SubjectRightsRequest.Read.All

Allows the app to read subject rights requests on behalf of the signed-in user

Merill's Note

For an app to access data in Microsoft Graph, the user or administrator must grant it the permissions it needs. This article lists all the Microsoft Graph APIs and your tenant data that can be accessed by the application (vendor/developer) if you consent to the SubjectRightsRequest.Read.All permission.

If you need to create an audit report of the permissions granted to all the apps in your tenant, you can run the Export-MsIdAppConsentGrantReport command. See How To: Run a quick OAuth app audit of your tenant

Category	Application	Delegated
Identifier	ee1460f0-368b-4153-870a-4e1ca7e72c42	9c3af74c-fd0f-4db4-b17a-71939e2a9d77
DisplayText	Read all subject rights requests	Read subject rights requests
Description	Allows the app to read subject rights requests without a signed-in user.	Allows the app to read subject rights requests on behalf of the signed-in user
AdminConsentRequired	Yes	Yes

Graph Methods

→ API supports delegated access (access on behalf of a user)
→ API supports app-only access (access without a user)

	Methods
	GET /privacy/subjectRightsRequests
	GET /privacy/subjectRightsRequests/{subjectRightsRequestId}
	GET /privacy/subjectRightsRequests/{subjectRightsRequestId}/getFinalAttachment
	GET /privacy/subjectRightsRequests/{subjectRightsRequestId}/notes
	GET /privacy/subjectRightsRequests/4EF5E3E6-545B-4B5F-A8B4-FF4F9980D7A9/getFinalReport
	GET /security/subjectRightsRequests
	GET /security/subjectRightsRequests/{subjectRightsRequestId}
	GET /security/subjectRightsRequests/{subjectRightsRequestId}/getFinalAttachment
	GET /security/subjectRightsRequests/{subjectRightsRequestId}/notes
	GET /security/subjectRightsRequests/4EF5E3E6-545B-4B5F-A8B4-FF4F9980D7A9/getFinalReport

→ API supports delegated access (access on behalf of a user)
→ API supports app-only access (access without a user)

	Methods
	GET /privacy/subjectRightsRequests
	GET /privacy/subjectRightsRequests/{subjectRightsRequestId}
	GET /privacy/subjectRightsRequests/{subjectRightsRequestId}/getFinalAttachment
	GET /privacy/subjectRightsRequests/{subjectRightsRequestId}/getFinalReport
	GET /privacy/subjectRightsRequests/{subjectRightsRequestId}/notes
	GET /security/subjectRightsRequests
	GET /security/subjectRightsRequests/{subjectRightsRequestId}
	GET /security/subjectRightsRequests/{subjectRightsRequestId}/getFinalAttachment
	GET /security/subjectRightsRequests/{subjectRightsRequestId}/getFinalReport
	GET /security/subjectRightsRequests/{subjectRightsRequestId}/notes

→ Command supports delegated access (access on behalf of a user)
→ Command supports app-only access (access without a user)

	Commands
	Get-MgPrivacySubjectRightsRequest
	Get-MgPrivacySubjectRightsRequestNote
	Get-MgSecuritySubjectRightsRequestFinalAttachment
	Get-MgSecuritySubjectRightsRequestFinalReport

→ Command supports delegated access (access on behalf of a user)
→ Command supports app-only access (access without a user)

	Commands
	Get-MgBetaPrivacySubjectRightsRequest
	Get-MgBetaPrivacySubjectRightsRequestNote
	Get-MgBetaSecuritySubjectRightsRequestFinalAttachment
	Get-MgBetaSecuritySubjectRightsRequestFinalReport

Resources

Granting this permission allows the calling application to access (and/or update) the following information in your tenant.

authoredNote

Graph reference: authoredNote

Property	Type	Description
author	identity	Identity information about the note's author.
content	itemBody	The content of the note.
createdDateTime	DateTimeOffset	The date and time when the entity was created. The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is `2014-01-01T00:00:00Z`.

Table of Contents

SubjectRightsRequest.Read.All

Graph Methods

Resources