generated: '2026-07-11' method: derived source: openapi/microsoft-active-directory-openapi.yml schemes: - name: oauth2 source: openapi/microsoft-active-directory-openapi.yml flows: - flow: authorizationCode authorizationUrl: https://login.microsoftonline.com/common/oauth2/v2.0/authorize tokenUrl: https://login.microsoftonline.com/common/oauth2/v2.0/token - flow: clientCredentials tokenUrl: https://login.microsoftonline.com/common/oauth2/v2.0/token description: Microsoft Entra ID OAuth 2.0 scopes: - scope: Application.Read.All description: Read all applications flows: - authorizationCode sources: - openapi/microsoft-active-directory-openapi.yml - scope: Application.ReadWrite.All description: Read and write all applications flows: - authorizationCode sources: - openapi/microsoft-active-directory-openapi.yml - scope: Directory.Read.All description: Read directory data flows: - authorizationCode sources: - openapi/microsoft-active-directory-openapi.yml - scope: Directory.ReadWrite.All description: Read and write directory data flows: - authorizationCode sources: - openapi/microsoft-active-directory-openapi.yml - scope: Group.Read.All description: Read all groups flows: - authorizationCode sources: - openapi/microsoft-active-directory-openapi.yml - scope: Group.ReadWrite.All description: Read and write all groups flows: - authorizationCode sources: - openapi/microsoft-active-directory-openapi.yml - scope: User.Read.All description: Read all users flows: - authorizationCode sources: - openapi/microsoft-active-directory-openapi.yml - scope: User.ReadWrite.All description: Read and write all users flows: - authorizationCode sources: - openapi/microsoft-active-directory-openapi.yml - scope: https://graph.microsoft.com/.default description: Use app-registered Graph permissions flows: - clientCredentials sources: - openapi/microsoft-active-directory-openapi.yml