithDescriptionsAndAnnotationsv1.0 files which the DevX API uses to render OpenAPI documents for PowerShell.
As fileAttachment is not referenced directly anywhere it does not get declared in the OpenAPI description. We need to add the derivedTypeConstraint to ensure that it is referenced.
AB#10902
As reported in hashicorp/terraform-provider-azuread#588
The v1.0 directoryObjects endpoint is missing the @odata.id field in the response. For example:
GET /v1.0/[REDACTED]/directoryObjects/[REDACTED] HTTP/1.1
Host: graph.microsoft.us
User-Agent: HashiCorp Terraform/1.0.7 (+https://www.terraform.io) Terraform Plugin SDK/2.7.0 terraform-provider-azuread/2.2.1 Hamilton (Go-http-client/1.1) pid-222c6c49-1b0a-5959-a213-6608f9eb8820
Accept: application/json
Content-Type: application/json; charset=utf-8
Accept-Encoding: gzipHTTP/1.1 200 OK
Transfer-Encoding: chunked
Cache-Control: no-cache
Client-Request-Id: 4dd395b2-8072-4190-8027-85bc6329bddd
Content-Type: application/json;odata.metadata=minimal;odata.streaming=true;IEEE754Compatible=false;charset=utf-8
Date: Thu, 23 Sep 2021 13:21:27 GMT
Odata-Version: 4.0
Request-Id: 4dd395b2-8072-4190-8027-85bc6329bddd
Strict-Transport-Security: max-age=31536000
Vary: Accept-Encoding
X-Ms-Ags-Diagnostic: {"ServerInfo":{"DataCenter":"USGov Arizona","Slice":"E","Ring":"5","ScaleUnit":"000","RoleInstance":"PH1NEPF00001421"}}
{
"@odata.context": "https://graph.microsoft.us/v1.0/$metadata#directoryObjects/$entity",
"@odata.type": "#microsoft.graph.servicePrincipal",
"id": "[REDACTED]",
"deletedDateTime": null,
"accountEnabled": true,
"alternativeNames": [],
"appDisplayName": "[REDACTED]",
"appDescription": null,
"appId": "[REDACTED]",
"applicationTemplateId": null,
"appOwnerOrganizationId": "[REDACTED]",
"appRoleAssignmentRequired": false,
"createdDateTime": "2020-12-04T14:48:53Z",
"description": null,
"disabledByMicrosoftStatus": null,
"displayName": "[REDACTED]",
"homepage": null,
"loginUrl": null,
"logoutUrl": null,
"notes": null,
"notificationEmailAddresses": [],
"preferredSingleSignOnMode": null,
"preferredTokenSigningKeyThumbprint": null,
"replyUrls": [],
"resourceSpecificApplicationPermissions": [],
"samlSingleSignOnSettings": null,
"servicePrincipalNames": [
"[REDACTED]"
],
"servicePrincipalType": "Application",
"signInAudience": "AzureADMyOrg",
"tags": [
"WindowsAzureActiveDirectoryIntegratedApp"
],
"tokenEncryptionKeyId": null,
"verifiedPublisher": {
"displayName": null,
"verifiedPublisherId": null,
"addedDateTime": null
},
"addIns": [],
"appRoles": [],
"info": {
"logoUrl": null,
"marketingUrl": null,
"privacyStatementUrl": null,
"supportUrl": null,
"termsOfServiceUrl": null
},
"keyCredentials": [],
"oauth2PermissionScopes": [],
"passwordCredentials": []
}connect-graph -Scopes @("User.ReadWrite.All", "MailboxSettings.ReadWrite")
update-user -userId $Id -MailboxSettings @{"timeZone"="Eastern Standard Time"}update-user : The OData request is not supported
PATCH https://graph.microsoft.com/beta/users/id/mailboxSettings
{
"timeZone": "Eastern Standard Time"
}PS 5.1.18362.145
Windows 10 1903 18362.476
Microsoft.Graph.Beta 0.1.3
At the moment when working with powershell, we are explicitly declaring headers in the service schema. One ends up getting a service exception ("code":"Forbidden","message":"MS-APP-ACTS-AS header needs to be set for application context requests.") when using the powershell SDK for commands like Get-MgTeamScheduleSwapShiftChangeRequest.
We will need to support requet builders, PowerShell, model-only scenarios for generation. Each scenario has different requirements. We need to support transforms for each scenario. We want to have a base transform and then primary transforms for each scenario that imports the base transforms.
This update to the metadata that happened on 20th July 2021 removed the workbooks entity set. This caused the generation of multiple paths due to the expansion of navigation property paths of type driveItem during conversion of the CSDL to OpenAPI by the Microsoft.OpenApi.OData lib. v1.0.8 used by the DevX API. This lead to service unavailability in the API due to memory over-utilisation.
The workbooks entity set needs to be reinstated.
AB#10770
This will be used in OpenAPI spec generation
AB#9252
TODO: remove containsTarget
<EntityType Name="onenotePage" BaseType="graph.onenoteEntitySchemaObjectModel" HasStream="true">
<Property Name="title" Type="Edm.String"/>
<Property Name="createdByAppId" Type="Edm.String"/>
<Property Name="links" Type="graph.pageLinks"/>
<Property Name="contentUrl" Type="Edm.String"/>
<Property Name="content" Type="Edm.Stream"/>
<Property Name="lastModifiedDateTime" Type="Edm.DateTimeOffset"/>
<Property Name="level" Type="Edm.Int32"/>
<Property Name="order" Type="Edm.Int32"/>
<Property Name="userTags" Type="Collection(Edm.String)"/>
<NavigationProperty Name="parentSection" Type="graph.onenoteSection" ContainsTarget="true"/>
<NavigationProperty Name="parentNotebook" Type="graph.notebook" ContainsTarget="true"/>
</EntityType>
The sessionControls field of conditional access policies is validated incorrectly and inconsistently. When updating an existing conditional access policy to disable signInFrequency, sometimes this is not possible because the API does not accept the request. This happens with both the v1.0 and beta endpoints.
PATCH /v1.0/57934744-b9ca-4e29-b5df-7578783cc31b/identity/conditionalAccess/policies/8eca5441-5a49-4273-b494-5171957fa938 HTTP/1.1
Host: graph.microsoft.com
User-Agent: HashiCorp Terraform/1.0.6 (+https://www.terraform.io) Terraform Plugin SDK/2.7.0 terraform-provider-azuread/dev Hamilton (Go-http-client/1.1) pid-222c6c49-1b0a-5959-a213-6608f9eb8820
Content-Length: 835
Accept: application/json
Authorization: Bearer [redacted]
Content-Type: application/json; charset=utf-8
Accept-Encoding: gzip
{
"conditions": {
"applications": {
"includeApplications": [
"All"
],
"excludeApplications": [],
"includeUserActions": []
},
"users": {
"includeUsers": [
"All"
],
"excludeUsers": [
"GuestsOrExternalUsers"
],
"includeGroups": [],
"excludeGroups": [],
"includeRoles": [],
"excludeRoles": []
},
"clientAppTypes": [
"browser"
],
"locations": {
"includeLocations": [
"All"
],
"excludeLocations": []
},
"platforms": {
"includePlatforms": [
"all"
],
"excludePlatforms": []
},
"signInRiskLevels": [],
"userRiskLevels": []
},
"displayName": "acctest-CONPOLICY-210916131029741032",
"grantControls": {
"operator": "OR",
"builtInControls": [
"block"
],
"customAuthenticationFactors": [],
"termsOfUse": []
},
"id": "f0b63446-86b9-4f21-8668-5923f4d9db6e",
"sessionControls": {
"applicationEnforcedRestrictions": {
"isEnabled": false
},
"cloudAppSecurity": {
"isEnabled": false
},
"signInFrequency": {
"isEnabled": false
}
},
"state": "disabled"
}HTTP/1.1 400 Bad Request
Date: Thu, 16 Sep 2021 12:46:18 GMT
Content-Type: application/json
Cache-Control: no-cache
Transfer-Encoding: chunked
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
request-id: 33432bcb-7152-4559-a46a-72b6a86466de
client-request-id: 33432bcb-7152-4559-a46a-72b6a86466de
x-ms-ags-diagnostic: {"ServerInfo":{"DataCenter":"UK South","Slice":"E","Ring":"3","ScaleUnit":"000","RoleInstance":"LN2PEPF00003AC1"}}
{
"error": {
"code": "BadRequest",
"message": "1019: SignInFrequency type is invalid. It must be a valid hour or day. For examples, please see API documentation at https://docs.microsoft.com/en-us/graph/api/conditionalaccesspolicy-update?view=graph-rest-1.0.",
"innerError": {
"date": "2021-09-16T12:46:18",
"request-id": "33432bcb-7152-4559-a46a-72b6a86466de",
"client-request-id": "33432bcb-7152-4559-a46a-72b6a86466de"
}
}
}Note that this error only happens in some (as yet undetermined) circumstances, other times the same request is accepted without error:
PATCH /v1.0/57934744-b9ca-4e29-b5df-7578783cc31b/identity/conditionalAccess/policies/9374b53d-7b5c-43b8-9d69-777db20ac896 HTTP/1.1
Host: graph.microsoft.com
User-Agent: HashiCorp Terraform/1.0.6 (+https://www.terraform.io) Terraform Plugin SDK/2.7.0 terraform-provider-azuread/dev Hamilton (Go-http-client/1.1) pid-222c6c49-1b0a-5959-a213-6608f9eb8820
Content-Length: 835
Accept: application/json
Authorization: Bearer [redacted]
Content-Type: application/json; charset=utf-8
Accept-Encoding: gzip
{
"conditions": {
"applications": {
"includeApplications": [
"All"
],
"excludeApplications": [],
"includeUserActions": []
},
"users": {
"includeUsers": [
"All"
],
"excludeUsers": [
"GuestsOrExternalUsers"
],
"includeGroups": [],
"excludeGroups": [],
"includeRoles": [],
"excludeRoles": []
},
"clientAppTypes": [
"browser"
],
"locations": {
"includeLocations": [
"All"
],
"excludeLocations": []
},
"platforms": {
"includePlatforms": [
"all"
],
"excludePlatforms": []
},
"signInRiskLevels": [],
"userRiskLevels": []
},
"displayName": "acctest-CONPOLICY-210916133840745958",
"grantControls": {
"operator": "OR",
"builtInControls": [
"block"
],
"customAuthenticationFactors": [],
"termsOfUse": []
},
"id": "ac7412c6-bfdc-4d3b-9ef2-04a2e51f7c24",
"sessionControls": {
"applicationEnforcedRestrictions": {
"isEnabled": false
},
"cloudAppSecurity": {
"isEnabled": false
},
"signInFrequency": {
"isEnabled": false
}
},
"state": "disabled"
}HTTP/1.1 204 No Content
Date: Thu, 16 Sep 2021 12:43:13 GMT
Content-Length: 0
Cache-Control: no-cache
Strict-Transport-Security: max-age=31536000
request-id: e699dce6-122f-4be9-9130-5a4bf79f8a3e
client-request-id: e699dce6-122f-4be9-9130-5a4bf79f8a3e
x-ms-ags-diagnostic: {"ServerInfo":{"DataCenter":"UK South","Slice":"E","Ring":"3","ScaleUnit":"000","RoleInstance":"LN2PEPF00003315"}}
Related to: hashicorp/terraform-provider-azuread#569
Delta functions need to have annotations added to signal that they will return @Odata.DeltaLink and @OData.NextLink in the response payload.
We need to identify how to annotation the functions properly.
I've noticed a number of issues with Graph v1.0 and beta metadata over the last few months (many still remain). I think Microsoft needs a proper discussion point about the metadata specifically. So the latest has appeared in the beta metadata in the last few days and that is that in the EntityContainer there are conflicting members:
<EntitySet Name="settings" EntityType="microsoft.graph.directorySetting"/>
...
<Singleton Name="settings" Type="microsoft.graph.entitlementManagementSettings"/>
According to the odata docs:
Entity set, singleton, action import, and function import names MUST be unique within an entity container.
The official support page for Microsoft Graph has no spot where you can report an apparent bug. I appreciate I've a back channel through this project but it doesn't seem like the right spot. I'll cross-post this on StackOverflow I suppose.
Any suggestions on where to report this?
$ref should be added to externalSponsors and internalSponsors in Entitlement Management connected organizations for POST and DELETE.
e.g.
POST /identityGovernance/entitlementManagement/connectedOrganizations/{id}/externalSponsors should be POST /identityGovernance/entitlementManagement/connectedOrganizations/{id}/externalSponsors/$ref
Related to microsoftgraph/msgraph-sdk-powershell#516.
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
Django
The Web framework for perfectionists with deadlines.
Laravel
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft
Open source projects and samples from Microsoft.
Google
Google โค๏ธ Open Source for everyone.
Alibaba
Alibaba Open Source for everyone
D3
Data-Driven Documents codes.
Tencent
China tencent open source team.