Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Conditional access device conditions #125

Merged
merged 7 commits into from
Nov 25, 2021
Merged

Conditional access device conditions #125

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
7 commits
Select commit Hold shift + click to select a range
425fcec
Conditional Access Policies: support Device and DeviceStates conditio…
manicminer Nov 22, 2021
85b0880
Types for ConditionalAccessClientAppType
manicminer Nov 22, 2021
4f11534
Types for ConditionalAccessDevicePlatform
manicminer Nov 22, 2021
a61ed23
Types for ConditionalAccessRiskLevel
manicminer Nov 22, 2021
049e955
Types for ConditionalAccessGrantControl
manicminer Nov 22, 2021
b7b57c5
Types for ConditionalAccessCloudAppSecuritySessionControlType
manicminer Nov 22, 2021
3dd41c0
Types for PersistentBrowserSessionMode
manicminer Nov 24, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
52 changes: 35 additions & 17 deletions msgraph/models.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -525,8 +525,8 @@ type BaseNamedLocation struct {
}

type CloudAppSecurityControl struct {
IsEnabled *bool `json:"isEnabled,omitempty"`
CloudAppSecurityType *string `json:"cloudAppSecurityType,omitempty"`
IsEnabled *bool `json:"isEnabled,omitempty"`
CloudAppSecurityType *ConditionalAccessCloudAppSecuritySessionControlType `json:"cloudAppSecurityType,omitempty"`
}

type ConditionalAccessApplications struct {
Expand All @@ -536,20 +536,38 @@ type ConditionalAccessApplications struct {
}

type ConditionalAccessConditionSet struct {
Applications *ConditionalAccessApplications `json:"applications,omitempty"`
Users *ConditionalAccessUsers `json:"users,omitempty"`
ClientAppTypes *[]string `json:"clientAppTypes,omitempty"`
Locations *ConditionalAccessLocations `json:"locations,omitempty"`
Platforms *ConditionalAccessPlatforms `json:"platforms,omitempty"`
SignInRiskLevels *[]string `json:"signInRiskLevels,omitempty"`
UserRiskLevels *[]string `json:"userRiskLevels,omitempty"`
Applications *ConditionalAccessApplications `json:"applications,omitempty"`
ClientAppTypes *[]ConditionalAccessClientAppType `json:"clientAppTypes,omitempty"`
Devices *ConditionalAccessDevices `json:"devices,omitempty"`
DeviceStates *ConditionalAccessDeviceStates `json:"deviceStates,omitempty"`
Locations *ConditionalAccessLocations `json:"locations,omitempty"`
Platforms *ConditionalAccessPlatforms `json:"platforms,omitempty"`
SignInRiskLevels *[]ConditionalAccessRiskLevel `json:"signInRiskLevels,omitempty"`
UserRiskLevels *[]ConditionalAccessRiskLevel `json:"userRiskLevels,omitempty"`
Users *ConditionalAccessUsers `json:"users,omitempty"`
}

type ConditionalAccessDevices struct {
IncludeDevices *[]string `json:"includeDevices,omitempty"`
ExcludeDevices *[]string `json:"excludeDevices,omitempty"`
DeviceFilter *ConditionalAccessFilter `json:"deviceFilter,omitempty"`
}

type ConditionalAccessDeviceStates struct {
IncludeStates *ConditionalAccessDeviceStatesInclude `json:"includeStates,omitempty"`
ExcludeStates *ConditionalAccessDeviceStatesExclude `json:"excludeStates,omitempty"`
}

type ConditionalAccessFilter struct {
Mode *ConditionalAccessFilterMode `json:"mode,omitempty"`
Rule *string `json:"rule,omitempty"`
}

type ConditionalAccessGrantControls struct {
Operator *string `json:"operator,omitempty"`
BuiltInControls *[]string `json:"builtInControls,omitempty"`
CustomAuthenticationFactors *[]string `json:"customAuthenticationFactors,omitempty"`
TermsOfUse *[]string `json:"termsOfUse,omitempty"`
Operator *string `json:"operator,omitempty"`
BuiltInControls *[]ConditionalAccessGrantControl `json:"builtInControls,omitempty"`
CustomAuthenticationFactors *[]string `json:"customAuthenticationFactors,omitempty"`
TermsOfUse *[]string `json:"termsOfUse,omitempty"`
}

type ConditionalAccessLocations struct {
Expand All @@ -558,8 +576,8 @@ type ConditionalAccessLocations struct {
}

type ConditionalAccessPlatforms struct {
IncludePlatforms *[]string `json:"includePlatforms,omitempty"`
ExcludePlatforms *[]string `json:"excludePlatforms,omitempty"`
IncludePlatforms *[]ConditionalAccessDevicePlatform `json:"includePlatforms,omitempty"`
ExcludePlatforms *[]ConditionalAccessDevicePlatform `json:"excludePlatforms,omitempty"`
}

// ConditionalAccessPolicy describes an Conditional Access Policy object.
Expand Down Expand Up @@ -1084,8 +1102,8 @@ type PermissionScope struct {
}

type PersistentBrowserSessionControl struct {
IsEnabled *bool `json:"isEnabled,omitempty"`
Mode *string `json:"mode,omitempty"`
IsEnabled *bool `json:"isEnabled,omitempty"`
Mode *PersistentBrowserSessionMode `json:"mode,omitempty"`
}

type PhoneAuthenticationMethod struct {
Expand Down
83 changes: 83 additions & 0 deletions msgraph/valuetypes.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -201,6 +201,71 @@ const (
CredentialUsageSummaryPeriod1 CredentialUsageSummaryPeriod = "D1"
)

type ConditionalAccessClientAppType = string

const (
ConditionalAccessClientAppTypeAll ConditionalAccessClientAppType = "all"
ConditionalAccessClientAppTypeBrowser ConditionalAccessClientAppType = "browser"
ConditionalAccessClientAppTypeEasSupported ConditionalAccessClientAppType = "easSupported"
ConditionalAccessClientAppTypeExchangeActiveSync ConditionalAccessClientAppType = "exchangeActiveSync"
ConditionalAccessClientAppTypeMobileAppsAndDesktopClients ConditionalAccessClientAppType = "mobileAppsAndDesktopClients"
ConditionalAccessClientAppTypeOther ConditionalAccessClientAppType = "other"
)

type ConditionalAccessCloudAppSecuritySessionControlType = string

const (
ConditionalAccessCloudAppSecuritySessionControlTypeBlockDownloads ConditionalAccessCloudAppSecuritySessionControlType = "blockDownloads"
ConditionalAccessCloudAppSecuritySessionControlTypeMcasConfigured ConditionalAccessCloudAppSecuritySessionControlType = "mcasConfigured"
ConditionalAccessCloudAppSecuritySessionControlTypeMonitorOnly ConditionalAccessCloudAppSecuritySessionControlType = "monitorOnly"
ConditionalAccessCloudAppSecuritySessionControlTypeUnknownFutureValue ConditionalAccessCloudAppSecuritySessionControlType = "unknownFutureValue"
)

type ConditionalAccessDevicePlatform = string

const (
ConditionalAccessDevicePlatformAll ConditionalAccessDevicePlatform = "All"
ConditionalAccessDevicePlatformAndroid ConditionalAccessDevicePlatform = "android"
ConditionalAccessDevicePlatformIos ConditionalAccessDevicePlatform = "iOS"
ConditionalAccessDevicePlatformMacOs ConditionalAccessDevicePlatform = "macOS"
ConditionalAccessDevicePlatformUnknownFutureValue ConditionalAccessDevicePlatform = "unknownFutureValue"
ConditionalAccessDevicePlatformWindows ConditionalAccessDevicePlatform = "windows"
ConditionalAccessDevicePlatformWindowsPhone ConditionalAccessDevicePlatform = "windowsPhone"
)

type ConditionalAccessDeviceStatesInclude = string

const (
ConditionalAccessDeviceStatesIncludeAll ConditionalAccessDeviceStatesInclude = "All"
)

type ConditionalAccessDeviceStatesExclude = string

const (
ConditionalAccessDeviceStatesExcludeCompliant ConditionalAccessDeviceStatesExclude = "Compliant"
ConditionalAccessDeviceStatesExcludeDomainJoined ConditionalAccessDeviceStatesExclude = "DomainJoined"
)

type ConditionalAccessFilterMode = string

const (
ConditionalAccessFilterModeExclude ConditionalAccessFilterMode = "exclude"
ConditionalAccessFilterModeInclude ConditionalAccessFilterMode = "include"
)

type ConditionalAccessGrantControl = string

const (
ConditionalAccessGrantControlApprovedApplication ConditionalAccessGrantControl = "approvedApplication"
ConditionalAccessGrantControlBlock ConditionalAccessGrantControl = "block"
ConditionalAccessGrantControlCompliantApplication ConditionalAccessGrantControl = "compliantApplication"
ConditionalAccessGrantControlCompliantDevice ConditionalAccessGrantControl = "compliantDevice"
ConditionalAccessGrantControlDomainJoinedDevice ConditionalAccessGrantControl = "domainJoinedDevice"
ConditionalAccessGrantControlMfa ConditionalAccessGrantControl = "mfa"
ConditionalAccessGrantControlPasswordChange ConditionalAccessGrantControl = "passwordChange"
ConditionalAccessGrantControlUnknownFutureValue ConditionalAccessGrantControl = "unknownFutureValue"
)

type ConditionalAccessPolicyState = string

const (
Expand All @@ -209,6 +274,17 @@ const (
ConditionalAccessPolicyStateEnabledForReportingButNotEnforced ConditionalAccessPolicyState = "enabledForReportingButNotEnforced"
)

type ConditionalAccessRiskLevel = string

const (
ConditionalAccessRiskLevelHidden ConditionalAccessRiskLevel = "hidden"
ConditionalAccessRiskLevelHigh ConditionalAccessRiskLevel = "high"
ConditionalAccessRiskLevelLow ConditionalAccessRiskLevel = "low"
ConditionalAccessRiskLevelMedium ConditionalAccessRiskLevel = "medium"
ConditionalAccessRiskLevelNone ConditionalAccessRiskLevel = "none"
ConditionalAccessRiskLevelUnknownFutureValue ConditionalAccessRiskLevel = "unknownFutureValue"
)

type ExtensionSchemaTargetType = string

const (
Expand Down Expand Up @@ -379,6 +455,13 @@ const (
PermissionScopeTypeUser PermissionScopeType = "User"
)

type PersistentBrowserSessionMode = string

const (
PersistentBrowserSessionModeAlways PersistentBrowserSessionMode = "always"
PersistentBrowserSessionModeNever PersistentBrowserSessionMode = "never"
)

type PreferredSingleSignOnMode = StringNullWhenEmpty

const (
Expand Down