accessPackageAssignment: filterByCurrentUser
Namespace: microsoft.graph
Important
APIs under the /beta
version in Microsoft Graph are subject to change. Use of these APIs in production applications is not supported. To determine whether an API is available in v1.0, use the Version selector.
In Microsoft Entra Entitlement Management, retrieve a list of accessPackageAssignment objects filtered on the signed-in user.
This API is available in the following national cloud deployments.
Global service | US Government L4 | US Government L5 (DOD) | China operated by 21Vianet |
---|---|---|---|
✅ | ✅ | ✅ | ❌ |
Choose the permission or permissions marked as least privileged for this API. Use a higher privileged permission or permissions only if your app requires it. For details about delegated and application permissions, see Permission types. To learn more about these permissions, see the permissions reference.
Permission type | Least privileged permissions | Higher privileged permissions |
---|---|---|
Delegated (work or school account) | EntitlementManagement.Read.All | EntitlementManagement.ReadWrite.All |
Delegated (personal Microsoft account) | Not supported. | Not supported. |
Application | Not supported. | Not supported. |
GET /identityGovernance/entitlementManagement/accessPackageAssignments/filterByCurrentUser(on='parameterValue')
The following table shows the parameters that can be used with this function.
Parameter | Type | Description |
---|---|---|
on | accessPackageAssignmentFilterByCurrentUserOptions | The list of current user options that can be used to filter on the access package assignments list. The possible values are: target , createdBy . |
target
is used to get theaccessPackageAssignment
objects where the signed-in user is the target. The resulting list includes all of the assignments, current and expired, for the caller across all catalogs and access packages.createdBy
is used to get theaccessPackageAssignment
objects created by the signed-in user. The resulting list includes all of the assignments that the caller created for themselves or on behalf of others, such as in case of admin direct assignment, across all catalogs and access packages.
Name | Description |
---|---|
Authorization | Bearer {token}. Required. Learn more about authentication and authorization. |
Don't supply a request body for this method.
If successful, this method returns a 200 OK
response code and an accessPackageAssignment collection in the response body.
When a result set spans multiple pages, Microsoft Graph returns that page with an @odata.nextLink
property in the response that contains a URL to the next page of results. If that property is present, continue making more requests with the @odata.nextLink
URL in each response, until all the results are returned. For more information, see paging Microsoft Graph data in your app.
The following example gets the status of access package assignments targeted for the signed-in user.
The following example shows a request.
GET https://graph.microsoft.com/beta/identityGovernance/entitlementManagement/accessPackageAssignments/filterByCurrentUser(on='target')
The following example shows the response.
Note: The response object shown here might be shortened for readability.
HTTP/1.1 200 OK
Content-Type: application/json
{
"value": [
{
"@odata.type": "#microsoft.graph.accessPackageAssignment",
"id": "5521fb4f-6a6c-410a-9191-461a65fd39d4",
"catalogId": "34cfe9a8-88bc-4c82-b3d8-6b77d7035c33",
"accessPackageId": "ca6992f8-e413-49a1-9619-c9819f4f73e0",
"assignmentPolicyId": "7c6e6874-789e-4f11-b351-cc7b5883deef",
"targetId": "2cb14f51-0108-41d8-89da-cd0e05e2c988",
"assignmentStatus": "Delivered",
"assignmentState": "Delivered",
"isExtended": false,
"expiredDateTime": null,
"schedule": {
"startDateTime": "2021-01-19T20:02:36.013Z",
"recurrence": null,
"expiration": {
"endDateTime": "2022-01-19T20:02:36.013Z",
"duration": null,
"type": "afterDateTime"
}
}
}
]
}