根据此链接https://docs.microsoft.com/en-us/azure/active-directory/develop/howto-add-app-roles-in-azure-ad-apps,我可以为用户和/或应用程序创建一个AppRole。
如果要定位用户,则清单上的属性allowedMemberTypes应该为User。对于应用程序,Application,但是两者呢?
两者的allowedMemberTypes是什么?
答案 0 :(得分:1)
allowedMemberTypes是一个数组,因此您可以将两者都放入。
"appRoles": [
{
"allowedMemberTypes": [
"User", "Application"
],
"displayName": "Writer",
"id": "d1c2ade8-98f8-45fd-aa4a-6d06b947c66f",
"isEnabled": true,
"description": "Writers Have the ability to create tasks.",
"value": "Writer"
}
],