Create tokenLifetimePolicy

Namespace: microsoft.graph

Create a new tokenLifetimePolicy object.

Permissions

One of the following permissions is required to call this API. To learn more, including how to choose permissions, see Permissions.

Permission type Permissions (from least to most privileged)
Delegated (work or school account) Policy.ReadWrite.ApplicationConfiguration
Delegated (personal Microsoft account) Not supported.
Application Policy.ReadWrite.ApplicationConfiguration

HTTP request

POST policies/tokenLifetimePolicies

Request headers

Name Description
Authorization Bearer {token}. Required.
Content-type application/json. Required.

Request body

In the request body, supply a JSON representation of tokenLifetimePolicy object.

Response

If successful, this method returns a 201 Created response code and a new tokenLifetimePolicy object in the response body.

Examples

Request

The following is an example of a request that creates a token lifetime policy that sets the access and ID token lifetime to eight hours.

POST https://graph.microsoft.com/v1.0/policies/tokenLifetimePolicies
Content-type: application/json

{
    "definition": [
        "{\"TokenLifetimePolicy\":{\"Version\":1,\"AccessTokenLifetime\":\"8:00:00\"}}"
    ],
    "displayName": "Contoso token lifetime policy",
    "isOrganizationDefault": true
}

Response

The following is an example of the response.

Note: The response object shown here might be shortened for readability.

HTTP/1.1 201 Created
Content-type: application/json

{
    "@odata.context": "https://graph.microsoft.com/v1.0/$metadata#policies/tokenLifetimePolicies/$entity",
    "id": "4d2f137b-e8a9-46da-a5c3-cc85b2b840a4",
    "deletedDateTime": null,
    "definition": [
        "{\"TokenLifetimePolicy\":{\"Version\":1,\"AccessTokenLifetime\":\"8:00:00\"}}"
    ],
    "displayName": "Contoso token lifetime policy",
    "isOrganizationDefault": true
}