| title | Update approvalStage |
|---|---|
| description | Apply approve or deny decision on an approvalStage object. |
| ms.localizationpriority | medium |
| author | markwahl-msft |
| ms.subservice | entra-id-governance |
| doc_type | apiPageType |
| ms.date | 10/21/2024 |
Namespace: microsoft.graph
Approve or deny an approvalStage object in an approval.
[!INCLUDE national-cloud-support]
One of the following permissions is required to call this API. To learn more, including how to choose permissions, see Permissions.
| Permission type | Permissions (from least to most privileged) |
|---|---|
| Delegated (work or school account) | EntitlementManagement.ReadWrite.All |
| Delegated (personal Microsoft account) | Not supported. |
| Application | Not supported. |
| Permission type | Permissions (from least to most privileged) |
|---|---|
| Delegated (work or school account) | PrivilegedAssignmentSchedule.ReadWrite.AzureADGroup |
| Delegated (personal Microsoft account) | Not supported. |
| Application | Not supported. |
To update an approval decision in entitlement management:
PATCH /identityGovernance/entitlementManagement/accessPackageAssignmentApprovals/{accessPackageAssignmentRequestId}/stages/{approvalStageId}To update an approval decision in PIM for groups:
PATCH /identityGovernance/privilegedAccess/group/assignmentApprovals/{privilegedaccessgroupassignmentschedulerequestId}/stages/{approvalStageId}| Name | Description |
|---|---|
| Authorization | Bearer {token}. Required. Learn more about authentication and authorization. |
The following table shows the properties that are required for this method.
| Property | Type | Description |
|---|---|---|
| reviewResult | String | Decision of the approver. Possible values are: Approve, Deny. Required. |
| justification | String | Justification related to the approver's decision. |
If successful, this method returns a 204 No Content response code in the response body. If the caller doesn't have the right permissions, the method returns a 403 Forbidden response code, or if the approval ID isn't found, the method returns 404 Not found. If the request has already been approved by another approver in the same approval stage, the method returns 409 Conflict response code.
PATCH https://graph.microsoft.com/v1.0/identityGovernance/entitlementManagement/accessPackageAssignmentApprovals/abd306ef-f7b2-4a10-9fd1-493454322489/stages/d4fa4045-4716-436d-aec5-57b0a713f095
{
"reviewResult":"Approve",
"justification":"OK"
}[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
[!INCLUDE sample-code] [!INCLUDE sdk-documentation]
The following example shows the response.
HTTP/1.1 204 No Content