getAssignedRoleIdsForLoggedInUser function

Namespace: microsoft.graph

Important: APIs under the /beta version in Microsoft Graph are subject to change. Use of these APIs in production applications is not supported.

Note: The Microsoft Graph API for Intune requires an active Intune license for the tenant.

Retrieves the assigned role definitions and role assignments of the currently authenticated user.

Prerequisites

One of the following permissions is required to call this API. To learn more, including how to choose permissions, see Permissions.

Permission type Permissions (from most to least privileged)
Delegated (work or school account)
    Role-based access control (RBAC) DeviceManagementRBAC.ReadWrite.All, DeviceManagementRBAC.Read.All
Delegated (personal Microsoft account) Not supported.
Application
    Role-based access control (RBAC) DeviceManagementRBAC.ReadWrite.All, DeviceManagementRBAC.Read.All

HTTP Request

GET /deviceManagement/getAssignedRoleIdsForLoggedInUser

Request headers

Header Value
Authorization Bearer <token> Required.
Accept application/json

Request body

Do not supply a request body for this method.

Response

If successful, this function returns a 200 OK response code and a deviceAndAppManagementAssignedRoleId in the response body.

Example

Request

Here is an example of the request.

GET https://graph.microsoft.com/beta/deviceManagement/getAssignedRoleIdsForLoggedInUser

Response

Here is an example of the response. Note: The response object shown here may be truncated for brevity. All of the properties will be returned from an actual call.

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 263

{
  "value": {
    "@odata.type": "microsoft.graph.deviceAndAppManagementAssignedRoleIds",
    "roleDefinitionIds": [
      "df52f163-f163-df52-63f1-52df63f152df"
    ],
    "roleAssignmentIds": [
      "1f35d53d-d53d-1f35-3dd5-351f3dd5351f"
    ]
  }
}