[英]List groups which has access to Enterprise application AzureAD RBAC
Look in the RestAPI if you found what you need: https://msdn.microsoft.com/Library/Azure/Ad/Graph/api/api-catalog 如果您找到了所需的内容,请查看RestAPI: https ://msdn.microsoft.com/Library/Azure/Ad/Graph/api/api-catalog
If you don't find it, it's likely not possible. 如果找不到,则可能无法实现。 If you found it, this RestAPI is exposed in Python by the
azure-graphrbac
package: 如果找到它,则该AzureAPI将通过
azure-graphrbac
包在Python中azure-graphrbac
:
If you found it in the RestAPI, but not in the Python package, open an issue for support to the endpoint your need: 如果您在RestAPI中找到了它,但在Python包中找不到了,请打开一个问题以支持您所需的端点:
https://github.com/Azure/azure-sdk-for-python/issues https://github.com/Azure/azure-sdk-for-python/issues
(I work in the Azure SDK for Python team at MS) (我在MS的Azure SDK for Python团队中工作)
Thanks to @laurent-mazuel I found the problem that Navigation Properties are missing from SDK 感谢@ laurent-mazuel,我发现SDK中缺少导航属性的问题
Workaround: 解决方法:
From documentation: Service Principal Entity has Navigation property appRoleAssignedTo
. 从文档中: 服务主体实体具有导航属性
appRoleAssignedTo
。 Then the solution was to use raw API endpoint as folows: https://graph.windows.net/{tenant_id}/servicePrincipals/{service_principal}/appRoleAssignedTo/
and extend ServicePrincipalOperations
in azure-sdk-for-python
然后,解决方案是使用原始API端点作为以下对象:
https://graph.windows.net/{tenant_id}/servicePrincipals/{service_principal}/appRoleAssignedTo/
://graph.windows.net/{tenant_id}/servicePrincipals/{service_principal}/appRoleAssignedTo https://graph.windows.net/{tenant_id}/servicePrincipals/{service_principal}/appRoleAssignedTo/
并在azure-sdk-for-python
扩展ServicePrincipalOperations
Which returns AppRoleAssignment entities. 它返回AppRoleAssignment实体。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.