0

Does any one know if the FileStorageContainer.Manage.All possible to assign to manage the SharePoint Embedded containers? If it's not possible, what are other options to get the full list of all containers and files within each container?

Based on the Microsoft's documentation, there is the FileStorageContainer.Manage.All Graph API permission:

FileStorageContainer.Manage.All Category Application Delegated Identifier - 527b6d64-cdf5-4b8b-b336-4aa0b8ca2ce5 DisplayText - Manage all file storage containers Description - Allows the application to utilize the file storage container administration capabilities on behalf of an administrator user. AdminConsentRequired - Yes

However, when I am trying to search for FileStorageContainer.Selected, it's not showing up in the list of the Graph API permissions.

enter image description here

I also tried directly modifying the App registration's manifest to add the API permission using the unique role GUID:

enter image description here

But this GUID does not seem to exist even though it's mentioned in the documentation. enter image description here

For the context, I am trying to use Graph API to generate the report on all SharePoint Embedded containers for all apps and users.

enter image description here

Improve this question

1 Answer 1

Reset to default
1

There are a couple ways to list all the containers in a container type:

Enumeration

The following command will return all containers:

GET https://graph.microsoft.com/beta/storage/fileStorage/containers?$filter=containerTypeId eq {{ContainerTypeId}}

This will require the FileStorageContainer.Selected Graph permission

Search

The following search command will return all containers in the results:

POST https://graph.microsoft.com/beta/search/query

Request Body

 { "requests": [ { "entityTypes": [ "drive" ], "query": { "queryString": "ContainerTypeId:{{ContainerTypeId}}" }, "sharePointOneDriveOptions": { "includeHiddenContent": true }, "fields": [ "id", "name", "parentReference", "file", "folder", "webUrl", "createdDateTime", "lastModifiedDateTime", "size", "createdBy", "lastModifiedBy", "fileSystemInfo" ] } ] }

This will require the Sites.Read.All Graph Permission

Improve this answer
5
  • Hi Steve, Thank you. But do you see the FileStorageContainer permission listed on your end? The issue is that I don't see it anywhere as an option. Commented May 21 at 2:23
  • Yes, I do see it in two separate tenants. If your not seeing it, please submit a ticket and we'll investigate. Commented May 22 at 11:15
  • Thank you, Steve. I should've been more specific: I see the "FileStorageContainer.Selected" permission. But it's not useful because it does not let me, as the tenant administrator access any of the Embedded containers. What I am looking for is the "FileStorageContainer.Manage.All". I think, it's mentioned in the documentation, but not available in my Canadian tenant. Commented May 22 at 15:30
  • Thanks for the clarification. You should be able to see both permissions. Since you're not able to see FileStorageContainer.Manager.All indicates there is some research on your tenant that needs to be done. A ticket will start this process. learn.microsoft.com/en-us/graph/… Commented May 23 at 17:00
  • Thank you, Steve. What a about your tenant? Do you see the FileStorageContainer.Manager.All permission? Commented May 25 at 22:11

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.