{"files":{"SKILL.md":"---\nname: graphrbacmanagementclient\ndescription: \"GraphRbacManagementClient API skill. Use when working with GraphRbacManagementClient for {tenantID}. Covers 56 endpoints.\"\nversion: 1.0.0\ngenerator: lapsh\n---\n\n# GraphRbacManagementClient\nAPI version: 1.6\n\n## Auth\nOAuth2\n\n## Base URL\nhttps://graph.windows.net\n\n## Setup\n1. Configure auth: OAuth2\n2. GET /{tenantID}/me -- gets the details for the currently logged-in user.\n3. POST /{tenantID}/applications -- create first application\n\n## Endpoints\n56 endpoints across 1 group. See references/api-spec.lap for full details.\n\n### {tenantID}\n| Method | Path | Description |\n|--------|------|-------------|\n| GET | /{tenantID}/me | Gets the details for the currently logged-in user. |\n| GET | /{tenantID}/me/ownedObjects | Get the list of directory objects that are owned by the user. |\n| POST | /{tenantID}/applications | Create a new application. |\n| GET | /{tenantID}/applications | Lists applications by filter parameters. |\n| POST | /{tenantID}/deletedApplications/{objectId}/restore | Restores the deleted application in the directory. |\n| GET | /{tenantID}/deletedApplications | Gets a list of deleted applications in the directory. |\n| DELETE | /{tenantID}/deletedApplications/{applicationObjectId} | Hard-delete an application. |\n| DELETE | /{tenantID}/applications/{applicationObjectId} | Delete an application. |\n| GET | /{tenantID}/applications/{applicationObjectId} | Get an application by object ID. |\n| PATCH | /{tenantID}/applications/{applicationObjectId} | Update an existing application. |\n| GET | /{tenantID}/applications/{applicationObjectId}/owners | Directory objects that are owners of the application. |\n| POST | /{tenantID}/applications/{applicationObjectId}/$links/owners | Add an owner to an application. |\n| DELETE | /{tenantID}/applications/{applicationObjectId}/$links/owners/{ownerObjectId} | Remove a member from owners. |\n| GET | /{tenantID}/applications/{applicationObjectId}/keyCredentials | Get the keyCredentials associated with an application. |\n| PATCH | /{tenantID}/applications/{applicationObjectId}/keyCredentials | Update the keyCredentials associated with an application. |\n| GET | /{tenantID}/applications/{applicationObjectId}/passwordCredentials | Get the passwordCredentials associated with an application. |\n| PATCH | /{tenantID}/applications/{applicationObjectId}/passwordCredentials | Update passwordCredentials associated with an application. |\n| POST | /{tenantID}/isMemberOf | Checks whether the specified user, group, contact, or service principal is a direct or transitive member of the specified group. |\n| DELETE | /{tenantID}/groups/{groupObjectId}/$links/members/{memberObjectId} | Remove a member from a group. |\n| POST | /{tenantID}/groups/{groupObjectId}/$links/members | Add a member to a group. |\n| POST | /{tenantID}/groups | Create a group in the directory. |\n| GET | /{tenantID}/groups | Gets list of groups for the current tenant. |\n| GET | /{tenantID}/groups/{objectId}/members | Gets the members of a group. |\n| GET | /{tenantID}/groups/{objectId} | Gets group information from the directory. |\n| DELETE | /{tenantID}/groups/{objectId} | Delete a group from the directory. |\n| POST | /{tenantID}/groups/{objectId}/getMemberGroups | Gets a collection of object IDs of groups of which the specified group is a member. |\n| GET | /{tenantID}/groups/{objectId}/owners | Directory objects that are owners of the group. |\n| POST | /{tenantID}/groups/{objectId}/$links/owners | Add an owner to a group. |\n| DELETE | /{tenantID}/groups/{objectId}/$links/owners/{ownerObjectId} | Remove a member from owners. |\n| POST | /{tenantID}/servicePrincipals | Creates a service principal in the directory. |\n| GET | /{tenantID}/servicePrincipals | Gets a list of service principals from the current tenant. |\n| GET | /{tenantID}/servicePrincipalsByAppId/{applicationID}/objectId | Gets an object id for a given application id from the current tenant. |\n| PATCH | /{tenantID}/servicePrincipals/{objectId} | Updates a service principal in the directory. |\n| DELETE | /{tenantID}/servicePrincipals/{objectId} | Deletes a service principal from the directory. |\n| GET | /{tenantID}/servicePrincipals/{objectId} | Gets service principal information from the directory. Query by objectId or pass a filter to query by appId |\n| GET | /{tenantID}/servicePrincipals/{objectId}/appRoleAssignedTo | Principals (users, groups, and service principals) that are assigned to this service principal. |\n| GET | /{tenantID}/servicePrincipals/{objectId}/appRoleAssignments | Applications that the service principal is assigned to. |\n| GET | /{tenantID}/servicePrincipals/{objectId}/owners | Directory objects that are owners of this service principal. |\n| POST | /{tenantID}/servicePrincipals/{objectId}/$links/owners | Add an owner to a service principal. |\n| DELETE | /{tenantID}/servicePrincipals/{objectId}/$links/owners/{ownerObjectId} | Remove a member from owners. |\n| GET | /{tenantID}/servicePrincipals/{objectId}/keyCredentials | Get the keyCredentials associated with the specified service principal. |\n| PATCH | /{tenantID}/servicePrincipals/{objectId}/keyCredentials | Update the keyCredentials associated with a service principal. |\n| GET | /{tenantID}/servicePrincipals/{objectId}/passwordCredentials | Gets the passwordCredentials associated with a service principal. |\n| PATCH | /{tenantID}/servicePrincipals/{objectId}/passwordCredentials | Updates the passwordCredentials associated with a service principal. |\n| POST | /{tenantID}/users | Create a new user. |\n| GET | /{tenantID}/users | Gets list of users for the current tenant. |\n| GET | /{tenantID}/users/{upnOrObjectId} | Gets user information from the directory. |\n| PATCH | /{tenantID}/users/{upnOrObjectId} | Updates a user. |\n| DELETE | /{tenantID}/users/{upnOrObjectId} | Delete a user. |\n| POST | /{tenantID}/users/{objectId}/getMemberGroups | Gets a collection that contains the object IDs of the groups of which the user is a member. |\n| POST | /{tenantID}/getObjectsByObjectIds | Gets the directory objects specified in a list of object IDs. You can also specify which resource collections (users, groups, etc.) should be searched by specifying the optional types parameter. |\n| GET | /{tenantID}/domains | Gets a list of domains for the current tenant. |\n| GET | /{tenantID}/domains/{domainName} | Gets a specific domain in the current tenant. |\n| GET | /{tenantID}/oauth2PermissionGrants | Queries OAuth2 permissions grants for the relevant SP ObjectId of an app. |\n| POST | /{tenantID}/oauth2PermissionGrants | Grants OAuth2 permissions for the relevant resource Ids of an app. |\n| DELETE | /{tenantID}/oauth2PermissionGrants/{objectId} | Delete a OAuth2 permission grant for the relevant resource Ids of an app. |\n\n## Common Questions\nMatch user requests to endpoints in references/api-spec.lap. Key patterns:\n- \"List all me?\" -> GET /{tenantID}/me\n- \"List all ownedObjects?\" -> GET /{tenantID}/me/ownedObjects\n- \"Create a application?\" -> POST /{tenantID}/applications\n- \"List all applications?\" -> GET /{tenantID}/applications\n- \"Create a restore?\" -> POST /{tenantID}/deletedApplications/{objectId}/restore\n- \"List all deletedApplications?\" -> GET /{tenantID}/deletedApplications\n- \"Delete a deletedApplication?\" -> DELETE /{tenantID}/deletedApplications/{applicationObjectId}\n- \"Delete a application?\" -> DELETE /{tenantID}/applications/{applicationObjectId}\n- \"Get application details?\" -> GET /{tenantID}/applications/{applicationObjectId}\n- \"Partially update a application?\" -> PATCH /{tenantID}/applications/{applicationObjectId}\n- \"List all owners?\" -> GET /{tenantID}/applications/{applicationObjectId}/owners\n- \"Create a owner?\" -> POST /{tenantID}/applications/{applicationObjectId}/$links/owners\n- \"Delete a owner?\" -> DELETE /{tenantID}/applications/{applicationObjectId}/$links/owners/{ownerObjectId}\n- \"List all keyCredentials?\" -> GET /{tenantID}/applications/{applicationObjectId}/keyCredentials\n- \"List all passwordCredentials?\" -> GET /{tenantID}/applications/{applicationObjectId}/passwordCredentials\n- \"Create a isMemberOf?\" -> POST /{tenantID}/isMemberOf\n- \"Delete a member?\" -> DELETE /{tenantID}/groups/{groupObjectId}/$links/members/{memberObjectId}\n- \"Create a member?\" -> POST /{tenantID}/groups/{groupObjectId}/$links/members\n- \"Create a group?\" -> POST /{tenantID}/groups\n- \"List all groups?\" -> GET /{tenantID}/groups\n- \"List all members?\" -> GET /{tenantID}/groups/{objectId}/members\n- \"Get group details?\" -> GET /{tenantID}/groups/{objectId}\n- \"Delete a group?\" -> DELETE /{tenantID}/groups/{objectId}\n- \"Create a getMemberGroup?\" -> POST /{tenantID}/groups/{objectId}/getMemberGroups\n- \"Create a servicePrincipal?\" -> POST /{tenantID}/servicePrincipals\n- \"List all servicePrincipals?\" -> GET /{tenantID}/servicePrincipals\n- \"List all objectId?\" -> GET /{tenantID}/servicePrincipalsByAppId/{applicationID}/objectId\n- \"Partially update a servicePrincipal?\" -> PATCH /{tenantID}/servicePrincipals/{objectId}\n- \"Delete a servicePrincipal?\" -> DELETE /{tenantID}/servicePrincipals/{objectId}\n- \"Get servicePrincipal details?\" -> GET /{tenantID}/servicePrincipals/{objectId}\n- \"List all appRoleAssignedTo?\" -> GET /{tenantID}/servicePrincipals/{objectId}/appRoleAssignedTo\n- \"List all appRoleAssignments?\" -> GET /{tenantID}/servicePrincipals/{objectId}/appRoleAssignments\n- \"Create a user?\" -> POST /{tenantID}/users\n- \"List all users?\" -> GET /{tenantID}/users\n- \"Get user details?\" -> GET /{tenantID}/users/{upnOrObjectId}\n- \"Partially update a user?\" -> PATCH /{tenantID}/users/{upnOrObjectId}\n- \"Delete a user?\" -> DELETE /{tenantID}/users/{upnOrObjectId}\n- \"Create a getObjectsByObjectId?\" -> POST /{tenantID}/getObjectsByObjectIds\n- \"List all domains?\" -> GET /{tenantID}/domains\n- \"Get domain details?\" -> GET /{tenantID}/domains/{domainName}\n- \"List all oauth2PermissionGrants?\" -> GET /{tenantID}/oauth2PermissionGrants\n- \"Create a oauth2PermissionGrant?\" -> POST /{tenantID}/oauth2PermissionGrants\n- \"Delete a oauth2PermissionGrant?\" -> DELETE /{tenantID}/oauth2PermissionGrants/{objectId}\n- \"How to authenticate?\" -> See Auth section above\n\n## Response Tips\n- Check response schemas in references/api-spec.lap for field details\n- Create/update endpoints return the modified resource on success\n\n## References\n- Full spec: See references/api-spec.lap for complete endpoint details, parameter tables, and response schemas\n\n> Generated from the official API spec by [LAP](https://lap.sh)\n","references/api-spec.lap":"@lap v0.3\n# Machine-readable API spec. Each @endpoint block is one API call.\n@api GraphRbacManagementClient\n@base https://graph.windows.net\n@version 1.6\n@auth OAuth2\n@common_fields {api-version: any # Client API version., tenantID: any # The tenant ID.}\n@endpoints 56\n@hint download_for_search\n@toc {tenantID}(56)\n\n@endpoint GET /{tenantID}/me\n@desc Gets the details for the currently logged-in user.\n@returns(200) OK. The operation was successful.\n\n@endpoint GET /{tenantID}/me/ownedObjects\n@desc Get the list of directory objects that are owned by the user.\n@returns(200) OK. The operation was successful.\n\n@endpoint POST /{tenantID}/applications\n@desc Create a new application.\n@required {parameters: map # The parameters for creating an application.}\n@returns(201) The application was created successfully.\n\n@endpoint GET /{tenantID}/applications\n@desc Lists applications by filter parameters.\n@optional {$filter: any # The filters to apply to the operation.}\n@returns(200) OK. The operation was successful.\n\n@endpoint POST /{tenantID}/deletedApplications/{objectId}/restore\n@desc Restores the deleted application in the directory.\n@required {objectId: any # Application object ID.}\n@returns(200) The application was restored successfully.\n\n@endpoint GET /{tenantID}/deletedApplications\n@desc Gets a list of deleted applications in the directory.\n@optional {$filter: any # The filter to apply to the operation.}\n@returns(200) The applications were retrieved successfully.\n\n@endpoint DELETE /{tenantID}/deletedApplications/{applicationObjectId}\n@desc Hard-delete an application.\n@required {applicationObjectId: any # Application object ID.}\n@returns(204) No Content\n\n@endpoint DELETE /{tenantID}/applications/{applicationObjectId}\n@desc Delete an application.\n@required {applicationObjectId: any # Application object ID.}\n@returns(204) No Content\n\n@endpoint GET /{tenantID}/applications/{applicationObjectId}\n@desc Get an application by object ID.\n@required {applicationObjectId: any # Application object ID.}\n@returns(200) OK. The operation was successful.\n\n@endpoint PATCH /{tenantID}/applications/{applicationObjectId}\n@desc Update an existing application.\n@required {applicationObjectId: any # Application object ID., parameters: map # Parameters to update an existing application.}\n@returns(204) No Content\n\n@endpoint GET /{tenantID}/applications/{applicationObjectId}/owners\n@desc Directory objects that are owners of the application.\n@required {applicationObjectId: any # The object ID of the application for which to get owners.}\n@returns(200) OK. The operation was successful.\n\n@endpoint POST /{tenantID}/applications/{applicationObjectId}/$links/owners\n@desc Add an owner to an application.\n@required {applicationObjectId: any # The object ID of the application to which to add the owner., parameters: map # The URL of the owner object, such as https://graph.windows.net/0b1f9851-1bf0-433f-aec3-cb9272f093dc/directoryObjects/f260bbc4-c254-447b-94cf-293b5ec434dd.}\n@returns(204) No Content. Indicates success. No response body is returned.\n\n@endpoint DELETE /{tenantID}/applications/{applicationObjectId}/$links/owners/{ownerObjectId}\n@desc Remove a member from owners.\n@required {applicationObjectId: any # The object ID of the application from which to remove the owner., ownerObjectId: any # Owner object id}\n@returns(204) No Content. Indicates success. No response body is returned.\n\n@endpoint GET /{tenantID}/applications/{applicationObjectId}/keyCredentials\n@desc Get the keyCredentials associated with an application.\n@required {applicationObjectId: any # Application object ID.}\n@returns(200) OK. The operation was successful.\n\n@endpoint PATCH /{tenantID}/applications/{applicationObjectId}/keyCredentials\n@desc Update the keyCredentials associated with an application.\n@required {applicationObjectId: any # Application object ID., parameters: map # Parameters to update the keyCredentials of an existing application.}\n@returns(204) No Content\n\n@endpoint GET /{tenantID}/applications/{applicationObjectId}/passwordCredentials\n@desc Get the passwordCredentials associated with an application.\n@required {applicationObjectId: any # Application object ID.}\n@returns(200) OK. The operation was successful.\n\n@endpoint PATCH /{tenantID}/applications/{applicationObjectId}/passwordCredentials\n@desc Update passwordCredentials associated with an application.\n@required {applicationObjectId: any # Application object ID., parameters: map # Parameters to update passwordCredentials of an existing application.}\n@returns(204) No Content\n\n@endpoint POST /{tenantID}/isMemberOf\n@desc Checks whether the specified user, group, contact, or service principal is a direct or transitive member of the specified group.\n@required {parameters: map # The check group membership parameters.}\n@returns(200) OK. Indicates success. Returns true if the user, contact, group, or service principal is a direct or a transitive member of the specified group; otherwise, false.\n\n@endpoint DELETE /{tenantID}/groups/{groupObjectId}/$links/members/{memberObjectId}\n@desc Remove a member from a group.\n@required {groupObjectId: any # The object ID of the group from which to remove the member., memberObjectId: any # Member object id}\n@returns(204) No Content. Indicates success. No response body is returned.\n\n@endpoint POST /{tenantID}/groups/{groupObjectId}/$links/members\n@desc Add a member to a group.\n@required {groupObjectId: any # The object ID of the group to which to add the member., parameters: map # The URL of the member object, such as https://graph.windows.net/0b1f9851-1bf0-433f-aec3-cb9272f093dc/directoryObjects/f260bbc4-c254-447b-94cf-293b5ec434dd.}\n@returns(204) No Content. Indicates success. No response body is returned.\n\n@endpoint POST /{tenantID}/groups\n@desc Create a group in the directory.\n@required {parameters: map # The parameters for the group to create.}\n@returns(201) Created\n\n@endpoint GET /{tenantID}/groups\n@desc Gets list of groups for the current tenant.\n@optional {$filter: any # The filter to apply to the operation.}\n@returns(200) OK. The operation was successful.\n\n@endpoint GET /{tenantID}/groups/{objectId}/members\n@desc Gets the members of a group.\n@required {objectId: any # The object ID of the group whose members should be retrieved.}\n@returns(200) OK. The operation was successful.\n\n@endpoint GET /{tenantID}/groups/{objectId}\n@desc Gets group information from the directory.\n@required {objectId: any # The object ID of the user for which to get group information.}\n@returns(200) OK. The operation was successful.\n\n@endpoint DELETE /{tenantID}/groups/{objectId}\n@desc Delete a group from the directory.\n@required {objectId: any # The object ID of the group to delete.}\n@returns(204) No Content\n\n@endpoint POST /{tenantID}/groups/{objectId}/getMemberGroups\n@desc Gets a collection of object IDs of groups of which the specified group is a member.\n@required {objectId: any # The object ID of the group for which to get group membership., parameters: map # Group filtering parameters.}\n@returns(200) OK. The operation was successful.\n\n@endpoint GET /{tenantID}/groups/{objectId}/owners\n@desc Directory objects that are owners of the group.\n@required {objectId: any # The object ID of the group for which to get owners.}\n@returns(200) OK. The operation was successful.\n\n@endpoint POST /{tenantID}/groups/{objectId}/$links/owners\n@desc Add an owner to a group.\n@required {objectId: any # The object ID of the application to which to add the owner., parameters: map # The URL of the owner object, such as https://graph.windows.net/0b1f9851-1bf0-433f-aec3-cb9272f093dc/directoryObjects/f260bbc4-c254-447b-94cf-293b5ec434dd.}\n@returns(204) No Content. Indicates success. No response body is returned.\n\n@endpoint DELETE /{tenantID}/groups/{objectId}/$links/owners/{ownerObjectId}\n@desc Remove a member from owners.\n@required {objectId: any # The object ID of the group from which to remove the owner., ownerObjectId: any # Owner object id}\n@returns(204) No Content. Indicates success. No response body is returned.\n\n@endpoint POST /{tenantID}/servicePrincipals\n@desc Creates a service principal in the directory.\n@required {parameters: map # Parameters to create a service principal.}\n@returns(201) The service principal was created successfully.\n\n@endpoint GET /{tenantID}/servicePrincipals\n@desc Gets a list of service principals from the current tenant.\n@optional {$filter: any # The filter to apply to the operation.}\n@returns(200) OK. The operation was successful.\n\n@endpoint GET /{tenantID}/servicePrincipalsByAppId/{applicationID}/objectId\n@desc Gets an object id for a given application id from the current tenant.\n@required {applicationID: any # The application ID.}\n@returns(200) OK. The operation was successful.\n\n@endpoint PATCH /{tenantID}/servicePrincipals/{objectId}\n@desc Updates a service principal in the directory.\n@required {objectId: any # The object ID of the service principal to delete., parameters: map # Parameters to update a service principal.}\n@returns(204) No Content\n\n@endpoint DELETE /{tenantID}/servicePrincipals/{objectId}\n@desc Deletes a service principal from the directory.\n@required {objectId: any # The object ID of the service principal to delete.}\n@returns(204) No Content\n\n@endpoint GET /{tenantID}/servicePrincipals/{objectId}\n@desc Gets service principal information from the directory. Query by objectId or pass a filter to query by appId\n@required {objectId: any # The object ID of the service principal to get.}\n@returns(200) OK. The operation was successful.\n\n@endpoint GET /{tenantID}/servicePrincipals/{objectId}/appRoleAssignedTo\n@desc Principals (users, groups, and service principals) that are assigned to this service principal.\n@required {objectId: any # The object ID of the service principal for which to get owners.}\n@returns(200) OK. The operation was successful.\n\n@endpoint GET /{tenantID}/servicePrincipals/{objectId}/appRoleAssignments\n@desc Applications that the service principal is assigned to.\n@required {objectId: any # The object ID of the service principal for which to get owners.}\n@returns(200) OK. The operation was successful.\n\n@endpoint GET /{tenantID}/servicePrincipals/{objectId}/owners\n@desc Directory objects that are owners of this service principal.\n@required {objectId: any # The object ID of the service principal for which to get owners.}\n@returns(200) OK. The operation was successful.\n\n@endpoint POST /{tenantID}/servicePrincipals/{objectId}/$links/owners\n@desc Add an owner to a service principal.\n@required {objectId: any # The object ID of the service principal to which to add the owner., parameters: map # The URL of the owner object, such as https://graph.windows.net/0b1f9851-1bf0-433f-aec3-cb9272f093dc/directoryObjects/f260bbc4-c254-447b-94cf-293b5ec434dd.}\n@returns(204) No Content. Indicates success. No response body is returned.\n\n@endpoint DELETE /{tenantID}/servicePrincipals/{objectId}/$links/owners/{ownerObjectId}\n@desc Remove a member from owners.\n@required {objectId: any # The object ID of the service principal from which to remove the owner., ownerObjectId: any # Owner object id}\n@returns(204) No Content. Indicates success. No response body is returned.\n\n@endpoint GET /{tenantID}/servicePrincipals/{objectId}/keyCredentials\n@desc Get the keyCredentials associated with the specified service principal.\n@required {objectId: any # The object ID of the service principal for which to get keyCredentials.}\n@returns(200) OK. The operation was successful.\n\n@endpoint PATCH /{tenantID}/servicePrincipals/{objectId}/keyCredentials\n@desc Update the keyCredentials associated with a service principal.\n@required {objectId: any # The object ID for which to get service principal information., parameters: map # Parameters to update the keyCredentials of an existing service principal.}\n@returns(204) No Content\n\n@endpoint GET /{tenantID}/servicePrincipals/{objectId}/passwordCredentials\n@desc Gets the passwordCredentials associated with a service principal.\n@required {objectId: any # The object ID of the service principal.}\n@returns(200) OK. The operation was successful.\n\n@endpoint PATCH /{tenantID}/servicePrincipals/{objectId}/passwordCredentials\n@desc Updates the passwordCredentials associated with a service principal.\n@required {objectId: any # The object ID of the service principal., parameters: map # Parameters to update the passwordCredentials of an existing service principal.}\n@returns(204) No Content\n\n@endpoint POST /{tenantID}/users\n@desc Create a new user.\n@required {parameters: map # Parameters to create a user.}\n@returns(201) Created. Indicates success. The new user is returned in the response body.\n\n@endpoint GET /{tenantID}/users\n@desc Gets list of users for the current tenant.\n@optional {$filter: any # The filter to apply to the operation., $expand: any # The expand value for the operation result., $top: any # (Optional) Set the maximum number of results per response.}\n@returns(200) OK. The operation was successful.\n\n@endpoint GET /{tenantID}/users/{upnOrObjectId}\n@desc Gets user information from the directory.\n@required {upnOrObjectId: any # The object ID or principal name of the user for which to get information.}\n@returns(200) OK. The operation was successful.\n\n@endpoint PATCH /{tenantID}/users/{upnOrObjectId}\n@desc Updates a user.\n@required {upnOrObjectId: any # The object ID or principal name of the user to update., parameters: map # Parameters to update an existing user.}\n@returns(204) No Content.\n\n@endpoint DELETE /{tenantID}/users/{upnOrObjectId}\n@desc Delete a user.\n@required {upnOrObjectId: any # The object ID or principal name of the user to delete.}\n@returns(204) No Content\n\n@endpoint POST /{tenantID}/users/{objectId}/getMemberGroups\n@desc Gets a collection that contains the object IDs of the groups of which the user is a member.\n@required {objectId: any # The object ID of the user for which to get group membership., parameters: map # User filtering parameters.}\n@returns(200) OK. The operation was successful.\n\n@endpoint POST /{tenantID}/getObjectsByObjectIds\n@desc Gets the directory objects specified in a list of object IDs. You can also specify which resource collections (users, groups, etc.) should be searched by specifying the optional types parameter.\n@required {parameters: map # Objects filtering parameters.}\n@returns(200) OK. The operation was successful.\n\n@endpoint GET /{tenantID}/domains\n@desc Gets a list of domains for the current tenant.\n@optional {$filter: any # The filter to apply to the operation.}\n@returns(200) OK. The operation was successful.\n\n@endpoint GET /{tenantID}/domains/{domainName}\n@desc Gets a specific domain in the current tenant.\n@required {domainName: any # name of the domain.}\n@returns(200) OK. The operation was successful.\n\n@endpoint GET /{tenantID}/oauth2PermissionGrants\n@desc Queries OAuth2 permissions grants for the relevant SP ObjectId of an app.\n@optional {$filter: any # This is the Service Principal ObjectId associated with the app}\n@returns(200) OK. The operation was successful.\n\n@endpoint POST /{tenantID}/oauth2PermissionGrants\n@desc Grants OAuth2 permissions for the relevant resource Ids of an app.\n@optional {body: any # The relevant app Service Principal Object Id and the Service Principal Object Id you want to grant.}\n@returns(201) OK. The operation was successful.\n\n@endpoint DELETE /{tenantID}/oauth2PermissionGrants/{objectId}\n@desc Delete a OAuth2 permission grant for the relevant resource Ids of an app.\n@required {objectId: any # The object ID of a permission grant.}\n@returns(204) No Content\n\n@end\n"}}