accessReview 资源类型accessReview resource type

命名空间:microsoft.graphNamespace: microsoft.graph

重要

/betaMicrosoft Graph 中的版本下的 api 可能会发生更改。APIs under the /beta version in Microsoft Graph are subject to change. 不支持在生产应用程序中使用这些 API。Use of these APIs in production applications is not supported. 若要确定 API 在 v1.0 中是否可用,请使用 版本 选择器。To determine whether an API is available in v1.0, use the Version selector.

表示 Azure AD 访问评审Represents an Azure AD access review.

方法Methods

方法Method 返回类型Return Type 说明Description
列出 accessReviewsList accessReviews accessReview 集合accessReview collection 列出 businessFlowTemplate 的 accessReviews。List accessReviews for a businessFlowTemplate.
获取 accessReviewGet accessReview accessReviewaccessReview 获取具有特定 id 的访问评审。Get an access review with a specific id.
创建 accessReviewCreate accessReview accessReviewaccessReview 创建新的 accessReview。Create a new accessReview.
更新 accessReviewUpdate accessReview accessReviewaccessReview 更新 accessReview。Update an accessReview.
删除 accessReviewDelete accessReview 无。None. 删除 accessReview。Delete an accessReview.
列出 accessReview 审阅者List accessReview reviewers userIdentity 集合userIdentity collection 获取 accessReview 的审阅者。Get the reviewers of an accessReview.
添加 accessReview 审阅者Add accessReview reviewer 无。None. 向 accessReview 添加审阅者。Add a reviewer to an accessReview.
删除 accessReview 审阅者Remove accessReview reviewer 无。None. 从 accessReview 中删除审阅者。Remove a reviewer from an accessReview.
列出 accessReview 决策List accessReview decisions accessReviewDecision 集合accessReviewDecision collection 获取 accessReview 的决策。Get the decisions of an accessReview.
列出我的 accessReview 决策List my accessReview decisions accessReviewDecision 集合accessReviewDecision collection 作为审阅者,请 accessReview 的决策。As a reviewer, get my decisions of an accessReview.
发送 accessReview 提醒Send accessReview reminder 无。None. 向 accessReview 的审阅者发送提醒。Send a reminder to the reviewers of an accessReview.
停止 accessReviewStop accessReview 无。None. 停止 accessReview。Stop an accessReview.
重置 accessReview 决策Reset accessReview decisions 无。None. 在进行中的 accessReview 中重置决策。Reset the decisions in an in-progress accessReview.
应用 accessReview 决策Apply accessReview decisions 无。None. 从已完成的 accessReview 应用决策。Apply the decisions from a completed accessReview.

属性Properties

属性Property 类型Type 说明Description
idid 字符串String 用于访问评审的功能分配的唯一标识符。The feature-assigned unique identifier of an access review.
displayNamedisplayName 字符串String 访问审阅名称。The access review name. 创建时为必需项。Required on create.
startDateTimestartDateTime DateTimeOffsetDateTimeOffset 计划开始评审时的日期时间。The DateTime when the review is scheduled to be start. 这可能是将来的日期。This could be a date in the future. 创建时为必需项。Required on create.
endDateTimeendDateTime DateTimeOffsetDateTimeOffset 计划结束评审时的日期/时间。The DateTime when the review is scheduled to end. 此时间必须至少为一个晚于开始日期的一天。This must be at least one day later than the start date. 创建时为必需项。Required on create.
状态status 字符串String 此只读字段指定 accessReview 的状态。This read-only field specifies the status of an accessReview. 典型状态包括、、、、、、 Initializing NotStarted Starting InProgress Completing Completed AutoReviewingAutoReviewedThe typical states include Initializing, NotStarted, Starting,InProgress, Completing, Completed, AutoReviewing, and AutoReviewed.
descriptiondescription 字符串String 由 access 评审创建者提供的说明,用于向审阅者显示。The description provided by the access review creator, to show to the reviewers.
businessFlowTemplateIdbusinessFlowTemplateId 字符串String 业务流模板标识符。The business flow template identifier. 创建时为必需项。Required on create. 此值区分大小写。This value is case sensitive.
reviewerTypereviewerType 字符串String 目标对象的审阅者的关系类型,一个 self delegatedentityOwnersThe relationship type of reviewer to the target object, one of self, delegated or entityOwners. 创建时为必需项。Required on create.
createdBycreatedBy userIdentityuserIdentity 创建此评审的用户。The user who created this review.
reviewedEntityreviewedEntity identityidentity 访问权检查其访问权限分配的对象。The object for which the access reviews is reviewing the access rights assignments. 此组可以是查看组中用户的成员身份的组,也可以是用于查看对应用程序的用户分配的应用程序。This can be the group for the review of memberships of users in a group, or the app for a review of assignments of users to an application. 创建时为必需项。Required on create.
settingssettings accessReviewSettingsaccessReviewSettings AccessReview 的设置,请参阅下面的类型定义。The settings of an accessReview, see type definition below.

关系Relationships

关系Relationship 类型Type 说明Description
审批reviewers userIdentity 集合userIdentity collection 访问评审的审阅者的集合(如果 access 评审 reviewerType 的类型为) delegatedThe collection of reviewers for an access review, if access review reviewerType is of type delegated.
针对decisions accessReviewDecision 集合accessReviewDecision collection 此访问评审的决策集合。The collection of decisions for this access review.
myDecisionsmyDecisions accessReviewDecision 集合accessReviewDecision collection 如果呼叫者是审阅者,则为呼叫者做出决策的集合。The collection of decisions for the caller, if the caller is a reviewer.
instancesinstances accessReview 集合accessReview collection 如果此对象是定期访问审核,则 access 的集合将审阅过去、现在和将来的实例。The collection of access reviews instances past, present and future, if this object is a recurring access review.

对象中是否存在这些关系,取决于该对象是一次性访问评审、定期访问评审的系列,还是定期访问评审的实例。Whether these relationships are present on an object, depends upon whether the object is a one-time access review, the series of a recurring access review, or an instance of a recurring access review.

方案Scenario 是否有审阅者?Has reviewers? 是否有决策和 myDecisions?Has decisions and myDecisions? 有实例吗?Has instances?
一次性访问审核One-time access review Yes 是,启动后Yes, once started No
定期访问审核Recurring access review Yes No Yes
定期访问审核实例Instance of a recurring access review Yes 是,启动后Yes, once started No

JSON 表示形式JSON representation

下面是资源的 JSON 表示形式。Here is a JSON representation of the resource.

{
 "id": "string (identifier)",
 "displayName": "string",
 "startDateTime": "string (timestamp)",
 "endDateTime": "string (timestamp)",
 "status": "string",
 "description": "string",
 "businessFlowTemplateId": "string (identifier)",
 "reviewerType": "string",
 "createdBy": {"@odata.type": "microsoft.graph.userIdentity"},
 "reviewedEntity": {"@odata.type": "microsoft.graph.identity"},
 "settings": {"@odata.type": "microsoft.graph.accessReviewSettings"},
 "reviewers": [{"@odata.type": "microsoft.graph.userIdentity"}]
}