Policy.ReadWrite.ConsentRequest
Allows the app to read and write your organization's consent requests policy on behalf of the signed-in user.
Merill's Note
For an app to access data in Microsoft Graph, the user or administrator must grant it the permissions it needs. This article lists all the Microsoft Graph APIs and your tenant data that can be accessed by the application (vendor/developer) if you consent to the
Policy.ReadWrite.ConsentRequestpermission.If you need to create an audit report of the permissions granted to all the apps in your tenant, you can run the
Export-MsIdAppConsentGrantReportcommand. See How To: Run a quick OAuth app audit of your tenant
| Category | Application | Delegated |
|---|---|---|
| Identifier | 999f8c63-0a38-4f1b-91fd-ed1947bdd1a9 | 4d135e65-66b8-41a8-9f8b-081452c91774 |
| DisplayText | Read and write your organization's consent request policy | Read and write consent request policy |
| Description | Allows the app to read and write your organization's consent requests policy without a signed-in user. | Allows the app to read and write your organization's consent requests policy on behalf of the signed-in user. |
| AdminConsentRequired | Yes | Yes |
Graph Methods
→ API supports delegated access (access on behalf of a user)
→ API supports app-only access (access without a user)
| Methods | |
|---|---|
Resources
Granting this permission allows the calling application to access (and/or update) the following information in your tenant.
Graph reference: accessReviewReviewerScope
| Property | Type | Description |
|---|---|---|
| query | String | The query specifying who will be the reviewer. |
| queryRoot | String | In the scenario where reviewers need to be specified dynamically, this property is used to indicate the relative source of the query. This property is only required if a relative query, for example, ./manager, is specified. Possible value: decisions. |
| queryType | String | The type of query. Examples include MicrosoftGraph and ARM. |