UserAuthMethod-QR.ReadWrite.All
Allows the app to read and write QR authentication methods of all users in your organization that the signed-in user has access to. This does not allow the app to see secret information like passwords, or to sign-in or otherwise use the authentication methods.
Merill's Note
For an app to access data in Microsoft Graph, the user or administrator must grant it the permissions it needs. This article lists all the Microsoft Graph APIs and your tenant data that can be accessed by the application (vendor/developer) if you consent to the
UserAuthMethod-QR.ReadWrite.Allpermission.If you need to create an audit report of the permissions granted to all the apps in your tenant, you can run the
Export-MsIdAppConsentGrantReportcommand. See How To: Run a quick OAuth app audit of your tenant
| Category | Application | Delegated |
|---|---|---|
| Identifier | 4869299f-18c3-40c8-98f2-222657e67db1 | db39086a-da7d-4cbd-9ac0-6816f9a80c95 |
| DisplayText | Read and write all users' QR methods | Read and write all users' QR methods. |
| Description | Allows the application to read and write QR authentication methods of all users in your organization, without a signed-in user. This does not allow the app to see secret information like passwords, or to sign-in or otherwise use the authentication methods. | Allows the app to read and write QR authentication methods of all users in your organization that the signed-in user has access to. This does not allow the app to see secret information like passwords, or to sign-in or otherwise use the authentication methods. |
| AdminConsentRequired | Yes | Yes |
Graph Methods
→ API supports delegated access (access on behalf of a user)
→ API supports app-only access (access without a user)
| Methods | |
|---|---|
Resources
Granting this permission allows the calling application to access (and/or update) the following information in your tenant.
Graph reference: qrCode
| Property | Type | Description |
|---|---|---|
| createdDateTime | DateTimeOffset | The date and time when the QR code was created. Read-only. |
| expireDateTime | DateTimeOffset | The date and time when the QR code expires. For standard QR codes, the lifetime is in days with a maximum of 395 days (13 months) and a default of 365 days. For temporary QR codes, the lifetime must be between 1-12 hours. The expireDateTime can be edited for standard QR codes but not for temporary QR codes. |
| id | String | The unique identifier (GUID) of the QR code. Inherited from entity. Read-only. |
| image | qrCodeImageDetails | The QR code image data. This property is only returned at the time of creating or resetting the QR code because the private key isn't stored on the server. |
| lastUsedDateTime | DateTimeOffset | The date and time when the QR code was last successfully used for authentication. Read-only. |
| startDateTime | DateTimeOffset | The date and time when the QR code becomes available for use. |