O365 Permissions

Inforiver must obtain a set of permissions through the Azure AD App to function properly. The following are the required and optional permissions requested, with details on how and which feature will use them.

Required permissions

1. Azure Storage

Permission
Description
Features Dependent
Actions done from App

user_impersonation

Full access to Azure Storage.

Writeback

Access Azure storage for writeback.

2. Microsoft Graph

Permission
Description
Features Dependent
Actions done from App

profile

Retrieves user profile information.

User

Get profile information with Full Name, Display Name, Email, Company Name.

email

Access to user email addresses.

User

Access user profile Information, Authentication.

openid

Enables OpenID Connect authentication.

Authentication

Authenticate your user.

User.Read

Signs in and reads user profile

User

Sign in and read user profile.

User.ReadBasic.All

Reads all users' basic profile information.

User

Get all users' profile information with Full Name, Display Name, Email, Company Name.

Group.Read.All

Reads all groups' information. Requires admin consent.

User, Groups and ACL

Authenticate from O365 Group and authorize user for different actions via Groups.

GroupMember.Read.All

Reads Group Membership Details. Requires admin consent.

Groups

Disintegrate groups into its members to get the list of members from the group.

3. Power BI service

Permission
Description
Features Dependent
Actions done from App

Dataset.Read.All

Read access to all Power BI datasets.

Data Lineage and Subscription

Create semantic model-based dropdown lists, fetch primary key column values when using key column mapping feature in writeback, refresh dataset function in semantic model-based dropdown lists and subscriptions.

Report.Read.All

Read access to all Power BI Reports.

Data Lineage and Subscription

To get more information about the report in which the Inforiver visual is used.

Workspace.Read.All

Read access to all Power BI workspaces.

Data Lineage and Subscription

To get more information about the workspace in which the Inforiver visual is used.

App.Read.All

View all Power BI apps.

Dashboard.Read.All

View all dashboards.

Optional permissions

1. Microsoft Graph

Permission
Description
Features Dependent
Actions done from App

Files.ReadWrite.All

Full access to all files the user can access in OneDrive.

Writeback and Subscription

Writeback and export the report from Subscription to OneDrive folder.

Sites.ReadWrite.All

Full access to SharePoint sites. Edit or delete items in all site collections.

Writeback and Subscription

Writeback and export the report from Subscription to SharePoint folder.

Channel.ReadBasic.All

Reads the names and descriptions of Teams channels.

Writeback and Subscription

Writeback and export the report from Subscription to Teams channel.

Team.ReadBasic.All

Reads the names and descriptions of Teams.

Writeback and Subscription

Writeback and export the report from Subscription to Teams.

2. Power BI service

Permission
Description
Features Dependent
Actions done from App

Dataflow.Read.All

Read access to all Power BI dataflows.

Data Lineage

Create semantic model-based dropdown lists, fetch primary key column values when using key column mapping feature in writeback, refresh dataset function in semantic model-based dropdown lists and subscriptions.

Dataset.ReadWrite.All

Full access to all Power BI datasets. Read and write datasets when required.

Subscription

Refresh the dataset when it is required.

Lakehouse.ReadWrite.All

Full access to Lakehouse destination. Read and write datasets in Lakehouse.

Writeback

Access Lakehouse destination for writeback.

Last updated