Updates from: 08/27/2021 03:09:47
Service Microsoft Docs article Related commit history on GitHub Change details
v1.0 Channel List Messages https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/channel-list-messages.md
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
v1.0 Chat List Messages https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/chat-list-messages.md
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
v1.0 Chat List https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/chat-list.md
GET /chats
## Optional query parameters
-This method supports the `$expand` (only for the **members** property) and `$filter` [OData query parameters](/graph/query-parameters) to help customize the response.
+This method supports the `$expand` (**members** and **lastMessagePreview** properties) and `$filter` [OData query parameters](/graph/query-parameters) to help customize the response.
## Request headers
If successful, this method returns a `200 OK` response code and a collection of
## Example
-### Example 1: List all the chats
+### Example 1: List all chats
#### Request
Content-type: application/json
} ```
-### Example 2: List all the chats along with the members of each chat
+### Example 2: List all chats along with the members of each chat
#### Request Here is an example of the request.
GET https://graph.microsoft.com/beta/users/8b081ef6-4792-4def-b2c9-c363a1bf41d5/
Here is an example of the response. > [!NOTE]
-> The membership IDs returned by the server must be treated as opaque strings. The client should not try to parse or make any assumptions about these resource IDs.
->
-> The membership results can map to users from different tenants, as indicated in the response, in the future. The client should not assume that all members are from the current tenant only.
+> The membership IDs returned by the server must be treated as opaque strings. The client shouldn't try to parse or make any assumptions about these resource IDs.
>**Note:** The response object shown here might be shortened for readability.
Content-type: application/json
} ```
-### Example 4: List all the chats that have a member with a specific display name
+### Example 4: List all chats that have a member with a specific display name
#### Request
v1.0 Chatmessage List Replies https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/chatmessage-list-replies.md
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
v1.0 Chatmessage Post Replies https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/chatmessage-post-replies.md
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
HTTP/1.1 200 OK
"from":{ "application":null, "device":null,
- "conversation":null,
"user":{ "id":"8c0a1a67-50ce-4114-bb6c-da9c5dbcf6ca", "displayName":"Joh Doe",
v1.0 Chatmessage Post https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/chatmessage-post.md
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
v1.0 Educationuser List Assignments https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/educationuser-list-assignments.md
One of the following permissions is required to call this API. To learn more, in
## HTTP request <!-- { "blockType": "ignored" } --> ```http
-GET /education/users/{id}/assignments
+GET /education/me/assignments
``` ## Optional query parameters
v1.0 Identitycontainer List Identityproviders https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/identitycontainer-list-identityproviders.md
+
+ Title: "List identityProviders"
+description: "Get a collection of identity provider resources that are configured for a tenant, and that are derived from identityProviderBase."
+localization_priority: Normal
+++
+# List identityProviders
+Namespace: microsoft.graph
++
+Get a collection of identity provider resources that are configured for a tenant, and that are derived from [identityProviderBase](../resources/identityproviderbase.md).
+
+For an Azure AD tenant, the providers can be [socialIdentityProviders](../resources/socialidentityprovider.md) or [builtinIdentityProviders](../resources/builtinidentityprovider.md) objects.
+
+For an Azure AD B2C, the providers can be [socialIdentityProvider](../resources/socialidentityprovider.md), [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md), or [appleManagedIdentityProvider](../resources/applemanagedidentityprovider.md) objects.
+
+## Permissions
+
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
+
+|Permission type | Permissions (from least to most privileged) |
+|:--|:|
+|Delegated (work or school account)|IdentityProvider.Read.All, IdentityProvider.ReadWrite.All|
+|Delegated (personal Microsoft account)| Not supported.|
+|Application|IdentityProvider.Read.All, IdentityProvider.ReadWrite.All|
+
+The work or school account needs to belong to one of the following roles:
+
+* Global Administrator
+* External Identity Provider Administrator
+* External ID user flow administrator
+
+## HTTP request
+
+<!-- { "blockType": "ignored" } -->
+
+```http
+GET /identity/identityProviders
+```
+
+## Request headers
+
+|Name|Description|
+|:|:-|
+|Authorization|Bearer {token}. Required.|
+
+## Request body
+
+Do not supply a request body for this method.
+
+## Response
+
+If successful, this method returns a `200 OK` response code and a collection of [socialIdentityProvider](../resources/socialidentityprovider.md), or [builtinIdentityProvider](../resources/builtinidentityprovider.md) objects in the response body for an Azure AD tenant.
+
+For an Azure AD B2C tenant this method returns a `200 OK` response code and a collection of [socialIdentityProvider](../resources/socialidentityprovider.md), [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md), or [appleManagedIdentityProvider](../resources/applemanagedidentityprovider.md) objects in the response body.
+
+## Examples
+
+### Example 1: List all identity provider resources configured in an Azure AD tenant
+
+#### Request
+The following is an example of the request.
+
+# [HTTP](#tab/http)
+<!-- {
+ "blockType": "request",
+ "name": "get_identityproviderbase"
+}
+-->
+
+``` http
+GET https://graph.microsoft.com/beta/identity/identityProviders
+```
+# [C#](#tab/csharp)
+
+# [JavaScript](#tab/javascript)
+
+# [Objective-C](#tab/objc)
+
+# [Java](#tab/java)
+++
+#### Response
+The following is an example of the response.
+
+>**Note:** The response object shown here might be shortened for readability.
+
+<!-- {
+ "blockType": "response",
+ "truncated": true,
+ "@odata.type": "microsoft.graph.identityProviderBase",
+ "isCollection": true
+} -->
+
+``` http
+HTTP/1.1 200 OK
+Content-Type: application/json
+
+{
+ "@odata.context": "https://graph.microsoft.com/beta/$metadata#identity/identityProviders",
+ "value":[
+ {
+ "@odata.type": "microsoft.graph.builtInIdentityProvider",
+ "id": "MSASignup-OAUTH",
+ "identityProviderType": "MicrosoftAccount",
+ "displayName": "MicrosoftAccount"
+ },
+ {
+ "@odata.type": "#microsoft.graph.socialIdentityProvider",
+ "id": "Facebook-OAUTH",
+ "displayName": "Facebook",
+ "identityProviderType": "Facebook",
+ "clientId": "test",
+ "clientSecret": "******"
+ }
+ ]
+}
+```
+
+### Example 2: List all **identityProvider** configured in an Azure AD B2C tenant
+
+#### Request
+The following is an example of the request.
+
+<!-- {
+ "blockType": "request",
+ "name": "get_identityproviderbase"
+}
+-->
+
+``` http
+GET https://graph.microsoft.com/beta/identity/identityProviders
+```
+
+#### Response
+The following is an example of the response.
+
+>**Note:** The response object shown here might be shortened for readability.
+
+<!-- {
+ "blockType": "response",
+ "truncated": true,
+ "@odata.type": "microsoft.graph.identityProviderBase",
+ "isCollection": true
+} -->
+
+```http
+HTTP/1.1 200 OK
+Content-type: application/json
+
+{
+ "@odata.context": "https://graph.microsoft.com/beta/$metadata#identity/identityProviders",
+ "value": [
+ {
+ "@odata.type": "#microsoft.graph.socialIdentityProvider",
+ "id": "LinkedIn-OAUTH",
+ "displayName": "linkedin",
+ "identityProviderType": "LinkedIn",
+ "clientId": "866xc0qtyy00ih",
+ "clientSecret": "******"
+ },
+ {
+ "@odata.type": "#microsoft.graph.openIdConnectIdentityProvider",
+ "id": "OIDC-V1-rtt_AD_Test-3e393390-ed2d-4794-97f6-5c1a1ccc61f7",
+ "displayName": "OIDC AD Test",
+ "clientId": "fe1b3476-rdca-4bef-b321-076fde19750b",
+ "clientSecret": "******",
+ "scope": "openid",
+ "metadataUrl": "https://login.microsoftonline.com/sashawho.onmicrosoft.com/.well-known/openid-configuration",
+ "domainHint": "",
+ "responseType": "code",
+ "responseMode": "form_post",
+ "claimsMapping": {
+ "userId": "oid",
+ "displayName": "name",
+ "givenName": "given_name",
+ "surname": "family_name",
+ "email": "unique_email"
+ }
+ },
+ {
+ "@odata.type": "#microsoft.graph.appleManagedIdentityProvider",
+ "id": "Apple-Managed-OIDC",
+ "displayName": "Sign in with Apple",
+ "developerId": "UBF8T346G9",
+ "serviceId": "com.microsoft.aad.b2c.iuyt.client",
+ "keyId": "99P6DD87C4",
+ "certificateData": "******"
+ }
+ ]
+}
+
+```
v1.0 Identitycontainer Post Identityproviders https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/identitycontainer-post-identityproviders.md
+
+ Title: "Create identityProvider"
+description: "Create a new identityProvider object."
+localization_priority: Normal
+++
+# Create identityProvider
+Namespace: microsoft.graph
++
+Create an identity provider resource that is of the type specified in the request body.
+
+Among the types of providers derived from identityProviderBase, you can currently create a [socialIdentityProvider](../resources/socialidentityprovider.md) resource in Azure AD. In Azure AD B2C, this operation can currently create a [socialIdentityProvider](../resources/socialidentityprovider.md), [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md), or an [appleManagedIdentityProvider](../resources/applemanagedidentityprovider.md) resource.
+
+## Permissions
+
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
+
+|Permission type | Permissions (from least to most privileged) |
+|:--|:|
+|Delegated (work or school account)|IdentityProvider.ReadWrite.All|
+|Delegated (personal Microsoft account)| Not supported.|
+|Application|IdentityProvider.ReadWrite.All|
+
+The work or school account needs to belong to one of the following roles:
+
+* Global Administrator
+* External Identity Provider Administrator
+
+## HTTP request
+
+<!-- { "blockType": "ignored" } -->
+
+```http
+POST /identity/identityProviders
+```
+
+## Request headers
+
+|Name|Description|
+|:|:-|
+|Authorization|Bearer {token}. Required.|
+|Content-Type|application/json. Required.|
+
+## Request body
+
+In the request body, provide a JSON representation of [socialIdentityProvider](../resources/socialidentityprovider.md) object in Azure AD.
+
+In Azure AD B2C provide a JSON representation of [socialIdentityProvider](../resources/socialidentityprovider.md), [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md), or an [appleManagedIdentityProvider](../resources/applemanagedidentityprovider.md) object.
+
+All the properties listed in the following tables are required.
+
+### socialIdentityProvider object
+
+|Property|Type|Description|
+|:|:--|:-|
+|clientId|String|The client identifier for the application obtained when registering the application with the identity provider.|
+|clientSecret|String|The client secret for the application that is obtained when the application is registered with the identity provider. This is write-only. A read operation returns `****`.|
+|displayName|String|The display name of the identity provider.|
+|identityProviderType|String|For a B2B scenario, possible values: `Google`, `Facebook`. For a B2C scenario, possible values: `Microsoft`, `Google`, `Amazon`, `LinkedIn`, `Facebook`, `GitHub`, `Twitter`, `Weibo`, `QQ`, `WeChat`.|
+
+### openIdConnectIdentityProvider object
+
+|Property|Type|Description|
+|:|:--|:-|
+|clientId|String|The client ID for the application obtained when registering the application with the identity provider.|
+|clientSecret|String|The client secret for the application obtained when registering the application with the identity provider. The clientSecret has a dependency on **responseType**. <ul><li>When **responseType** is `code`, a secret is required for the auth code exchange.</li><li>When **responseType** is `id_token` the secret is not required because there is no code exchangeΓÇöthe id_token is returned directly from the authorization response.</li></ul>|
+|displayName|String|The display name of the identity provider.|
+|domainHint|String|The domain hint can be used to skip directly to the sign in page of the specified identity provider, instead of having the user make a selection among the list of available identity providers.|
+|claimsMapping|[claimsMapping](../resources/claimsmapping.md)|After the OIDC provider sends an ID token back to Azure AD, Azure AD needs to be able to map the claims from the received token to the claims that Azure AD recognizes and uses. This complex type captures that mapping.|
+|metadataUrl|String|The URL for the metadata document of the OpenID Connect identity provider. Every OpenID Connect identity provider describes a metadata document that contains most of the information required to perform sign-in. This includes information such as the URLs to use and the location of the service's public signing keys. The OpenID Connect metadata document is always located at an endpoint that ends in `.well-known/openid-configuration`. Provide the metadata URL for the OpenID Connect identity provider you add.|
+|responseMode|String|The response mode defines the method used to send data back from the custom identity provider to Azure AD B2C. Possible values: `form_post`, `query`.|
+|responseType|String|The response type describes the type of information sent back in the initial call to the authorization_endpoint of the custom identity provider. Possible values: `code` , `id_token` , `token`.|
+|scope|String|Scope defines the information and permissions you are looking to gather from your custom identity provider.|
+
+### appleIdentityProvider object
+
+|Property|Type|Description|
+|:|:--|:-|
+|displayName|String|The display name of the identity provider.|
+|developerId|String|The Apple developer identifier.|
+|serviceId|String|The Apple service identifier.|
+|keyId|String|The Apple key identifier.|
+|certificateData|String|The certificate data which is a long string of text from the certificate, can be null.|
+
+## Response
+
+If successful, this method returns a `201 Created` response code and a JSON representation of a [socialIdentityProvider](../resources/socialidentityprovider.md) object in the response body for an Azure AD tenant.
+
+For an Azure AD B2C tenant, this method returns a `201 Created` response code and a JSON representation of a [socialIdentityProvider](../resources/socialidentityprovider.md), [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md), or an [appleManagedIdentityProvider](../resources/applemanagedidentityprovider.md) object in the response body.
+
+If unsuccessful, a `4xx` error will be returned with specific details.
+
+## Examples
+
+### Example 1: Create a specific **social identity provider** (Azure AD and Azure AD B2C)
+
+#### Request
+
+The following is an example of the request.
+
+# [HTTP](#tab/http)
+<!-- {
+ "blockType": "request",
+ "name": "create_socialidentityprovider_from_identityproviderbase"
+}
+-->
+
+``` http
+POST https://graph.microsoft.com/beta/identity/identityProviders
+Content-type: application/json
+Content-length: 154
+
+{
+ "@odata.type": "microsoft.graph.socialIdentityProvider",
+ "displayName": "Login with Amazon",
+ "identityProviderType": "Amazon",
+ "clientId": "56433757-cadd-4135-8431-2c9e3fd68ae8",
+ "clientSecret": "000000000000"
+}
+```
+
+# [C#](#tab/csharp)
+
+# [JavaScript](#tab/javascript)
+
+# [Objective-C](#tab/objc)
+
+# [Java](#tab/java)
+++
+#### Response
+
+The following is an example of the response.
+
+>**Note:** The response object shown here might be shortened for readability.
+
+<!-- {
+ "blockType": "response",
+ "truncated": true,
+ "@odata.type": "microsoft.graph.socialIdentityProvider"
+} -->
+
+```http
+HTTP/1.1 201 Created
+Content-type: application/json
+
+{
+ "@odata.type": "microsoft.graph.socialIdentityProvider",
+ "id": "Amazon-OAUTH",
+ "displayName": "Login with Amazon",
+ "identityProviderType": "Amazon",
+ "clientId": "56433757-cadd-4135-8431-2c9e3fd68ae8",
+ "clientSecret": "000000000000"
+}
+```
+
+### Example 2: Create a specific **OpenID Connect identity provider** (only for Azure AD B2C)
+
+#### Request
+
+The following is an example of the request.
+
+# [HTTP](#tab/http)
+<!-- {
+ "blockType": "request",
+ "name": "create_openidconnectidentityprovider_from_identityproviderbase"
+}
+-->
+
+``` http
+POST https://graph.microsoft.com/beta/identity/identityProviders
+Content-type: application/json
+
+{
+ "@odata.type": "microsoft.graph.openIdConnectIdentityProvider",
+ "displayName": "Login with the Contoso identity provider",
+ "clientId": "56433757-cadd-4135-8431-2c9e3fd68ae8",
+ "clientSecret": "12345",
+ "claimsMapping": {
+ "userId": "myUserId",
+ "givenName": "myGivenName",
+ "surname": "mySurname",
+ "email": "myEmail",
+ "displayName": "myDisplayName"
+ },
+ "domainHint": "mycustomoidc",
+ "metadataUrl": "https://mycustomoidc.com/.well-known/openid-configuration",
+ "responseMode": "form_post",
+ "responseType": "code",
+ "scope": "openid"
+}
+
+```
+
+# [C#](#tab/csharp)
+
+# [JavaScript](#tab/javascript)
+
+# [Objective-C](#tab/objc)
+
+# [Java](#tab/java)
+++
+#### Response
+
+The following is an example of the response.
+
+>**Note:** The response object shown here might be shortened for readability.
+
+<!-- {
+ "blockType": "response",
+ "truncated": true,
+ "@odata.type": "microsoft.graph.openIdConnectIdentityProvider"
+} -->
+
+```http
+HTTP/1.1 201 Created
+Content-type: application/json
+
+{
+ "@odata.type": "microsoft.graph.openIdConnectIdentityProvider",
+ "id": "OIDC-V1-MyTest-085a8a0c-58cb-4b6d-8e07-1328ea404e1a",
+ "displayName": "Login with the Contoso identity provider",
+ "clientId": "56433757-cadd-4135-8431-2c9e3fd68ae8",
+ "clientSecret": "12345",
+ "claimsMapping": {
+ "userId": "myUserId",
+ "givenName": "myGivenName",
+ "surname": "mySurname",
+ "email": "myEmail",
+ "displayName": "myDisplayName"
+ },
+ "domainHint": "mycustomoidc",
+ "metadataUrl": "https://mycustomoidc.com/.well-known/openid-configuration",
+ "responseMode": "form_post",
+ "responseType": "code",
+ "scope": "openid"
+}
+```
+
+### Example 3: Retrieves Apple identity provider (only for Azure AD B2C)
+
+#### Request
+
+The following is an example of the request.
+
+<!-- {
+ "blockType": "request",
+ "name": "create_applemanagedidentityprovider_from_identityproviderbase"
+}
+-->
+
+``` http
+POST https://graph.microsoft.com/beta/identity/identityProviders
+Content-type: application/json
+Content-length: 154
+
+{
+ "@odata.type": "microsoft.graph.appleManagedIdentityProvider",
+ "displayName": "Sign in with Apple",
+ "developerId": "UBF8T346G9",
+ "serviceId": "com.microsoft.rts.b2c.test.client",
+ "keyId": "99P6D879C4",
+ "certificateData": "******"
+}
+```
+
+#### Response
+
+The following is an example of the response.
+
+>**Note:** The response object shown here might be shortened for readability.
+
+<!-- {
+ "blockType": "response",
+ "truncated": true,
+ "@odata.type": "microsoft.graph.appleManagedIdentityProvider"
+} -->
+
+```http
+HTTP/1.1 201 Created
+Content-type: application/json
+
+{
+ "@odata.type": "microsoft.graph.appleManagedIdentityProvider",
+ "id": "Apple-Managed-OIDC",
+ "displayName": "Sign in with Apple",
+ "developerId": "UBF8T346G9",
+ "serviceId": "com.microsoft.rts.b2c.test.client",
+ "keyId": "99P6D879C4",
+ "certificateData": "******"
+}
+```
v1.0 Identityproviderbase Availableprovidertypes https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/identityproviderbase-availableprovidertypes.md
+
+ Title: "List availableProviderTypes"
+description: "Retrieve all supported identity providers in the directory."
+localization_priority: Normal
+++
+# List availableProviderTypes
+
+Namespace: microsoft.graph
++
+Get all identity providers supported in a directory.
+
+## Permissions
+
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
+
+|Permission type | Permissions (from least to most privileged) |
+|:--|:|
+|Delegated (work or school account)|IdentityProvider.Read.All, IdentityProvider.ReadWrite.All|
+|Delegated (personal Microsoft account)| Not supported.|
+|Application|IdentityProvider.Read.All, IdentityProvider.ReadWrite.All|
+
+The work or school account needs to belong to one of the following roles:
+
+* Global Administrator
+* External Identity Provider Administrator
+
+## HTTP request
+
+<!-- { "blockType": "ignored" } -->
+
+```http
+GET /identity/identityProviders/availableProviderTypes
+```
+
+## Request headers
+
+|Name|Description|
+|:|:-|
+|Authorization|Bearer {token}. Required.|
+
+## Request body
+Do not supply a request body for this method.
+
+## Response
+
+If successful, this function returns a `200 OK` response code and a string collection in the response body. The string collection contains the names of the identity providers supported in the tenant.
+
+## Example
+
+### Example 1: List all **identityProvider** available in an Azure AD directory
+
+#### Request
+The following is an example of the request.
+
+# [HTTP](#tab/http)
+<!-- {
+ "blockType": "request",
+ "name": "identityprovider_availableprovidertypes"
+}
+-->
+
+``` http
+GET https://graph.microsoft.com/beta/identity/identityProviders/availableProviderTypes
+```
+
+# [C#](#tab/csharp)
+
+# [JavaScript](#tab/javascript)
+
+# [Objective-C](#tab/objc)
+
+# [Java](#tab/java)
+++
+#### Response
+
+The following is an example of the response.
+
+>**Note:** The response object shown here might be shortened for readability.
+
+<!-- {
+ "blockType": "response",
+ "truncated": true,
+ "@odata.type": "Collection(Edm.String)"
+}
+-->
+
+``` http
+HTTP/1.1 200 OK
+Content-Type: application/json
+
+{
+ "@odata.context": "https://graph.microsoft.com/beta/$metadata#Collection(Edm.String)",
+ "value": [
+ "MicrosoftAccount",
+ "EmailOTP",
+ "Facebook",
+ "Google"
+ ]
+}
+```
+
+### Example 2: List all **identityProvider** available in an Azure AD B2C directory
+
+#### Request
+The following is an example of the request.
+
+# [HTTP](#tab/http)
+<!-- {
+ "blockType": "request",
+ "name": "identityprovider_availableprovidertypes_b2c"
+}
+-->
+
+``` http
+GET https://graph.microsoft.com/beta/identity/identityProviders/availableProviderTypes
+```
+
+# [C#](#tab/csharp)
+
+# [JavaScript](#tab/javascript)
+
+# [Objective-C](#tab/objc)
+
+# [Java](#tab/java)
+++
+#### Response
+
+The following is an example of the response.
+
+>**Note:** The response object shown here might be shortened for readability.
+
+<!-- {
+ "blockType": "response",
+ "truncated": true,
+ "@odata.type": "Collection(Edm.String)"
+}
+-->
+
+``` http
+HTTP/1.1 200 OK
+Content-Type: application/json
+
+{
+ "@odata.context": "https://graph.microsoft.com/beta/$metadata#Collection(Edm.String)",
+ "value": [
+ "Microsoft",
+ "Google",
+ "Facebook",
+ "Amazon",
+ "LinkedIn",
+ "Weibo",
+ "QQ",
+ "WeChat",
+ "Twitter",
+ "GitHub",
+ "AppleManaged",
+ "OpenIdConnect"
+ ]
+}
+```
v1.0 Identityproviderbase Delete https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/identityproviderbase-delete.md
Namespace: microsoft.graph
[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)]
-Delete a [socialIdentityProvider](../resources/socialidentityprovider.md) object in Azure AD.
+Delete an identity provider resource that is of the type specified by the **id** in the request.
-In Azure AD B2C, delete a [socialIdentityProvider](../resources/socialidentityprovider.md), [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md) or an [appleIdentityProvider](../resources/appleidentityprovider.md) object.
+Among the types of providers derived from identityProviderBase, you can currently delete a [socialIdentityProvider](../resources/socialidentityprovider.md) resource in Azure AD. In Azure AD B2C, this operation can currently delete a [socialIdentityProvider](../resources/socialidentityprovider.md), [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md), or an [appleManagedIdentityProvider](../resources/applemanagedidentityprovider.md) resource.
## Permissions
v1.0 Identityproviderbase Get https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/identityproviderbase-get.md
Namespace: microsoft.graph
[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)]
-Retrieve the properties and relationships of a [socialIdentityProvider](../resources/socialidentityprovider.md) or a [builtinIdentityProvider](../resources/builtinidentityprovider.md) in Azure AD.
+Get the properties and relationships of the specified identity provider configured in the tenant.
-For Azure AD B2C, it can retrieve properties and relationships of a [socialIdentityProvider](../resources/socialidentityprovider.md), [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md) or an [appleIdentityProvider](../resources/appleidentityprovider.md).
+Among the types of providers derived from identityProviderBase, you can currently get a [socialIdentityProvider](../resources/socialidentityprovider.md) or a [builtinIdentityProvider](../resources/builtinidentityprovider.md) resource in Azure AD. In Azure AD B2C, this operation can currently get a [socialIdentityProvider](../resources/socialidentityprovider.md), [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md), or an [appleManagedIdentityProvider](../resources/applemanagedidentityprovider.md) resource.
## Permissions
Do not supply a request body for this method.
If successful, this method returns a `200 OK` response code and a JSON representation of a [socialIdentityProvider](../resources/socialidentityprovider.md) or a [builtinIdentityProvider](../resources/builtinidentityprovider.md) in the response body for an Azure AD tenant.
-For an Azure AD B2C tenant, this method returns a `200 OK` response code and a JSON representation of a [socialIdentityProvider](../resources/socialidentityprovider.md), [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md) or an [appleIdentityProvider](../resources/appleidentityprovider.md) object in the response body.
+For an Azure AD B2C tenant, this method returns a `200 OK` response code and a JSON representation of a [socialIdentityProvider](../resources/socialidentityprovider.md), [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md), or an [appleManagedIdentityProvider](../resources/applemanagedidentityprovider.md) object in the response body.
## Examples
For an Azure AD B2C tenant, this method returns a `200 OK` response code and a J
The following is an example of the request. - # [HTTP](#tab/http) <!-- { "blockType": "request",
The following is an example of the request.
``` http GET https://graph.microsoft.com/beta/identity/identityProviders/Amazon-OAUTH ```+ # [C#](#tab/csharp) [!INCLUDE [sample-code](../includes/snippets/csharp/get-socialidentityprovider-from-identityproviderbase-csharp-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]
GET https://graph.microsoft.com/beta/identity/identityProviders/Amazon-OAUTH
- #### Response The following is an example of the response.
+>**Note:** The response object shown here might be shortened for readability.
<!-- { "blockType": "response",
Content-type: application/json
The following is an example of the request. - # [HTTP](#tab/http) <!-- { "blockType": "request",
The following is an example of the request.
``` http GET https://graph.microsoft.com/beta/identity/identityProviders/MSASignup-OAUTH ```+ # [C#](#tab/csharp) [!INCLUDE [sample-code](../includes/snippets/csharp/get-builtinidentityprovider-from-identityproviderbase-csharp-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]
GET https://graph.microsoft.com/beta/identity/identityProviders/MSASignup-OAUTH
- #### Response The following is an example of the response.
+>**Note:** The response object shown here might be shortened for readability.
<!-- { "blockType": "response",
Content-type: application/json
The following is an example of the request. - # [HTTP](#tab/http) <!-- { "blockType": "request",
The following is an example of the request.
``` http GET https://graph.microsoft.com/beta/identity/identityProviders/OIDC-V1-test-icm-4470de58-86c2-4a3f-a22c-63c9366cd000 ```+ # [C#](#tab/csharp) [!INCLUDE [sample-code](../includes/snippets/csharp/get-openidconnectidentityprovider-from-identityproviderbase-csharp-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]
GET https://graph.microsoft.com/beta/identity/identityProviders/OIDC-V1-test-icm
- #### Response The following is an example of the response.
+>**Note:** The response object shown here might be shortened for readability.
<!-- { "blockType": "response", "truncated": true,
Content-type: application/json
The following is an example of the request. - # [HTTP](#tab/http) <!-- { "blockType": "request",
The following is an example of the request.
``` http GET https://graph.microsoft.com/beta/identity/identityProviders/Apple-Managed-OIDC ```+ # [C#](#tab/csharp) [!INCLUDE [sample-code](../includes/snippets/csharp/get-applemanagedidentityprovider-from-identityproviderbase-csharp-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]
GET https://graph.microsoft.com/beta/identity/identityProviders/Apple-Managed-OI
- #### Response The following is an example of the response.
+>**Note:** The response object shown here might be shortened for readability.
<!-- { "blockType": "response",
v1.0 Identityproviderbase Update https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/identityproviderbase-update.md
Namespace: microsoft.graph
[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)]
-Update the properties of a [socialIdentityProvider](../resources/socialidentityprovider.md) object in Azure AD.
+Update the properties of the specified identity provider configured in the tenant.
-For Azure AD B2C, update the properties of a [socialIdentityProvider](../resources/socialidentityprovider.md), [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md) or an [appleIdentityProvider](../resources/appleidentityprovider.md) object.
+Among the types of providers derived from identityProviderBase, you can currently update a [socialIdentityProvider](../resources/socialidentityprovider.md) resource in Azure AD. In Azure AD B2C, this operation can currently update a [socialIdentityProvider](../resources/socialidentityprovider.md), [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md), or an [appleManagedIdentityProvider](../resources/applemanagedidentityprovider.md) resource.
## Permissions
PATCH /identity/identityProviders/{id}
In the request body, provide a JSON object with one or more properties that need to be updated for a [socialIdentityProvider](../resources/socialidentityprovider.md) object in Azure AD tenant.
-In Azure AD B2C, provide a JSON object with one or more properties that need to be updated for a [socialIdentityProvider](../resources/socialidentityprovider.md), [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md) or an [appleIdentityProvider](../resources/appleidentityprovider.md) object.
+In Azure AD B2C, provide a JSON object with one or more properties that need to be updated for a [socialIdentityProvider](../resources/socialidentityprovider.md), [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md), or an [appleManagedIdentityProvider](../resources/applemanagedidentityprovider.md) object.
### socialIdentityProvider object
In Azure AD B2C, provide a JSON object with one or more properties that need to
|Property|Type|Description| |:|:--|:-| |displayName|String|The display name of the identity provider.|
-|developerId|String|The Apple Developer identifier.|
-|serviceId|String|The Apple Developer identifier.|
-|keyId|String|The Apple Key identifier.|
+|developerId|String|The Apple developer identifier.|
+|serviceId|String|The Apple service identifier.|
+|keyId|String|The Apple key identifier.|
|certificateData|String|The certificate data which is a long string of text from the certificate, can be null.| ## Response
The following is an example of the request.
``` http PATCH https://graph.microsoft.com/beta/identity/identityProviders/OIDC-V1-Nam_AD_Test-3e393390-ed2d-4794-97f6-5c999ccc61f7 Content-type: application/json
-Content-length: 41
{ "responseType": "id_token"
The following is an example of the request.
``` http PATCH https://graph.microsoft.com/beta/identity/identityProviders/Apple-Managed-OIDC Content-type: application/json
-Content-length: 41
{ "displayName": "Apple"
v1.0 Participant Delete https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/participant-delete.md
doc_type: apiPageType
Namespace: microsoft.graph
-Delete a specific participant in a call. In some situations, it is appropriate for an application to remove a participant from an active call. This action can be done after the participant answers the call. When an active caller is removed, they are immediately dropped from the call with no pre- or post-removal notification.
+Delete a specific participant in a call. In some situations, it is appropriate for an application to remove a participant from an active call. This action can be done before or after the participant answers the call. When an active caller is removed, they are immediately dropped from the call with no pre- or post-removal notification. When an invited participant is removed, any outstanding add participant request is canceled.
## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
Do not supply a request body for this method.
## Response If successful, this method returns a `204 No Content` response code. It does not return anything in the response body.
-## Example
+## Examples
-### Request
+### Example 1: Cancel active participant
+
+#### Request
The following example shows the request. # [HTTP](#tab/http)
DELETE https://graph.microsoft.com/beta/communications/calls/{id}/participants/{
-### Response
+#### Response
+
+> **Note:** The response object shown here might be shortened for readability.
+
+<!-- {
+ "blockType": "response",
+ "truncated": true
+} -->
+```http
+HTTP/1.1 204 No Content
+```
+
+<!-- uuid: 8fcb5dbc-d5aa-4681-8e31-b001d5168d79
+2015-10-25 14:57:30 UTC -->
+<!-- {
+ "type": "#page.annotation",
+ "description": "Delete participant",
+ "keywords": "",
+ "section": "documentation",
+ "tocPath": ""
+}-->
+
+### Example 2: Cancel invited non active participant
+
+#### Invite a participant to an existing call
+
+<!-- {
+ "blockType": "request",
+ "name": "participant-invite-1"
+}-->
+```http
+POST https://graph.microsoft.com/beta/communications/calls/{id}/participants/invite
+Content-Type: application/json
+Content-Length: 464
+
+{
+ "participants": [
+ {
+ "@odata.type": "#microsoft.graph.invitationParticipantInfo",
+ "replacesCallId": "a7ebfb2d-871e-419c-87af-27290b22e8db",
+ "identity": {
+ "@odata.type": "#microsoft.graph.identitySet",
+ "user": {
+ "@odata.type": "#microsoft.graph.identity",
+ "id": "278405a3-f568-4b3e-b684-009193463064",
+ "identityProvider": "AAD"
+ }
+ }
+ }
+ ],
+ "clientContext": "f2fa86af-3c51-4bc2-8fc0-475452d9764f"
+}
+```
+
+#### Response
+
+> **Note:** The response object shown here might be shortened for readability.
+
+<!-- {
+ "blockType": "response",
+ "truncated": true,
+ "@odata.type": "microsoft.graph.inviteParticipantsOperation"
+} -->
+```http
+HTTP/1.1 200 OK
+Content-Type: application/json
+
+{
+ "@odata.type": "#microsoft.graph.inviteParticipantsOperation",
+ "id": "eec3812a-fdc3-4fb4-825c-a06c9f35414e",
+ "status": "Running",
+ "clientContext": "f2fa86af-3c51-4bc2-8fc0-475452d9764f",
+ "resultInfo": null,
+ "participants": [
+ {
+ "endpointType": null,
+ "id": null,
+ "replacesCallId": "a7ebfb2d-871e-419c-87af-27290b22e8db",
+ "identity": {
+ "user": {
+ "id": "278405a3-f568-4b3e-b684-009193463064",
+ "identityProvider": "AAD",
+ "tenantId": "72f988bf-86f1-41af-91ab-2d7cd011db47"
+ },
+ "application": null,
+ "device": null,
+ "phone": null
+ }
+ }
+ ]
+}
+```
+
+#### Delete invited participant before participant is added to the roster
+
+<!-- {
+ "blockType": "request",
+ "name": "delete-participant"
+}-->
+```http
+DELETE https://graph.microsoft.com/beta/communications/calls/{id}/participants/{id}
+```
+
+#### Response
> **Note:** The response object shown here might be shortened for readability.
v1.0 Serviceprincipal Post Approleassignedto https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/serviceprincipal-post-approleassignedto.md
One of the following permissions is required to call this API. To learn more, in
|Permission type | Permissions (from least to most privileged) | |:--|:|
-|Delegated (work or school account) | AppRoleAssignment.ReadWrite.All and Application.Read.All, AppRoleAssignment.ReadWrite.All and Directory.Read.All, Directory.ReadWrite.All, Directory.AccessAsUser.All |
+|Delegated (work or school account) | AppRoleAssignment.ReadWrite.All and Application.Read.All, AppRoleAssignment.ReadWrite.All and Directory.Read.All, Application.ReadWrite.All, Directory.ReadWrite.All, Directory.AccessAsUser.All |
|Delegated (personal Microsoft account) | Not supported. |
-|Application | AppRoleAssignment.ReadWrite.All and Application.Read.All, AppRoleAssignment.ReadWrite.All and Directory.Read.All, Directory.ReadWrite.All |
+|Application | AppRoleAssignment.ReadWrite.All and Application.Read.All, AppRoleAssignment.ReadWrite.All and Directory.Read.All, Application.ReadWrite.All, Directory.ReadWrite.All |
## HTTP request
v1.0 User List https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/user-list.md
Do not supply a request body for this method.
If successful, this method returns a `200 OK` response code and collection of [user](../resources/user.md) objects in the response body.
+Attempting to use `$select` on the `/users` collection to retrieve properties that cannot be returned within a user collection (for example, the request `../users?$select=aboutMe`) returns a `501 Not Implemented` error code.
+ ## Examples ### Example 1: Get all users
v1.0 Applemanagedidentityprovider https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/applemanagedidentityprovider.md
+
+ Title: "appleManagedIdentityProvider resource type"
+description: "Represents apple identity provider in an Azure AD B2C tenant."
+localization_priority: Priority
+++
+# appleManagedIdentityProvider resource type
+Namespace: microsoft.graph
++
+You can configure Apple as a social identity provider for an Azure AD B2C tenant. Based on the information Apple provides, the API will generate a client secret. Apple needs the secret to be renewed every six months. You will have to manually rotate the secret.
+
+Inherits from [identityProviderBase](../resources/identityproviderbase.md).
+
+## Methods
+
+| Method | Return Type |Description|
+|:|:--|:-|
+|[List](../api/identitycontainer-list-identityproviders.md)|[identityProviderBase](../resources/identityproviderbase.md) collection|Retrieve all identity providers configured in a tenant including the Apple identity providers. There is no way to retrieve only the Apple identity providers in a tenant.|
+|[Create](../api/identitycontainer-post-identityproviders.md)|[appleManagedIdentityProvider](../resources/applemanagedidentityprovider.md) |Create a new Apple identity provider configuration.|
+|[Get](../api/identityproviderbase-get.md) |[appleManagedIdentityProvider](../resources/applemanagedidentityprovider.md) |Retrieve properties of the Apple identity provider configuration.|
+|[Update](../api/identityproviderbase-update.md)|None|Update the Apple identity provider configuration.|
+|[Delete](../api/identityproviderbase-delete.md)|None|Delete the Apple identity provider configuration.|
+|[List available provider types](../api/identityproviderbase-availableprovidertypes.md)|String collection|Retrieve all available identity provider types available in the tenant.|
+
+## Properties
+
+|Property|Type|Description|
+|:|:--|:-|
+|developerId|String|The Apple developer identifier. Required.|
+|serviceId|String|The Apple service identifier. Required.|
+|keyId|String|The Apple key identifier. Required.|
+|certificateData|String|The certificate data which is a long string of text from the certificate, can be null.|
+|id|String|The identifier of the identity provider. Inherited from [identityProviderBase](../resources/identityproviderbase.md). Read-only.|
+|displayName|String|The display name of the identity provider. Inherited from [identityProviderBase](../resources/identityproviderbase.md).|
+
+Retrieve the **developerId**, **serviceId**, **keyId**, and the **certificateData** from the Apple developer portal. For more information, follow the guide to [create an Apple ID application](/azure/active-directory-b2c/identity-provider-apple-id?pivots=b2c-user-flow#create-an-apple-id-application).
+
+## JSON representation
+
+The following is a JSON representation of the resource.
+
+<!-- {
+ "blockType": "resource",
+ "@odata.type": "microsoft.graph.appleManagedIdentityProvider"
+} -->
+
+```json
+{
+ "id": "String",
+ "displayName": "String",
+ "developerId": "String",
+ "serviceId": "String",
+ "keyId": "String",
+ "certificateData": "String"
+}
+```
+
+<!-- uuid: 8fcb5dbc-d5aa-4681-8e31-b001d5168d79
+2021-03-30 14:57:30 UTC -->
+<!--
+{
+ "type": "#page.annotation",
+ "description": "appleIdentityProvider",
+ "keywords": "",
+ "section": "documentation",
+ "tocPath": "",
+ "suppressions": []
+}
+-->
v1.0 Builtinidentityprovider https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/builtinidentityprovider.md
This type will inherit from [identityProviderBase](../resources/identityprovider
| Method | Return Type |Description| |:|:--|:-|
-|[List](../api/identityproviderbase-list.md)|[identityProviderBase](../resources/identityproviderbase.md) collection|Retrieve all identity providers configured in a tenant including the built-in identity providers.|
+|[List](../api/identitycontainer-list-identityproviders.md)|[identityProviderBase](../resources/identityproviderbase.md) collection|Retrieve all identity providers configured in a tenant including the built-in identity providers. There is no way to retrieve only the built-in identity providers in a tenant.|
|[Get](../api/identityproviderbase-get.md) |builtInIdentityProvider|Retrieve properties of an built-in identity provider.|
-|[List available provider types](../api/identityproviderbase-list-availableprovidertypes.md)|String collection|Retrieve all available identity provider types available in the tenant.|
+|[List available provider types](../api/identityproviderbase-availableprovidertypes.md)|String collection|Retrieve all available identity provider types available in the tenant.|
## Properties
v1.0 Chatmessage https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/chatmessage.md
Represents an individual chat message within a [channel](channel.md) or [chat](c
|:|:--|:-| |id|String| Read-only. Unique ID of the message.| |replyToId| string | Read-only. ID of the parent chat message or root chat message of the thread. (Only applies to chat messages in channels, not chats.) |
-|from|[chatMessageFromIdentitySet](chatmessagefromidentityset.md)| Read only. Details of the sender of the chat message.|
+|from|[chatMessageFromIdentitySet](chatmessagefromidentityset.md)| Details of the sender of the chat message. Can only be set during [migration](/microsoftteams/platform/graph-api/import-messages/import-external-messages-to-teams).|
|etag| string | Read-only. Version number of the chat message. | |messageType|chatMessageType|The type of chat message. The possible values are: `message`, `chatEvent`, `typing`, `unknownFutureValue`, `systemEventMessage`. Note that you must use the `Prefer: include-unknown-enum-members` request header to get the following value in this [evolvable enum](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations): `systemEventMessage`.| |createdDateTime|dateTimeOffset|Timestamp of when the chat message was created.|
Represents an individual chat message within a [channel](channel.md) or [chat](c
|subject|string| The subject of the chat message, in plaintext.| |body|[itemBody](itembody.md)|Plaintext/HTML representation of the content of the chat message. Representation is specified by the contentType inside the body. The content is always in HTML if the chat message contains a [chatMessageMention](chatmessagemention.md). | |summary|string| Summary text of the chat message that could be used for push notifications and summary views or fall back views. Only applies to channel chat messages, not chat messages in a chat. |
-|attachments|[chatMessageAttachment](chatmessageattachment.md) collection |Attached files. Attachments are currently read-only ΓÇô sending attachments is not supported. |
-|mentions|[chatMessageMention](chatmessagemention.md) collection| List of entities mentioned in the chat message. Currently supports user, bot, team, channel.|
+|attachments|[chatMessageAttachment](chatmessageattachment.md) collection |References to attached objects like files, tabs, meetings etc.|
+|mentions|[chatMessageMention](chatmessagemention.md) collection| List of entities mentioned in the chat message. Supported entities are: user, bot, team, channel, and tag.|
|importance|string | The importance of the chat message. The possible values are: `normal`, `high`, `urgent`.| |reactions| [chatMessageReaction](chatmessagereaction.md) collection | Reactions for this chat message (for example, Like).| |locale|string|Locale of the chat message set by the client. Always set to `en-us`.|
Represents an individual chat message within a [channel](channel.md) or [chat](c
|channelIdentity|[channelIdentity](channelidentity.md)|If the message was sent in a channel, represents identity of the channel.| |webUrl|string|Read-only. Link to the message in Microsoft Teams.| |eventDetail|[eventMessageDetail](../resources/eventmessagedetail.md)|Read-only. If present, represents details of an event that happened in a chat, a channel, or a team, for example, members were added, and so on. For event messages, the **messageType** property will be set to `systemEventMessage`.|+ ## Relationships | Relationship | Type | Description |
v1.0 Identitycontainer https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/identitycontainer.md
+
+ Title: "identityContainer resource type"
+description: "Represents the entry point to different features in External Identities for both Azure Active Directory (Azure AD) and Azure AD B2C tenants."
+localization_priority: Priority
+++
+# identityContainer resource type
+
+Namespace: microsoft.graph
++
+Represents the entry point to different features in [External Identities](/azure/active-directory/external-identities/) for both Azure Active Directory (Azure AD) and Azure AD B2C tenants.
+
+## Methods
+
+None.
+
+## Properties
+
+None.
+
+## Relationships
+
+| Relationship | Type | Description |
+|:-|:|:|
+|apiConnectors|[identityApiConnector](identityApiConnector.md) collection|Represents entry point for API connectors.|
+|b2cUserFlows|[b2cIdentityUserFlow](b2cIdentityUserFlow.md) collection|Represents entry point for B2C identity userflows.|
+|b2xUserFlows|[b2xIdentityUserFlow](b2xIdentityUserFlow.md) collection| Represents entry point for B2X and self-service sign-up identity userflows.|
+|identityProviders|[identityProviderBase](identityProviderBase.md) collection| Represents entry point for identity provider base.|
+|userFlowAttributes|[identityUserFlowAttribute](identityUserFlowAttribute.md) collection| Represents entry point for identity userflow attributes.|
+|continuousAccessEvaluationPolicy|[continuousAccessEvaluationPolicy](continuousAccessEvaluationPolicy.md)| Represents entry point for continuous access evaluation policy.|
+
+## JSON representation
+
+The following is a JSON representation of the resource.
+<!-- {
+ "blockType": "resource",
+ "@odata.type": "microsoft.graph.identityContainer",
+ "openType": false
+}
+-->
+
+``` json
+{
+ "@odata.type": "#microsoft.graph.identityContainer"
+}
+```
v1.0 Identityproviderbase https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/identityproviderbase.md
Namespace: microsoft.graph
[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)]
-Represents identity providers with [External Identities](/azure/active-directory/external-identities/) for both Azure Active Directory tenant and an Azure AD B2C tenant.
+Represents identity providers with [External Identities](/azure/active-directory/external-identities/) for both Azure Active Directory (Azure AD) and Azure AD B2C tenants.
-For Azure AD B2B scenarios in an Azure AD directory, the identity provider can be a [socialIdentityProvider](../resources/socialidentityprovider.md) or a [builtinIdentityProvider](../resources/builtinidentityprovider.md), which will inherit from identityProviderBase resource type.
+For Azure AD B2B scenarios in an Azure AD directory, the identity provider can be a [socialIdentityProvider](../resources/socialidentityprovider.md) or a [builtinIdentityProvider](../resources/builtinidentityprovider.md), both of which inherit from the identityProviderBase resource type.
Configuring an identity provider in your Azure AD directory enables new Azure AD B2B guest scenarios. For example, an organization has resources in Microsoft 365 that need to be shared with a Gmail user. The Gmail user will use their Google account credentials to authenticate and access the documents.
-In an Azure AD B2C directory, the identity provider type can be a [socialIdentityProviders](../resources/socialidentityprovider.md), [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md) or [appleIdentityProvider](../resources/appleidentityprovider.md), which will inherit from identityProviderBase resource type.
+In an Azure AD B2C directory, the identity provider type can be a [socialIdentityProvider](../resources/socialidentityprovider.md), [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md), or an [appleManagedIdentityProvider](../resources/applemanagedidentityprovider.md), all which inherit from the identityProviderBase resource type.
Configuring an identity provider in your Azure AD B2C directory enables users to sign up and sign in using a social account or a custom OpenID Connect supported provider in an application. For example, an application can use Azure AD B2C to allow users to sign up for the service using a Facebook account or their own custom identity provider that complies with OIDC protocol.
Configuring an identity provider in your Azure AD B2C directory enables users to
| Method | Return Type |Description| |:|:--|:-|
-|[List](../api/identityproviderbase-list.md)|identityProviderBase collection|Retrieve all identity providers configured in a tenant.|
-|[List available provider types](../api/identityproviderbase-list-availableprovidertypes.md)|String collection|Retrieve all available identity provider types available in the tenant.|
+|[List](../api/identitycontainer-list-identityproviders.md)|[identityProviderBase](../resources/identityproviderbase.md) collection|Retrieve all identity providers configured in a tenant.|
+|[Create](../api/identitycontainer-post-identityproviders.md)| [socialidentityprovider](../resources/socialidentityprovider.md), [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md), or [appleManagedIdentityProvider](../resources/applemanagedidentityprovider.md) |Create a new object of one of the following object types: <br/><ul><li> [socialidentityprovider](../resources/socialidentityprovider.md) (Azure AD or Azure AD B2C) <li> [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md) (Azure AD B2C) <li> [appleManagedIdentityProvider](../resources/applemanagedidentityprovider.md) (Azure AD B2C) </li></ul>|
+|[Get](../api/identityproviderbase-get.md) |[socialidentityprovider](../resources/socialidentityprovider.md), [builtInIdentityProvider](../resources/builtinidentityprovider.md), [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md), or [appleManagedIdentityProvider](../resources/applemanagedidentityprovider.md)| Retrieve properties of one of the following object types: <br/><ul><li> [socialidentityprovider](../resources/socialidentityprovider.md) (Azure AD or Azure AD B2C) <li> [builtInIdentityProvider](../resources/builtinidentityprovider.md) (Azure AD or Azure AD B2C) <li> [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md) (Azure AD B2C) <li> [appleManagedIdentityProvider](../resources/applemanagedidentityprovider.md) (Azure AD B2C) </li></ul>|
+|[Update](../api/identityproviderbase-update.md)|None|Update one of the following object types: <br/><ul><li> [socialidentityprovider](../resources/socialidentityprovider.md) (Azure AD or Azure AD B2C) <li> [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md) (Azure AD B2C) <li> [appleManagedIdentityProvider](../resources/applemanagedidentityprovider.md) (Azure AD B2C) </li></ul>|
+|[Delete](../api/identityproviderbase-delete.md)|None|Delete one of the following object types: <br/><ul><li> [socialidentityprovider](../resources/socialidentityprovider.md) (Azure AD or Azure AD B2C) <li> [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md) (Azure AD B2C) <li> [appleManagedIdentityProvider](../resources/applemanagedidentityprovider.md) (Azure AD B2C) (Azure AD B2C)|
+|[List available provider types](../api/identityproviderbase-availableprovidertypes.md)|String collection|Retrieve all supported identity provider types in the tenant.|
## Properties
v1.0 Openidconnectidentityprovider https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/openidconnectidentityprovider.md
Namespace: microsoft.graph
[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)]
-Represents OpenID Connect identity providers in an Azure Active Directory B2C tenant.
+Represents OpenID Connect identity providers in an Azure Active Directory (Azure AD) B2C tenant.
-Configuring an OpenID Connect provider in a B2C tenant enables users to sign up and sign in using their custom identity provider in an application.
+Configuring an OpenID Connect provider in an Azure AD B2C tenant enables users to sign up and sign in to any application using their custom identity provider.
-This type will inherit from [identityProviderBase](../resources/identityproviderbase.md).
+Inherits from [identityProviderBase](../resources/identityproviderbase.md).
## Methods | Method | Return Type |Description| |:|:--|:-|
-|[List](../api/identityproviderbase-list.md)|[identityProviderBase](../resources/identityproviderbase.md) collection|Retrieve all identity providers configured in a tenant including the OpenID Connect identity providers.|
-|[Create](../api/identityproviderbase-post-identityproviders.md)|openIdConnectIdentityProvider|Create a new OpenID Connect identity provider.|
-|[Get](../api/identityproviderbase-get.md) |openIdConnectIdentityProvider|Retrieve properties of an OpenID Connect identity provider.|
-|[Update](../api/identityproviderbase-update.md)|None|Update an OpenID Connect identity provider.|
-|[Delete](../api/identityproviderbase-delete.md)|None|Delete an OpenID Connect identity provider.|
-|[List available provider types](../api/identityproviderbase-list-availableprovidertypes.md)|String collection|Retrieve all available identity provider types available in the tenant.|
+|[List](../api/identitycontainer-list-identityproviders.md)|[identityProviderBase](../resources/identityproviderbase.md) collection|Retrieve all identity providers configured in a tenant including the [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md) object type. There is no way to retrieve only the OpenID Connect identity providers in a tenant.|
+|[Create](../api/identitycontainer-post-identityproviders.md)|[openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md)|Create a new [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md) object.|
+|[Get](../api/identityproviderbase-get.md) |openIdConnectIdentityProvider|Retrieve properties of an [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md) object.|
+|[Update](../api/identityproviderbase-update.md)|None|Update an [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md) object.|
+|[Delete](../api/identityproviderbase-delete.md)|None|Delete an [openIdConnectIdentityProvider](../resources/openidconnectidentityprovider.md) object.|
+|[List available provider types](../api/identityproviderbase-availableprovidertypes.md)|String collection|Retrieve all available identity provider types available in the tenant.|
## Properties |Property|Type|Description| |:|:--|:-|
-|clientId|String|The client ID for the application obtained when registering the application with the identity provider. Required.|
+|clientId|String|The client identifier for the application obtained when registering the application with the identity provider. Required.|
|clientSecret|String|The client secret for the application obtained when registering the application with the identity provider. The clientSecret has a dependency on **responseType**. <ul><li>When **responseType** is `code`, a secret is required for the auth code exchange.</li><li>When **responseType** is `id_token` the secret is not required because there is no code exchange. The id_token is returned directly from the authorization response.</li></ul> This is write-only. A read operation returns `****`.| |id|String|The identifier of the identity provider.Required. Inherited from [identityProviderBase](../resources/identityproviderbase.md). Read-only.| |displayName|String|The display name of the identity provider. | |claimsMapping|[claimsMapping](claimsmapping.md)|After the OIDC provider sends an ID token back to Azure AD, Azure AD needs to be able to map the claims from the received token to the claims that Azure AD recognizes and uses. This complex type captures that mapping. Required.| |domainHint|String|The domain hint can be used to skip directly to the sign-in page of the specified identity provider, instead of having the user make a selection among the list of available identity providers.| |metadataUrl|String|The URL for the metadata document of the OpenID Connect identity provider. Every OpenID Connect identity provider describes a metadata document that contains most of the information required to perform sign-in. This includes information such as the URLs to use and the location of the service's public signing keys. The OpenID Connect metadata document is always located at an endpoint that ends in `.well-known/openid-configuration`. Provide the metadata URL for the OpenID Connect identity provider you add. Read-only. Required.|
-|responseMode|String|The response mode defines the method used to send data back from the custom identity provider to Azure AD B2C. Possible values: `form_post`, `query`. Required.|
-|responseType|String|The response type describes the type of information sent back in the initial call to the authorization_endpoint of the custom identity provider. Possible values: `code` , `id_token` , `token`. Required.|
+|responseMode|[openIdConnectResponseMode](#openidconnectresponsemode-values)|The response mode defines the method used to send data back from the custom identity provider to Azure AD B2C. Possible values: `form_post`, `query`. Required.|
+|responseType|[openIdConnectResponseTypes](#openidconnectresponsetypes-values)|The response type describes the type of information sent back in the initial call to the authorization_endpoint of the custom identity provider. Possible values: `code` , `id_token` , `token`. Required.|
|scope|String|Scope defines the information and permissions you are looking to gather from your custom identity provider. OpenID Connect requests must contain the openid scope value in order to receive the ID token from the identity provider. Without the ID token, users are not able to sign in to Azure AD B2C using the custom identity provider. Other scopes can be appended, separated by a space. For more details about the scope limitations see [RFC6749 Section 3.3](https://tools.ietf.org/html/rfc6749#section-3.3). Required.|
-### responseMode value
-|Value|Description|
+### openIdConnectResponseMode values
+|Member|Description|
:--|:-| |form_post|This response mode is recommended for best security. The response is transmitted via the HTTP POST method, with the code or token being encoded in the body using the application/x-www-form-urlencoded format.| |query|The code or token is returned as a query parameter.|
+|unknownFutureValue|A sentinel value to indicate future values.|
-### responseType value
-|Value|Description|
+### openIdConnectResponseTypes values
+|Member|Description|
:--|:-| |code|As per the authorization code flow, a code will be returned back to Azure AD B2C. Azure AD B2C proceeds to call the token_endpoint to exchange the code for the token.| |id_token|An ID token is returned back to Azure AD B2C from the custom identity provider.|
The following is a JSON representation of the resource.
<!-- { "blockType": "resource",
- "@odata.type": "microsoft.graph.openIdConnectIdentityProvider"
+ "@odata.type": "microsoft.graph.openIdConnectIdentityProvider",
+ "baseType": "microsoft.graph.identityProviderBase",
} --> ```json {
- "id": "String",
+ "@odata.type": "#microsoft.graph.openIdConnectIdentityProvider",
+ "id": "String (identifier)",
"displayName": "String", "clientId": "String", "clientSecret": "String",
- "claimsMapping": {
- "@odata.type": "#microsoft.graph.claimsMapping",
- "userId": "String",
- "givenName": "String",
- "surname": "String",
- "email": "String",
- "displayName": "String"
- },
- "domainHint": "String",
+ "scope": "String",
"metadataUrl": "String",
- "responseMode": "String",
+ "domainHint": "String",
"responseType": "String",
- "scope": "String"
+ "responseMode": "String",
+ "claimsMapping": {
+ "@odata.type": "microsoft.graph.claimsMapping"
+ }
} ```
v1.0 Socialidentityprovider https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/socialidentityprovider.md
Namespace: microsoft.graph
[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)]
-Represents social identity providers with [External Identities](/azure/active-directory/external-identities/) for both Azure Active Directory tenant and an Azure AD B2C tenant.
+Represents social identity providers with [External Identities](/azure/active-directory/external-identities/) for both Azure Active Directory (Azure AD) and Azure AD B2C tenants.
-This type will inherit from [identityProviderBase](../resources/identityproviderbase.md).
+Inherits from [identityProviderBase](../resources/identityproviderbase.md).
For Azure AD B2B scenarios in an Azure AD tenant, the identity provider type can be Google or Facebook.
Configuring an identity provider in your Azure AD B2C tenant enables users to si
| Method | Return Type |Description| |:|:--|:-|
-|[List](../api/identityproviderbase-list.md)|[identityProviderBase](../resources/identityproviderbase.md) collection|Retrieve all identity providers configured in a tenant including the social identity providers.|
-|[Create](../api/identityproviderbase-post-identityproviders.md)|socialidentityprovider |Create a new social identity provider.|
-|[Get](../api/identityproviderbase-get.md) |socialidentityprovider |Retrieve properties of a social identity provider.|
-|[Update](../api/identityproviderbase-update.md)|None|Update a social identity provider.|
-|[Delete](../api/identityproviderbase-delete.md)|None|Delete a social identity provider.|
-|[List available provider types](../api/identityproviderbase-list-availableprovidertypes.md)|String collection|Retrieve all available identity provider types available in the tenant.|
+|[List](../api/identitycontainer-list-identityproviders.md)|[identityProviderBase](../resources/identityproviderbase.md) collection|Retrieve all identity providers configured in a tenant including the [socialIdentityProvider](../resources/socialidentityprovider.md) object types. There is no way to retrieve only the social identity providers in a tenant.|
+|[Create](../api/identitycontainer-post-identityproviders.md)|socialidentityprovider |Create a new [socialIdentityProvider](../resources/socialidentityprovider.md) object.|
+|[Get](../api/identityproviderbase-get.md) |socialidentityprovider |Retrieve properties of a [socialIdentityProvider](../resources/socialidentityprovider.md) object.|
+|[Update](../api/identityproviderbase-update.md)|None|Update a [socialIdentityProvider](../resources/socialidentityprovider.md) object.|
+|[Delete](../api/identityproviderbase-delete.md)|None|Delete a [socialIdentityProvider](../resources/socialidentityprovider.md) object.|
+|[List available provider types](../api/identityproviderbase-availableprovidertypes.md)|String collection|Retrieve all available identity provider types available in the tenant.|
## Properties
Configuring an identity provider in your Azure AD B2C tenant enables users to si
### Where to get the client identifier and secret
-Each identity provider has a process for creating an app registration. For example, users create an app registration with Facebook at [developers.facebook.com](https://developers.facebook.com/). The resulting client identifier and client secret can be passed to [create identityProvider](../api/identityproviderbase-post-identityproviders.md). Then, each user object in the directory can be federated to any of the tenant's identity providers for authentication. This enables the user to sign in by entering credentials on the identity provider's sign-in page. The token from the identity provider is validated by Azure AD before the tenant issues a token to the application.
+Each identity provider has a process for creating an app registration. For example, users create an app registration with Facebook at [developers.facebook.com](https://developers.facebook.com/). The resulting client identifier and client secret can be passed to [create identityProvider](../api/identitycontainer-post-identityproviders.md). Then, each user object in the directory can be federated to any of the tenant's identity providers for authentication. This enables the user to sign in by entering credentials on the identity provider's sign-in page. The token from the identity provider is validated by Azure AD before the tenant issues a token to the application.
## JSON representation
v1.0 Certificatebasedauthconfiguration Post Certificatebasedauthconfiguration https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/api/certificatebasedauthconfiguration-post-certificatebasedauthconfiguration.md
One of the following permissions is required to call this API. To learn more, in
<!-- { "blockType": "ignored" } --> ```http
-POST /organization/{id}/certificateBasedAuthConfiguration/$ref
+POST /organization/{id}/certificateBasedAuthConfiguration
``` ## Request headers
v1.0 Channel List Messages https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/api/channel-list-messages.md
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
v1.0 Chat List Messages https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/api/chat-list-messages.md
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
v1.0 Chat List https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/api/chat-list.md
+
+ Title: "List chats"
+description: "Retrieve the list of chats for a user."
+
+localization_priority: Normal
++
+# List chats
+
+Namespace: microsoft.graph
+
+Retrieve the list of [chats](../resources/chat.md) that the user is part of.
+
+## Permissions
+
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
+
+|Permission type | Permissions (from least to most privileged) |
+|:--|:|
+|Delegated (work or school account) | Chat.ReadBasic, Chat.Read, Chat.ReadWrite |
+|Delegated (personal Microsoft account) | Not supported. |
+|Application | Not supported. |
+
+## HTTP request
+
+<!-- { "blockType": "ignored" } -->
+```http
+GET /me/chats
+GET /users/{user-id | user-principal-name}/chats
+GET /chats
+```
+
+## Optional query parameters
+
+This method supports the `$expand` (only for the **members** property) and `$filter` [OData query parameters](/graph/query-parameters) to help customize the response.
+
+## Request headers
+
+| Header | Value |
+|:|:--|
+| Authorization | Bearer {token}. Required. |
+
+## Request body
+
+Do not supply a request body for this method.
+
+## Response
+
+If successful, this method returns a `200 OK` response code and a collection of [chat](../resources/chat.md) objects in the response body.
+
+## Example
+
+### Example 1: List all chats
+
+#### Request
+
+Here is an example of the request.
+
+<!-- {
+ "blockType": "request",
+ "name": "list_chats"
+}-->
+```http
+GET https://graph.microsoft.com/v1.0/users/8b081ef6-4792-4def-b2c9-c363a1bf41d5/chats
+```
+
+#### Response
+
+Here is an example of the response.
+
+>**Note:** The response object shown here might be shortened for readability.
+<!-- {
+ "blockType": "response",
+ "truncated": true,
+ "@odata.type": "microsoft.graph.chat",
+ "isCollection": true
+} -->
+```http
+HTTP/1.1 200 OK
+Content-type: application/json
+
+{
+ "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#chats",
+ "@odata.count": 3,
+ "value": [
+ {
+ "id": "19:meeting_MjdhNjM4YzUtYzExZi00OTFkLTkzZTAtNTVlNmZmMDhkNGU2@thread.v2",
+ "topic": "Meeting chat sample",
+ "createdDateTime": "2020-12-08T23:53:05.801Z",
+ "lastUpdatedDateTime": "2020-12-08T23:58:32.511Z",
+ "chatType": "meeting"
+ },
+ {
+ "id": "19:561082c0f3f847a58069deb8eb300807@thread.v2",
+ "topic": "Group chat sample",
+ "createdDateTime": "2020-12-03T19:41:07.054Z",
+ "lastUpdatedDateTime": "2020-12-08T23:53:11.012Z",
+ "chatType": "group"
+ },
+ {
+ "id": "19:d74fc2ed-cb0e-4288-a219-b5c71abaf2aa_8c0a1a67-50ce-4114-bb6c-da9c5dbcf6ca@unq.gbl.spaces",
+ "topic": null,
+ "createdDateTime": "2020-12-04T23:10:28.51Z",
+ "lastUpdatedDateTime": "2020-12-04T23:10:36.925Z",
+ "chatType": "oneOnOne"
+ }
+ ]
+}
+```
+
+### Example 2: List all chats along with the members of each chat
+#### Request
+
+Here is an example of the request.
+
+<!-- {
+ "blockType": "request",
+ "name": "list_chats_expand_members"
+}-->
+```http
+GET https://graph.microsoft.com/v1.0/users/8b081ef6-4792-4def-b2c9-c363a1bf41d5/chats?$expand=members
+```
+
+#### Response
+
+Here is an example of the response.
+
+> [!NOTE]
+> The membership IDs returned by the server must be treated as opaque strings. The client shouldn't try to parse or make any assumptions about these resource IDs.
+
+>**Note:** The response object shown here might be shortened for readability.
+
+<!-- {
+ "blockType": "response",
+ "truncated": true,
+ "@odata.type": "microsoft.graph.chat",
+ "isCollection": true
+} -->
+```http
+HTTP/1.1 200 OK
+Content-type: application/json
+
+{
+ "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#chats(members())",
+ "@odata.count": 3,
+ "value": [
+ {
+ "id": "19:meeting_MjdhNjM4YzUtYzExZi00OTFkLTkzZTAtNTVlNmZmMDhkNGU2@thread.v2",
+ "topic": "Meeting chat sample",
+ "createdDateTime": "2020-12-08T23:53:05.801Z",
+ "lastUpdatedDateTime": "2020-12-08T23:58:32.511Z",
+ "chatType": "meeting",
+ "members@odata.context": "https://graph.microsoft.com/v1.0/$metadata#chats('19%3Ameeting_MjdhNjM4YzUtYzExZi00OTFkLTkzZTAtNTVlNmZmMDhkNGU2%40thread.v2')/members",
+ "members": [
+ {
+ "@odata.type": "#microsoft.graph.aadUserConversationMember",
+ "id": "MmFiOWM3OTYtMjkwMi00NWY4LWI3MTItN2M1YTYzY2Y0MWM0IyNlZWY5Y2IzNi0wNmRlLTQ2OWItODdjZC03MGY0Y2JlMzJkM123=",
+ "roles": [],
+ "displayName": "Tony Stark",
+ "userId": "4595d2f2-7b31-446c-84fd-9b795e63114b",
+ "email": "starkt@teamsgraph.onmicrosoft.com"
+ },
+ {
+ "@odata.type": "#microsoft.graph.aadUserConversationMember",
+ "id": "MmFiOWM3OTYtMjkwMi00NWY4LWI3MTItN2M1YTYzY2Y0MWM0IyNlZWY5Y2IzNi0wNmRlLTQ2OWItODdjZC03MGY0Y2JlMz6Jk45=",
+ "roles": [],
+ "displayName": "Peter Parker",
+ "userId": "d74fc2ed-cb0e-4288-a219-b5c71abaf2aa",
+ "email": "parkerp@teamsgraph.onmicrosoft.com"
+ },
+ {
+ "@odata.type": "#microsoft.graph.aadUserConversationMember",
+ "id": "MmFiOWM3OTYtMjkwMi00NWY4LWI3MTItN2M1YTYzY2Y0MWM0IyNlZWY5Y2IzNi0wNmRlLTQ2OWItODdjZC03MGY0Y2JlMzJ989kMTQ=",
+ "roles": [],
+ "displayName": "Nick Fury",
+ "userId": "8c0a1a67-50ce-4114-bb6c-da9c5dbcf6ca",
+ "email": "furyn@teamsgraph.onmicrosoft.com"
+ }
+ ]
+ },
+ {
+ "id": "19:561082c0f3f847a58069deb8eb300807@thread.v2",
+ "topic": "Group chat sample",
+ "createdDateTime": "2020-12-03T19:41:07.054Z",
+ "lastUpdatedDateTime": "2020-12-08T23:53:11.012Z",
+ "chatType": "group",
+ "members@odata.context": "https://graph.microsoft.com/v1.0/$metadata#chats('19%3A561082c0f3f847a58069deb8eb300807%40thread.v2')/members",
+ "members": [
+ {
+ "@odata.type": "#microsoft.graph.aadUserConversationMember",
+ "id": "MmFiOWM3OTYtMjkwMi00NWY4LWI3MTItN2M1YTYzY2Y0MWM0IyNlZWY5Y2IzNi0wNmRlLTQ2OWItODdjZC03MGY0Y2JlMzJkM123=",
+ "roles": [],
+ "displayName": "Tony Stark",
+ "userId": "4595d2f2-7b31-446c-84fd-9b795e63114b",
+ "email": "starkt@teamsgraph.onmicrosoft.com"
+ },
+ {
+ "@odata.type": "#microsoft.graph.aadUserConversationMember",
+ "id": "MmFiOWM312ftMjkwMi00NWY4LWI3MTItN2M1YTYzY2Y0MWM0IyNlZWY5Y2IzNi0wNmRlLTQ2OWItODdjZC03MGY0Y2JlMzJkM123=",
+ "roles": [],
+ "displayName": "Bruce Banner",
+ "userId": "48bf9d52-dca7-4a5f-8398-37b95cc7bd83",
+ "email": "bannerb@teamsgraph.onmicrosoft.com"
+ },
+ {
+ "@odata.type": "#microsoft.graph.aadUserConversationMember",
+ "id": "MmFiOWM3OTYtMjkwMi00NWY4LWai3MTetN2M1YTYzY2Y0MWM0IyNlZWY5Y2IzNi0wNmRlLTQ2OWItODdjZC03MGY0Y2JlMzJkM123=",
+ "roles": [],
+ "displayName": "TChalla",
+ "userId": "9efb1aea-4f83-4673-bdcd-d3f3c7be28c2",
+ "email": "tchalla@teamsgraph.onmicrosoft.com"
+ },
+ {
+ "@odata.type": "#microsoft.graph.aadUserConversationMember",
+ "id": "MmFiOWM3OTYtMjkwamii00NWY4LWI3MTItN2M1YTYzY2Y0MWM0IyNlZWY5Y2IzNi0wNmRlLTQ2OWItODdjZC03MGY0Y2JlMzJkM123=",
+ "roles": [],
+ "displayName": "Thor Odinson",
+ "userId": "976f4b31-fd01-4e0b-9178-29cc40c14438",
+ "email": "odinsont@teamsgraph.onmicrosoft.com"
+ },
+ {
+ "@odata.type": "#microsoft.graph.aadUserConversationMember",
+ "id": "MmFiOWM3OTYtMjkwMi00NWopiLWI3MTItN2M1YTYzY2Y0MWM0IyNlZWY5Y2IzNi0wNmRlLTQ2OWItODdjZC03MGY0Y2JlMzJkM123=",
+ "roles": [],
+ "displayName": "Steve Rogers",
+ "userId": "976f4b31-fd01-4e0b-9178-29cc40c14438",
+ "email": "rogerss@teamsgraph.onmicrosoft.com"
+ }
+ ]
+ },
+ {
+ "id": "19:d74fc2ed-cb0e-4288-a219-b5c71abaf2aa_8c0a1a67-50ce-4114-bb6c-da9c5dbcf6ca@unq.gbl.spaces",
+ "topic": null,
+ "createdDateTime": "2020-12-04T23:10:28.51Z",
+ "lastUpdatedDateTime": "2020-12-04T23:10:36.925Z",
+ "chatType": "oneOnOne",
+ "members@odata.context": "https://graph.microsoft.com/v1.0/$metadata#chats('19%3Ad74fc2ed-cb0e-4288-a219-b5c71abaf2aa_8c0a1a67-50ce-4114-bb6c-da9c5dbcf6ca%40unq.gbl.spaces')/members",
+ "members": [
+ {
+ "@odata.type": "#microsoft.graph.aadUserConversationMember",
+ "id": "MmFiOWM3OTYtMjkwMi00NWY4LWI3MTItN2M1YTYzY2Y0MWM0IyNlZWY5Y2IzNi0wNmRlLTQ2OWItODdjZC03MGY0Y2JlMzJ989kMTQ=",
+ "roles": [],
+ "displayName": "Nick Fury",
+ "userId": "8c0a1a67-50ce-4114-bb6c-da9c5dbcf6ca",
+ "email": "furyn@teamsgraph.onmicrosoft.com"
+ },
+ {
+ "@odata.type": "#microsoft.graph.aadUserConversationMember",
+ "id": "MmFiOWM3OTYtMjkwMi00NWY4LWI3MTItN2M1YTYzY2Y0MWM0IyNlZWY5Y2IzNi0wNmRlLTQ2OWItODdjZC03MGY0Y2JlMz6Jk45=",
+ "roles": [],
+ "displayName": "Peter Parker",
+ "userId": "d74fc2ed-cb0e-4288-a219-b5c71abaf2aa",
+ "email": "parkerp@teamsgraph.onmicrosoft.com"
+ }
+ ]
+ }
+ ]
+}
+```
+
+<!-- uuid: 8fcb5dbc-d5aa-4681-8e31-b001d5168d79
+2015-10-25 14:57:30 UTC -->
+<!--
+{
+ "type": "#page.annotation",
+ "description": "List chats",
+ "keywords": "",
+ "section": "documentation",
+ "tocPath": "",
+ "suppressions": [
+ ]
+}
+-->
v1.0 Chatmessage List Replies https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/api/chatmessage-list-replies.md
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
v1.0 Chatmessage Post Replies https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/api/chatmessage-post-replies.md
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
HTTP/1.1 200 OK
"from":{ "application":null, "device":null,
- "conversation":null,
"user":{ "id":"8c0a1a67-50ce-4114-bb6c-da9c5dbcf6ca", "displayName":"Joh Doe",
v1.0 Chatmessage Post https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/api/chatmessage-post.md
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
Content-type: application/json
"from": { "application": null, "device": null,
- "conversation": null,
"user": { "id": "8ea0e38b-efb3-4757-924a-5f94061cf8c2", "displayName": "Robin Kline",
v1.0 Educationuser List Assignments https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/api/educationuser-list-assignments.md
One of the following permissions is required to call this API. To learn more, in
## HTTP request <!-- { "blockType": "ignored" } --> ```http
-GET /education/users/{id}/assignments
+GET /education/me/assignments
``` ## Optional query parameters
v1.0 Identitycontainer List Identityproviders https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/api/identitycontainer-list-identityproviders.md
+
+ Title: "List identityProviders"
+description: "Get a collection of identity provider resources that are configured for a tenant, and that are derived from identityProviderBase."
+localization_priority: Normal
+++
+# List identityProviders
+Namespace: microsoft.graph
+
+Get a collection of identity provider resources that are configured for a tenant, and that are derived from [identityProviderBase](../resources/identityproviderbase.md).
+
+For an Azure AD tenant, the providers can be [socialIdentityProvider](../resources/socialidentityprovider.md) or [builtinIdentityProvider](../resources/builtinidentityprovider.md) objects.
+
+For an Azure AD B2C, the providers can be [socialIdentityProvider](../resources/socialidentityprovider.md) objects.
+
+## Permissions
+
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
+
+|Permission type | Permissions (from least to most privileged) |
+|:--|:|
+|Delegated (work or school account)|IdentityProvider.Read.All, IdentityProvider.ReadWrite.All|
+|Delegated (personal Microsoft account)| Not supported.|
+|Application|IdentityProvider.Read.All, IdentityProvider.ReadWrite.All|
+
+The work or school account needs to belong to one of the following roles:
+
+* Global Administrator
+* External Identity Provider Administrator
+* External ID user flow administrator
+
+## HTTP request
+
+<!-- { "blockType": "ignored" } -->
+
+```http
+GET /identity/identityProviders
+```
+
+## Request headers
+
+|Name|Description|
+|:|:-|
+|Authorization|Bearer {token}. Required.|
+
+## Request body
+
+Do not supply a request body for this method.
+
+## Response
+
+If successful, this method returns a `200 OK` response code and a collection of [socialIdentityProvider](../resources/socialidentityprovider.md) and/or [builtinIdentityProvider](../resources/builtinidentityprovider.md) objects in the response body for an Azure AD tenant.
+
+For an Azure AD B2C tenant this method returns a `200 OK` response code and a collection of [socialIdentityProvider](../resources/socialidentityprovider.md) objects in the response body.
+
+## Examples
+
+### Example 1: List all identity provider resources configured in an Azure AD tenant
+
+#### Request
+The following is an example of the request.
+
+# [HTTP](#tab/http)
+<!-- {
+ "blockType": "request",
+ "name": "get_identityproviderbase"
+}
+-->
+
+``` http
+GET https://graph.microsoft.com/v1.0/identity/identityProviders
+```
+
+# [C#](#tab/csharp)
+
+# [JavaScript](#tab/javascript)
+
+# [Objective-C](#tab/objc)
+
+# [Java](#tab/java)
+++
+#### Response
+The following is an example of the response.
+
+>**Note:** The response object shown here might be shortened for readability.
+
+<!-- {
+ "blockType": "response",
+ "truncated": true,
+ "@odata.type": "microsoft.graph.identityProviderBase",
+ "isCollection": true
+} -->
+
+``` http
+HTTP/1.1 200 OK
+Content-Type: application/json
+
+{
+ "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#identity/identityProviders",
+ "value":[
+ {
+ "@odata.type": "microsoft.graph.builtInIdentityProvider",
+ "id": "MSASignup-OAUTH",
+ "identityProviderType": "MicrosoftAccount",
+ "displayName": "MicrosoftAccount"
+ },
+ {
+ "@odata.type": "#microsoft.graph.socialIdentityProvider",
+ "id": "Facebook-OAUTH",
+ "displayName": "Facebook",
+ "identityProviderType": "Facebook",
+ "clientId": "test",
+ "clientSecret": "******"
+ }
+ ]
+}
+```
+
+### Example 2: List all identity provider resources configured in an Azure AD B2C tenant
+
+#### Request
+The following is an example of the request.
+
+<!-- {
+ "blockType": "request",
+ "name": "get_identityproviderbase"
+}
+-->
+
+``` http
+GET https://graph.microsoft.com/v1.0/identity/identityProviders
+```
+
+#### Response
+The following is an example of the response.
+
+>**Note:** The response object shown here might be shortened for readability.
+
+<!-- {
+ "blockType": "response",
+ "truncated": true,
+ "@odata.type": "microsoft.graph.identityProviderBase",
+ "isCollection": true
+} -->
+
+```http
+HTTP/1.1 200 OK
+Content-type: application/json
+
+{
+ "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#identity/identityProviders",
+ "value": [
+ {
+ "@odata.type": "#microsoft.graph.socialIdentityProvider",
+ "id": "LinkedIn-OAUTH",
+ "displayName": "linkedin",
+ "identityProviderType": "LinkedIn",
+ "clientId": "866xc0qtyy00ih",
+ "clientSecret": "******"
+ }
+ ]
+}
+
+```
v1.0 Identitycontainer Post Identityproviders https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/api/identitycontainer-post-identityproviders.md
+
+ Title: "Create identityProvider"
+description: "Create a new identityProvider object."
+localization_priority: Normal
+++
+# Create identityProvider
+Namespace: microsoft.graph
+
+Create an identity provider resource that is of the type specified in the request body.
+
+Among the types of providers derived from identityProviderBase, you can currently create a [socialIdentityProvider](../resources/socialidentityprovider.md) resource in Azure AD. In Azure AD B2C, this operation can currently create a [socialIdentityProvider](../resources/socialidentityprovider.md) resource.
+
+## Permissions
+
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
+
+|Permission type | Permissions (from least to most privileged) |
+|:--|:|
+|Delegated (work or school account)|IdentityProvider.ReadWrite.All|
+|Delegated (personal Microsoft account)| Not supported.|
+|Application|IdentityProvider.ReadWrite.All|
+
+The work or school account needs to belong to one of the following roles:
+
+* Global Administrator
+* External Identity Provider Administrator
+
+## HTTP request
+
+<!-- { "blockType": "ignored" } -->
+
+```http
+POST /identity/identityProviders
+```
+
+## Request headers
+
+|Name|Description|
+|:|:-|
+|Authorization|Bearer {token}. Required.|
+|Content-Type|application/json. Required.|
+
+## Request body
+
+In the request body, provide a JSON representation of a [socialIdentityProvider](../resources/socialidentityprovider.md) object in Azure AD.
+
+In Azure AD B2C provide a JSON representation of [socialIdentityProvider](../resources/socialidentityprovider.md) object.
+
+All the properties listed in the following table are required.
+
+### socialIdentityProvider object
+
+|Property|Type|Description|
+|:|:--|:-|
+|clientId|String|The client identifier for the application obtained when registering the application with the identity provider.|
+|clientSecret|String|The client secret for the application that is obtained when the application is registered with the identity provider. This is write-only. A read operation returns `****`.|
+|displayName|String|The display name of the identity provider.|
+|identityProviderType|String|For a B2B scenario, possible values: `Google`, `Facebook`. For a B2C scenario, possible values: `Microsoft`, `Google`, `Amazon`, `LinkedIn`, `Facebook`, `GitHub`, `Twitter`, `Weibo`, `QQ`, `WeChat`.|
+|scope|String|Scope defines the information and permissions you are looking to gather from your custom identity provider.|
+
+## Response
+
+If successful, this method returns a `201 Created` response code and a JSON representation of a [socialIdentityProvider](../resources/socialidentityprovider.md) object in the response body for both Azure AD and Azure AD B2C tenants.
+
+If unsuccessful, a `4xx` error will be returned with specific details.
+
+## Examples
+
+### Example 1: Create a specific social identity provider (Azure AD and Azure AD B2C)
+
+#### Request
+
+The following is an example of the request.
+
+# [HTTP](#tab/http)
+<!-- {
+ "blockType": "request",
+ "name": "create_socialidentityprovider_from_identityproviderbase"
+}
+-->
+
+``` http
+POST https://graph.microsoft.com/v1.0/identity/identityProviders
+Content-type: application/json
+
+{
+ "@odata.type": "microsoft.graph.socialIdentityProvider",
+ "displayName": "Login with Amazon",
+ "identityProviderType": "Amazon",
+ "clientId": "56433757-cadd-4135-8431-2c9e3fd68ae8",
+ "clientSecret": "000000000000"
+}
+
+```
+
+# [C#](#tab/csharp)
+
+# [JavaScript](#tab/javascript)
+
+# [Objective-C](#tab/objc)
+
+# [Java](#tab/java)
+++
+#### Response
+
+The following is an example of the response.
+
+>**Note:** The response object shown here might be shortened for readability.
+
+<!-- {
+ "blockType": "response",
+ "truncated": true,
+ "@odata.type": "microsoft.graph.socialIdentityProvider"
+} -->
+
+```http
+HTTP/1.1 201 Created
+Content-type: application/json
+
+{
+ "@odata.type": "microsoft.graph.socialIdentityProvider",
+ "id": "Amazon-OAUTH",
+ "displayName": "Login with Amazon",
+ "identityProviderType": "Amazon",
+ "clientId": "56433757-cadd-4135-8431-2c9e3fd68ae8",
+ "clientSecret": "000000000000"
+}
+```
v1.0 Identityproviderbase Availableprovidertypes https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/api/identityproviderbase-availableprovidertypes.md
+
+ Title: "List availableProviderTypes"
+description: "Retrieve all supported identity providers in the directory."
+localization_priority: Normal
+++
+# List availableProviderTypes
+Namespace: microsoft.graph
+
+Get all identity providers supported in a directory.
+
+## Permissions
+
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
+
+|Permission type | Permissions (from least to most privileged) |
+|:--|:|
+|Delegated (work or school account)|IdentityProvider.Read.All, IdentityProvider.ReadWrite.All|
+|Delegated (personal Microsoft account)| Not supported.|
+|Application|IdentityProvider.Read.All, IdentityProvider.ReadWrite.All|
+
+The work or school account needs to belong to one of the following roles:
+
+* Global Administrator
+* External Identity Provider Administrator
+
+## HTTP request
+
+<!-- { "blockType": "ignored" } -->
+
+```http
+GET /identity/identityProviders/availableProviderTypes
+```
+
+## Request headers
+
+|Name|Description|
+|:|:-|
+|Authorization|Bearer {token}. Required.|
+
+## Request body
+Do not supply a request body for this method.
+
+## Response
+
+If successful, this function returns a `200 OK` response code and a string collection in the response body. The string collection contains the names of the identity providers supported in the tenant.
+
+## Example
+
+### Example 1: List all identity providers available in an Azure AD directory
+
+### Request
+The following is an example of the request.
+
+# [HTTP](#tab/http)
+<!-- {
+ "blockType": "request",
+ "name": "identityprovider_availableprovidertypes"
+}
+-->
+
+``` http
+GET https://graph.microsoft.com/v1.0/identity/identityProviders/availableProviderTypes
+```
+
+# [C#](#tab/csharp)
+
+# [JavaScript](#tab/javascript)
+
+# [Objective-C](#tab/objc)
+
+# [Java](#tab/java)
+++
+### Response
+
+The following is an example of the response.
+
+>**Note:** The response object shown here might be shortened for readability.
+
+<!-- {
+ "blockType": "response",
+ "truncated": true,
+ "@odata.type": "Collection(Edm.String)"
+}
+-->
+
+``` http
+HTTP/1.1 200 OK
+Content-Type: application/json
+
+{
+ "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#Collection(Edm.String)",
+ "value": [
+ "MicrosoftAccount",
+ "EmailOTP",
+ "Facebook",
+ "Google"
+ ]
+}
+```
+
+### Example 2: List all identity providers available in an Azure AD B2C directory
+
+### Request
+The following is an example of the request.
+
+# [HTTP](#tab/http)
+<!-- {
+ "blockType": "request",
+ "name": "identityprovider_availableprovidertypes_b2c"
+}
+-->
+
+``` http
+GET https://graph.microsoft.com/v1.0/identity/identityProviders/availableProviderTypes
+```
+
+# [C#](#tab/csharp)
+
+# [JavaScript](#tab/javascript)
+
+# [Objective-C](#tab/objc)
+
+# [Java](#tab/java)
+++
+### Response
+
+The following is an example of the response.
+
+>**Note:** The response object shown here might be shortened for readability.
+
+<!-- {
+ "blockType": "response",
+ "truncated": true,
+ "@odata.type": "Collection(Edm.String)"
+}
+-->
+
+``` http
+HTTP/1.1 200 OK
+Content-Type: application/json
+
+{
+ "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#Collection(Edm.String)",
+ "value": [
+ "Microsoft",
+ "Google",
+ "Facebook",
+ "Amazon",
+ "LinkedIn",
+ "Weibo",
+ "QQ",
+ "WeChat",
+ "Twitter",
+ "GitHub",
+ "AppleManaged",
+ "OpenIdConnect"
+ ]
+}
+```
v1.0 Identityproviderbase Delete https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/api/identityproviderbase-delete.md
ms.prod: "identity-and-sign-in"
# Delete identityProvider Namespace: microsoft.graph
-Delete a [socialIdentityProvider](../resources/socialidentityprovider.md) object in Azure AD.
+Delete an identity provider resource that is of the type specified by the **id** in the request.
-In Azure AD B2C, delete a [socialIdentityProvider](../resources/socialidentityprovider.md) object.
+Among the types of providers derived from identityProviderBase, you can currently delete a [socialIdentityProvider](../resources/socialidentityprovider.md) resource in Azure AD. In Azure AD B2C, this operation can currently delete a [socialIdentityProvider](../resources/socialidentityprovider.md) resource.
## Permissions
v1.0 Identityproviderbase Get https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/api/identityproviderbase-get.md
ms.prod: "identity-and-sign-in"
# Get identityProvider Namespace: microsoft.graph
-Retrieve the properties and relationships of a [socialIdentityProvider](../resources/socialidentityprovider.md) or a [builtinIdentityProvider](../resources/builtinidentityprovider.md) in Azure AD.
+Get the properties and relationships of the specified identity provider in the tenant.
-For Azure AD B2C, it can retrieve properties and relationships of a [socialIdentityProvider](../resources/socialidentityprovider.md).
+Among the types of providers derived from identityProviderBase, you can currently get a [socialIdentityProvider](../resources/socialidentityprovider.md) or a [builtinIdentityProvider](../resources/builtinidentityprovider.md) resource in Azure AD. In Azure AD B2C, this operation can currently get a [socialIdentityProvider](../resources/socialidentityprovider.md) resource.
## Permissions
For an Azure AD B2C tenant, this method returns a `200 OK` response code and a J
The following is an example of the request. - # [HTTP](#tab/http) <!-- { "blockType": "request",
The following is an example of the request.
``` http GET https://graph.microsoft.com/v1.0/identity/identityProviders/Amazon-OAUTH ```+ # [C#](#tab/csharp) [!INCLUDE [sample-code](../includes/snippets/csharp/get-socialidentityprovider-from-identityproviderbase-csharp-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]
GET https://graph.microsoft.com/v1.0/identity/identityProviders/Amazon-OAUTH
- #### Response The following is an example of the response.
Content-type: application/json
The following is an example of the request. - # [HTTP](#tab/http) <!-- { "blockType": "request",
The following is an example of the request.
``` http GET https://graph.microsoft.com/v1.0/identity/identityProviders/MSASignup-OAUTH ```+ # [C#](#tab/csharp) [!INCLUDE [sample-code](../includes/snippets/csharp/get-builtinidentityprovider-from-identityproviderbase-csharp-snippets.md)] [!INCLUDE [sdk-documentation](../includes/snippets/snippets-sdk-documentation-link.md)]
GET https://graph.microsoft.com/v1.0/identity/identityProviders/MSASignup-OAUTH
- #### Response The following is an example of the response.
v1.0 Identityproviderbase Update https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/api/identityproviderbase-update.md
ms.prod: "identity-and-sign-in"
# Update identityProvider Namespace: microsoft.graph
-Update the properties of a [socialIdentityProvider](../resources/socialidentityprovider.md) object in Azure AD.
+Update the properties of the specified identity provider in a tenant.
-For Azure AD B2C, update the properties of a [socialIdentityProvider](../resources/socialidentityprovider.md) object.
+Among the types of providers derived from identityProviderBase, you can currently update a [socialIdentityProvider](../resources/socialidentityprovider.md) resource in Azure AD. In Azure AD B2C, this operation can currently update a [socialIdentityProvider](../resources/socialidentityprovider.md) resource.
## Permissions
v1.0 Participant Delete https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/api/participant-delete.md
doc_type: apiPageType
# Delete participant
-Delete a specific participant in a call. In some situations, it is appropriate for an application to remove a participant from an active call. This action can be done after the participant answers the call. When an active caller is removed, they are immediately dropped from the call with no pre- or post-removal notification.
+Delete a specific participant in a call. In some situations, it is appropriate for an application to remove a participant from an active call. This action can be done before or after the participant answers the call. When an active caller is removed, they are immediately dropped from the call with no pre- or post-removal notification. When an invited participant is removed, any outstanding add participant request is canceled.
## Permissions One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
Do not supply a request body for this method.
## Response If successful, this method returns a `204 No Content` response code. It does not return anything in the response body.
-## Example
+## Examples
-##### Request
+### Example 1: Cancel active participant
+
+#### Request
The following example shows the request. # [HTTP](#tab/http)
HTTP/1.1 204 No Content
"section": "documentation", "tocPath": "" }-->+
+### Example 2: Cancel invited non active participant
+
+#### Invite a participant to an existing call
+
+<!-- {
+ "blockType": "request",
+ "name": "participant-invite-1"
+}-->
+```http
+POST https://graph.microsoft.com/beta/communications/calls/{id}/participants/invite
+Content-Type: application/json
+Content-Length: 464
+
+{
+ "participants": [
+ {
+ "@odata.type": "#microsoft.graph.invitationParticipantInfo",
+ "replacesCallId": "a7ebfb2d-871e-419c-87af-27290b22e8db",
+ "identity": {
+ "@odata.type": "#microsoft.graph.identitySet",
+ "user": {
+ "@odata.type": "#microsoft.graph.identity",
+ "id": "278405a3-f568-4b3e-b684-009193463064",
+ "identityProvider": "AAD"
+ }
+ }
+ }
+ ],
+ "clientContext": "f2fa86af-3c51-4bc2-8fc0-475452d9764f"
+}
+```
+
+#### Response
+
+> **Note:** The response object shown here might be shortened for readability.
+
+<!-- {
+ "blockType": "response",
+ "truncated": true,
+ "@odata.type": "microsoft.graph.inviteParticipantsOperation"
+} -->
+```http
+HTTP/1.1 200 OK
+Content-Type: application/json
+
+{
+ "@odata.type": "#microsoft.graph.inviteParticipantsOperation",
+ "id": "eec3812a-fdc3-4fb4-825c-a06c9f35414e",
+ "status": "Running",
+ "clientContext": "f2fa86af-3c51-4bc2-8fc0-475452d9764f",
+ "resultInfo": null,
+ "participants": [
+ {
+ "endpointType": null,
+ "id": null,
+ "replacesCallId": "a7ebfb2d-871e-419c-87af-27290b22e8db",
+ "identity": {
+ "user": {
+ "id": "278405a3-f568-4b3e-b684-009193463064",
+ "identityProvider": "AAD",
+ "tenantId": "72f988bf-86f1-41af-91ab-2d7cd011db47"
+ },
+ "application": null,
+ "device": null,
+ "phone": null
+ }
+ }
+ ]
+}
+```
+#### Delete invited participant before participant is added to the roster
+
+<!-- {
+ "blockType": "request",
+ "name": "delete-participant"
+}-->
+```http
+DELETE https://graph.microsoft.com/beta/communications/calls/{id}/participants/{id}
+```
+
+#### Response
+
+> **Note:** The response object shown here might be shortened for readability.
+
+<!-- {
+ "blockType": "response",
+ "truncated": true
+} -->
+```http
+HTTP/1.1 204 No Content
+```
+
+<!-- uuid: 8fcb5dbc-d5aa-4681-8e31-b001d5168d79
+2015-10-25 14:57:30 UTC -->
+<!-- {
+ "type": "#page.annotation",
+ "description": "Delete participant",
+ "keywords": "",
+ "section": "documentation",
+ "tocPath": ""
+}-->
v1.0 Serviceprincipal Post Approleassignedto https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/api/serviceprincipal-post-approleassignedto.md
One of the following permissions is required to call this API. To learn more, in
|Permission type | Permissions (from least to most privileged) | |:--|:|
-|Delegated (work or school account) | AppRoleAssignment.ReadWrite.All and Application.Read.All, AppRoleAssignment.ReadWrite.All and Directory.Read.All, Directory.ReadWrite.All, Directory.AccessAsUser.All |
+|Delegated (work or school account) | AppRoleAssignment.ReadWrite.All and Application.Read.All, AppRoleAssignment.ReadWrite.All and Directory.Read.All, Application.ReadWrite.All, Directory.ReadWrite.All, Directory.AccessAsUser.All |
|Delegated (personal Microsoft account) | Not supported. |
-|Application | AppRoleAssignment.ReadWrite.All and Application.Read.All, AppRoleAssignment.ReadWrite.All and Directory.Read.All, Directory.ReadWrite.All |
+|Application | AppRoleAssignment.ReadWrite.All and Application.Read.All, AppRoleAssignment.ReadWrite.All and Directory.Read.All, Application.ReadWrite.All, Directory.ReadWrite.All |
## HTTP request
v1.0 User List https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/api/user-list.md
Do not supply a request body for this method.
If successful, this method returns a `200 OK` response code and collection of [user](../resources/user.md) objects in the response body. If a large user collection is returned, you can use [paging in your app](/graph/paging).
+Attempting to use `$select` on the `/users` collection to retrieve properties that cannot be returned within a user collection (for example, the request `../users?$select=aboutMe`) returns a `501 Not Implemented` error code.
+ ## Examples ### Example 1: Get all users
v1.0 Builtinidentityprovider https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/resources/builtinidentityprovider.md
This type inherits from [identityProviderBase](../resources/identityproviderbase
| Method | Return Type |Description| |:|:--|:-|
-|[List](../api/identityproviderbase-list.md)|[identityProviderBase](../resources/identityproviderbase.md) collection|Retrieve all identity providers configured in a tenant including the built-in identity providers.|
+|[List](../api/identitycontainer-list-identityproviders.md)|[identityProviderBase](../resources/identityproviderbase.md) collection|Retrieve all identity providers configured in a tenant including the built-in identity providers. There is no way to retrieve only the built-in identity providers in a tenant.|
|[Get](../api/identityproviderbase-get.md) |builtInIdentityProvider|Retrieve properties of an built-in identity provider.|
-|[List available provider types](../api/identityproviderbase-list-availableprovidertypes.md)|String collection|Retrieve all available identity provider types available in the tenant.|
+|[List available provider types](../api/identityproviderbase-availableprovidertypes.md)|String collection|Retrieve all available identity provider types available in the tenant.|
## Properties
v1.0 Chatmessage https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/resources/chatmessage.md
Represents an individual chat message within a [channel](channel.md) or [chat](c
| Property | Type |Description| |:|:--|:-|
-|id|String| Read-only. Unique Id of the message.|
-|replyToId| string | Read-only. Id of the parent chat message or root chat message of the thread. (Only applies to chat messages in channels, not chats.) |
-|from|[chatMessageFromIdentitySet](chatmessagefromidentityset.md)| Read only. Details of the sender of the chat message.|
+|id|String| Read-only. Unique ID of the message.|
+|replyToId| string | Read-only. ID of the parent chat message or root chat message of the thread. (Only applies to chat messages in channels, not chats.) |
+|from|[chatMessageFromIdentitySet](chatmessagefromidentityset.md)| Details of the sender of the chat message. Can only be set during [migration](/microsoftteams/platform/graph-api/import-messages/import-external-messages-to-teams).|
|etag| string | Read-only. Version number of the chat message. |
-|messageType|chatMessageType|The type of chat message. The possible values are: `message`, `chatEvent`, `typing`, `unknownFutureValue`.|
+|messageType|chatMessageType|The type of chat message. The possible values are: `message`, `chatEvent`, `typing`, `unknownFutureValue`, `systemEventMessage`. Note that you must use the `Prefer: include-unknown-enum-members` request header to get the following value in this [evolvable enum](/graph/best-practices-concept#handling-future-members-in-evolvable-enumerations): `systemEventMessage`.|
|createdDateTime|dateTimeOffset|Timestamp of when the chat message was created.| |lastModifiedDateTime|dateTimeOffset|Read only. Timestamp when the chat message is created (initial setting) or modified, including when a reaction is added or removed. | |lastEditedDateTime|dateTimeOffset|Read only. Timestamp when edits to the chat message were made. Triggers an "Edited" flag in the Teams UI. If no edits are made the value is `null`.|
Represents an individual chat message within a [channel](channel.md) or [chat](c
|subject|string| The subject of the chat message, in plaintext.| |body|[itemBody](itembody.md)|Plaintext/HTML representation of the content of the chat message. Representation is specified by the contentType inside the body. The content is always in HTML if the chat message contains a [chatMessageMention](chatmessagemention.md). | |summary|string| Summary text of the chat message that could be used for push notifications and summary views or fall back views. Only applies to channel chat messages, not chat messages in a chat. |
-|attachments|[chatMessageAttachment](chatmessageattachment.md) collection |Attached files. Attachments are currently read-only ΓÇô sending attachments is not supported. |
-|mentions|[chatMessageMention](chatmessagemention.md) collection| List of entities mentioned in the chat message. Currently supports user, bot, team, channel.|
+|attachments|[chatMessageAttachment](chatmessageattachment.md) collection |References to attached objects like files, tabs, meetings etc.|
+|mentions|[chatMessageMention](chatmessagemention.md) collection| List of entities mentioned in the chat message. Supported entities are: user, bot, team, and channel.|
|importance|string | The importance of the chat message. The possible values are: `normal`, `high`, `urgent`.| |reactions| [chatMessageReaction](chatmessagereaction.md) collection | Reactions for this chat message (for example, Like).| |locale|string|Locale of the chat message set by the client. Always set to `en-us`.|
Represents an individual chat message within a [channel](channel.md) or [chat](c
|chatId|string|If the message was sent in a chat, represents the identity of the chat.| |channelIdentity|[channelIdentity](channelidentity.md)|If the message was sent in a channel, represents identity of the channel.| |webUrl|string|Read-only. Link to the message in Microsoft Teams.|+ ## Relationships | Relationship | Type | Description |
v1.0 Identitycontainer https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/resources/identitycontainer.md
+
+ Title: "identityContainer resource type"
+description: "Represents the entry point to different features in External Identities for both Azure Active Directory (Azure AD) and Azure AD B2C tenants."
+localization_priority: Priority
+++
+# identityContainer resource type
+
+Namespace: microsoft.graph
++
+Represents the entry point to different features in [External Identities](/azure/active-directory/external-identities/) for both Azure Active Directory (Azure AD) and Azure AD B2C tenants.
+
+## Methods
+
+None.
+
+## Properties
+
+None.
+
+## Relationships
+
+| Relationship | Type | Description |
+|:-|:|:|
+|apiConnectors|[identityApiConnector](identityApiConnector.md) collection|Represents entry point for API connectors.|
+|b2xUserFlows|[b2xIdentityUserFlow](b2xIdentityUserFlow.md) collection| Represents entry point for B2X/self-service sign-up identity userflows.|
+|identityProvider|[identityProviderBase](identityProviderBase.md) collection| Represents entry point for identity provider base.|
+|userFlowAttributes|[identityUserFlowAttribute](identityUserFlowAttribute.md) collection| Represents entry point for identity userflow attributes.|
+
+## JSON representation
+
+The following is a JSON representation of the resource.
+<!-- {
+ "blockType": "resource",
+ "@odata.type": "microsoft.graph.identityContainer",
+ "openType": false
+}
+-->
+
+```json
+{
+ "@odata.type": "#microsoft.graph.identityContainer"
+}
+```
v1.0 Identityproviderbase https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/resources/identityproviderbase.md
# identityProviderBase resource type Namespace: microsoft.graph
-Represents identity providers with [External Identities](/azure/active-directory/external-identities/) for both Azure Active Directory tenant and an Azure AD B2C tenant.
+Represents identity providers with [External Identities](/azure/active-directory/external-identities/) for both Azure Active Directory (Azure AD) and Azure AD B2C tenants. It is an abstract type that is inherited by [socialIdentityProvider](../resources/socialidentityprovider.md) and [builtinIdentityProvider](../resources/builtinidentityprovider.md).
+
+For Azure AD B2B scenarios , the identity provider is either a [socialIdentityProvider](../resources/socialidentityprovider.md) or a [builtinIdentityProvider](../resources/builtinidentityprovider.md). Configuring an identity provider in your Azure AD tenant enables new Azure AD B2B guest scenarios. For example, an organization with resources in Microsoft 365 can share them with a Gmail user. The Gmail user will use their Google account credentials to authenticate and access the documents.
+
+In an Azure AD B2C directory, the identity provider type is a [socialIdentityProvider](../resources/socialidentityprovider.md). Configuring an identity provider in your Azure AD B2C directory enables users to sign up and sign in using a social account in an application. For example, an application can use Azure AD B2C to allow users to sign up for the service using a Facebook account.
## Methods | Method | Return Type |Description| |:|:--|:-|
-|[List](../api/identityproviderbase-list.md)|identityProviderBase collection|Retrieve all identity providers configured in a tenant.|
-|[List available provider types](../api/identityproviderbase-list-availableprovidertypes.md)|String collection|Retrieve all available identity provider types.|
+|[List](../api/identitycontainer-list-identityproviders.md)|[identityProviderBase](../resources/identityproviderbase.md) collection|Retrieve all identity providers configured in a tenant.|
+|[Create](../api/identitycontainer-post-identityproviders.md)|[socialIdentityProvider](../resources/socialidentityprovider.md)|Create a new [socialIdentityProvider](../resources/socialidentityprovider.md) (Azure AD or Azure AD B2C).|
+|[Get](../api/identityproviderbase-get.md) |[socialIdentityProvider](../resources/socialidentityprovider.md) or [builtinIdentityProvider](../resources/builtinidentityprovider.md)|Retrieve properties of a [socialIdentityProvider](../resources/socialidentityprovider.md) (Azure AD or Azure AD B2C) or a [builtinIdentityProvider](../resources/builtinidentityprovider.md) (Azure AD).|
+|[Update](../api/identityproviderbase-update.md)|None|Update a [socialIdentityProvider](../resources/socialidentityprovider.md) (Azure AD or Azure AD B2C).|
+|[Delete](../api/identityproviderbase-delete.md)|None|Delete a [socialIdentityProvider](../resources/socialidentityprovider.md) (Azure AD or Azure AD B2C).|
+|[List available provider types](../api/identityproviderbase-availableprovidertypes.md)|String collection|Retrieve all supported identity provider types.|
## Properties |Property|Type|Description| |:|:--|:-|
-|id|String|The ID of the identity provider.|
+|id|String|The identifier of the identity provider.|
|displayName|String|The display name of the identity provider.| ## JSON representation
v1.0 Socialidentityprovider https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/resources/socialidentityprovider.md
Configuring an identity provider in your Azure AD B2C tenant enables users to si
| Method | Return Type |Description| |:|:--|:-|
-|[List](../api/identityproviderbase-list.md)|[identityProviderBase](../resources/identityproviderbase.md) collection|Retrieve all identity providers configured in a tenant including the social identity providers.|
-|[Create](../api/identityproviderbase-post-identityproviders.md)|socialidentityprovider |Create a new social identity provider.|
-|[Get](../api/identityproviderbase-get.md) |socialidentityprovider |Retrieve properties of a social identity provider.|
-|[Update](../api/identityproviderbase-update.md)|None|Update a social identity provider.|
-|[Delete](../api/identityproviderbase-delete.md)|None|Delete a social identity provider.|
-|[List available provider types](../api/identityproviderbase-list-availableprovidertypes.md)|String collection|Retrieve all available identity provider types available in the tenant.|
+|[List](../api/identitycontainer-list-identityproviders.md)|[identityProviderBase](../resources/identityproviderbase.md) collection|Retrieve all identity providers configured in a tenant including the [socialidentityprovider](../resources/socialidentityprovider.md) object types. There is no way to retrieve only the social identity providers in a tenant.|
+|[Create](../api/identitycontainer-post-identityproviders.md)|[socialidentityprovider](../resources/socialidentityprovider.md) |Create a new [socialidentityprovider](../resources/socialidentityprovider.md) object.|
+|[Get](../api/identityproviderbase-get.md) |[socialidentityprovider](../resources/socialidentityprovider.md) |Retrieve properties of a [socialidentityprovider](../resources/socialidentityprovider.md) object.|
+|[Update](../api/identityproviderbase-update.md)|None|Update a [socialidentityprovider](../resources/socialidentityprovider.md) object.|
+|[Delete](../api/identityproviderbase-delete.md)|None|Delete a [socialidentityprovider](../resources/socialidentityprovider.md) object.|
+|[List available provider types](../api/identityproviderbase-availableprovidertypes.md)|String collection|Retrieve all available identity provider types available in the tenant.|
## Properties
Configuring an identity provider in your Azure AD B2C tenant enables users to si
### Where to get the client identifier and secret
-Each identity provider has a process for creating an app registration. For example, users create an app registration with Facebook at [developers.facebook.com](https://developers.facebook.com/). The resulting client identifier and client secret can be passed to [create identityProvider](../api/identityproviderbase-post-identityproviders.md). Then, each user object in the directory can be federated to any of the tenant's identity providers for authentication. This enables the user to sign in by entering credentials on the identity provider's sign-in page. The token from the identity provider is validated by Azure AD before the tenant issues a token to the application.
+Each identity provider has a process for creating an app registration. For example, users create an app registration with Facebook at [developers.facebook.com](https://developers.facebook.com/). The resulting client identifier and client secret can be passed to [create identityProvider](../api/identitycontainer-post-identityproviders.md). Then, each user object in the directory can be federated to any of the tenant's identity providers for authentication. This enables the user to sign in by entering credentials on the identity provider's sign-in page. The token from the identity provider is validated by Azure AD before the tenant issues a token to the application.
## JSON representation
v1.0 Toc.Yml https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/toc.yml a/api-reference/v1.0/toc.yml
items:
href: api/userscopeteamsappinstallation-get-chat.md - name: Get chat for user href: api/chat-get.md
+ - name: List chats for user
+ href: api/chat-list.md
- name: To-do tasks items: - name: Task
items:
href: api/educationuser-list-taughtclasses.md - name: Create rubric href: api/educationuser-post-rubrics.md
+ - name: List assignments
+ href: api/educationuser-list-assignments.md
- name: Assignment href: resources/educationassignment.md items:
items:
- name: Outcome items: - name: Outcome
- href: resources/educationoutcome.md
+ href: resources/educationoutcome.md
- name: Feedback outcome type href: resources/educationfeedbackoutcome.md - name: Points outcome type
items:
- name: Social identity provider href: resources/socialidentityprovider.md - name: List
- href: api/identityproviderbase-list.md
+ href: api/identitycontainer-list-identityproviders.md
- name: Create
- href: api/identityproviderbase-post-identityproviders.md
+ href: api/identitycontainer-post-identityproviders.md
- name: Get href: api/identityproviderbase-get.md - name: Update
items:
- name: Delete href: api/identityproviderbase-delete.md - name: List available provider types
- href: api/identityproviderbase-list-availableprovidertypes.md
+ href: api/identityproviderbase-availableprovidertypes.md
- name: Identity provider (deprecated) items: - name: Identity provider type
items:
- name: Chat href: resources/chat.md items:
+ - name: List chats
+ href: api/chat-list.md
- name: Create chat href: api/chat-post.md - name: Get chat