EventListener.ReadWrite.All | Graph Permissions

Permission Details

Application Permission

Read and write all authentication event listeners

Allows the app to read or write your organization's authentication event listeners without a signed-in user.

Permission ID: 0edf5e9e-4ce8-468a-8432-d08631d18c43

Delegated Permission

Read and write your organization's authentication event listeners

Allows the app to read or write your organization's authentication event listeners on behalf of the signed-in user.

Permission ID: d11625a6-fe21-4fc6-8d3d-063eba5525ad

Properties

Microsoft Graph v1.0 endpoint-derived-docs

Properties is shown from stable Microsoft Graph v1.0 metadata.

Property	Type	Description
`displayName`	`String`Nullable	The display name of the identity., , For drive items, the display name might not always be available or up to date. For example, if a user changes their display name the API might show the new value in a future response, but the items associated with the user don't show up as changed when using delta.
`id`	`String`Nullable	Unique identifier for the identity or actor. For example, in the access reviews decisions API, this property might record the id of the principal, that is, the group, user, or application that's subject to review.
`tenantId`	`String`	Unique identity of the tenant. Optional.
`thumbnails`	`thumbnailSet`	Keyed collection of thumbnail resources. Optional. Applies to drive items, for example.

JSON Representation

Microsoft Graph v1.0 endpoint-derived-docs

JSON representation is shown from stable Microsoft Graph v1.0 metadata.

JSON representation

{
  "displayName": "String",
  "id": "String (identifier)",
  "tenantId": "String",
  "thumbnails": {
    "@odata.type": "microsoft.graph.thumbnailSet"
  }
}

Relationships

Relationships metadata is not available for this permission mapping.

View resource documentation

Graph Methods

Delegated access App-only access

Exact Microsoft Learn match

Microsoft Graph v1.0 endpoints are mapped directly from refreshed Microsoft Learn permissions tables.

Methods
GET `/identity/authenticationEventListeners`
GET `/identity/authenticationEventListeners/{authenticationEventListenerId}`
GET `/identity/authenticationEventsFlows`
GET `/identity/authenticationEventsFlows/{authenticationEventsFlow-id}`
GET `/identity/authenticationEventsFlows/{authenticationEventsFlow-id}/conditions/applications/includeApplications/`
GET `/identity/authenticationEventsFlows/{authenticationEventsFlow-id}/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAttributeCollection/microsoft.graph.onAttributeCollectionExternalUsersSelfServiceSignUp/attributes/`
GET `/identity/authenticationEventsFlows/{authenticationEventsFlow-id}/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAuthenticationMethodLoadStart/microsoft.graph.onAuthenticationMethodLoadStartExternalUsersSelfServiceSignUp/identityProviders/`
POST `/identity/authenticationEventListeners`
POST `/identity/authenticationEventsFlows`
POST `/identity/authenticationEventsFlows/{authenticationEventsFlow-id}/conditions/applications/includeApplications`
POST `/identity/authenticationEventsFlows/{authenticationEventsFlow-id}/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAttributeCollection/microsoft.graph.onAttributeCollectionExternalUsersSelfServiceSignUp/attributes/$ref`
POST `/identity/authenticationEventsFlows/{authenticationEventsFlow-id}/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAuthenticationMethodLoadStart/microsoft.graph.onAuthenticationMethodLoadStartExternalUsersSelfServiceSignUp/identityProviders/$ref`
PATCH `/identity/authenticationEventListeners/{authenticationEventListenerId}`
PATCH `/identity/authenticationEventsFlows/{authenticationEventsFlow-id}`
DELETE `/identity/authenticationEventListeners/{authenticationEventListenerId}`
DELETE `/identity/authenticationEventsFlows/{authenticationEventsFlow-id}`
DELETE `/identity/authenticationEventsFlows/{authenticationEventsFlow-id}/conditions/applications/includeApplications/{appId}`
DELETE `/identity/authenticationEventsFlows/{authenticationEventsFlow-id}/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAttributeCollection/microsoft.graph.onAttributeCollectionExternalUsersSelfServiceSignUp/attributes/{attributeId}/$ref`
DELETE `/identity/authenticationEventsFlows/{authenticationEventsFlow-id}/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAuthenticationMethodLoadStart/microsoft.graph.onAuthenticationMethodLoadStartExternalUsersSelfServiceSignUp/{identityProviders-id}/$ref`

Exact Microsoft Learn match

Microsoft Graph beta endpoints are mapped directly from refreshed Microsoft Learn permissions tables.

Methods
GET `/identity/authenticationEventListeners`
GET `/identity/authenticationEventListeners/{authenticationEventListenerId}`
GET `/identity/authenticationEventsFlows`
GET `/identity/authenticationEventsFlows/{authenticationEventsFlow-id}`
GET `/identity/authenticationEventsFlows/{authenticationEventsFlow-id}/conditions/applications/includeApplications/`
GET `/identity/authenticationEventsFlows/{authenticationEventsFlow-id}/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAttributeCollection/microsoft.graph.onAttributeCollectionExternalUsersSelfServiceSignUp/attributes/`
GET `/identity/authenticationEventsFlows/{authenticationEventsFlow-id}/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAuthenticationMethodLoadStart/microsoft.graph.onAuthenticationMethodLoadStartExternalUsersSelfServiceSignUp/identityProviders/`
POST `/identity/authenticationEventListeners`
POST `/identity/authenticationEventsFlows`
POST `/identity/authenticationEventsFlows/{authenticationEventsFlow-id}/conditions/applications/includeApplications`
POST `/identity/authenticationEventsFlows/{authenticationEventsFlow-id}/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAttributeCollection/microsoft.graph.onAttributeCollectionExternalUsersSelfServiceSignUp/attributes/$ref`
POST `/identity/authenticationEventsFlows/{authenticationEventsFlow-id}/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAuthenticationMethodLoadStart/microsoft.graph.onAuthenticationMethodLoadStartExternalUsersSelfServiceSignUp/identityProviders/$ref`
PATCH `/identity/authenticationEventListeners/{authenticationEventListenerId}`
PATCH `/identity/authenticationEventsFlows/{authenticationEventsFlow-id}`
DELETE `/identity/authenticationEventListeners/{authenticationEventListenerId}`
DELETE `/identity/authenticationEventsFlows/{authenticationEventsFlow-id}/`
DELETE `/identity/authenticationEventsFlows/{authenticationEventsFlow-id}/conditions/applications/includeApplications/{appId}`
DELETE `/identity/authenticationEventsFlows/{authenticationEventsFlow-id}/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAttributeCollection/microsoft.graph.onAttributeCollectionExternalUsersSelfServiceSignUp/attributes/{attributeId}/$ref`
DELETE `/identity/authenticationEventsFlows/{authenticationEventsFlow-id}/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAuthenticationMethodLoadStart/microsoft.graph.onAuthenticationMethodLoadStartExternalUsersSelfServiceSignUp/identityProviders/$ref`

Exact Microsoft Learn PowerShell match

Microsoft Graph PowerShell v1.0 commands are mapped directly from refreshed Microsoft Learn PowerShell snippets.

Commands
`Get-MgIdentityAuthenticationEventFlow` /identity/authenticationEventsFlows List authenticationEventsFlows
`Get-MgIdentityAuthenticationEventFlow` /identity/authenticationEventsFlows/{authenticationEventsFlow-id} Get authenticationEventsFlow
`Get-MgIdentityAuthenticationEventFlowAsOnAttributeCollectionExternalUserSelfServiceSignUpAttribute` /identity/authenticationEventsFlows/{authenticationEventsFlow-id}/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAttributeCollection/microsoft.graph.onAttributeCollectionExternalUsersSelfServiceSignUp/attributes/ List attributes (of a user flow)
`Get-MgIdentityAuthenticationEventFlowAsOnAuthenticationMethodLoadStartExternalUserSelfServiceSignUpIdentityProvider` /identity/authenticationEventsFlows/{authenticationEventsFlow-id}/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAuthenticationMethodLoadStart/microsoft.graph.onAuthenticationMethodLoadStartExternalUsersSelfServiceSignUp/identityProviders/ List identityProviders (in a user flow)
`Get-MgIdentityAuthenticationEventFlowIncludeApplication` /identity/authenticationEventsFlows/{authenticationEventsFlow-id}/conditions/applications/includeApplications/ List includeApplications (for a user flow)
`Get-MgIdentityAuthenticationEventListener` /identity/authenticationEventListeners List authenticationEventListeners
`Get-MgIdentityAuthenticationEventListener` /identity/authenticationEventListeners/{authenticationEventListenerId} Get authenticationEventListener
`New-MgIdentityAuthenticationEventFlow` /identity/authenticationEventsFlows Create authenticationEventsFlow
`New-MgIdentityAuthenticationEventFlowAsOnAuthenticationMethodLoadStartExternalUserSelfServiceSignUpIdentityProviderByRef` /identity/authenticationEventsFlows/{authenticationEventsFlow-id}/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAuthenticationMethodLoadStart/microsoft.graph.onAuthenticationMethodLoadStartExternalUsersSelfServiceSignUp/identityProviders/$ref Add identityProvider (to a user flow)
`New-MgIdentityAuthenticationEventFlowAsOnGraphAPretributeCollectionExternalUserSelfServiceSignUpAttributeByRef` /identity/authenticationEventsFlows/{authenticationEventsFlow-id}/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAttributeCollection/microsoft.graph.onAttributeCollectionExternalUsersSelfServiceSignUp/attributes/$ref Add attribute (to user flow)
`New-MgIdentityAuthenticationEventFlowIncludeApplication` /identity/authenticationEventsFlows/{authenticationEventsFlow-id}/conditions/applications/includeApplications Add includeApplication (to a user flow)
`New-MgIdentityAuthenticationEventListener` /identity/authenticationEventListeners Create authenticationEventListener
`Remove-MgIdentityAuthenticationEventFlow` /identity/authenticationEventsFlows/{authenticationEventsFlow-id} Delete authenticationEventsFlow
`Remove-MgIdentityAuthenticationEventFlowAsOnAuthenticationMethodLoadStartExternalUserSelfServiceSignUpIdentityProviderBaseByRef` /identity/authenticationEventsFlows/{authenticationEventsFlow-id}/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAuthenticationMethodLoadStart/microsoft.graph.onAuthenticationMethodLoadStartExternalUsersSelfServiceSignUp/{identityProviders-id}/$ref Remove identityProvider (from a user flow)
`Remove-MgIdentityAuthenticationEventFlowAsOnGraphAPretributeCollectionExternalUserSelfServiceSignUpAttributeIdentityUserFlowAttributeByRef` /identity/authenticationEventsFlows/{authenticationEventsFlow-id}/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAttributeCollection/microsoft.graph.onAttributeCollectionExternalUsersSelfServiceSignUp/attributes/{attributeId}/$ref Remove attribute (from user flow)
`Remove-MgIdentityAuthenticationEventFlowIncludeApplication` /identity/authenticationEventsFlows/{authenticationEventsFlow-id}/conditions/applications/includeApplications/{appId} Delete authenticationConditionApplication (from a user flow)
`Remove-MgIdentityAuthenticationEventListener` /identity/authenticationEventListeners/{authenticationEventListenerId} Delete authenticationEventListener
`Update-MgIdentityAuthenticationEventFlow` /identity/authenticationEventsFlows/{authenticationEventsFlow-id} Update authenticationEventsFlow
`Update-MgIdentityAuthenticationEventListener` /identity/authenticationEventListeners/{authenticationEventListenerId} Update authenticationEventListener

Exact Microsoft Learn PowerShell match

Microsoft Graph PowerShell beta commands are mapped directly from refreshed Microsoft Learn PowerShell snippets.

Commands
`Get-MgBetaIdentityAuthenticationEventFlow` /identity/authenticationEventsFlows List authenticationEventsFlows
`Get-MgBetaIdentityAuthenticationEventFlow` /identity/authenticationEventsFlows/{authenticationEventsFlow-id} Get authenticationEventsFlow
`Get-MgBetaIdentityAuthenticationEventFlowAsOnAttributeCollectionExternalUserSelfServiceSignUpAttribute` /identity/authenticationEventsFlows/{authenticationEventsFlow-id}/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAttributeCollection/microsoft.graph.onAttributeCollectionExternalUsersSelfServiceSignUp/attributes/ List attributes (of a user flow)
`Get-MgBetaIdentityAuthenticationEventFlowAsOnAuthenticationMethodLoadStartExternalUserSelfServiceSignUpIdentityProvider` /identity/authenticationEventsFlows/{authenticationEventsFlow-id}/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAuthenticationMethodLoadStart/microsoft.graph.onAuthenticationMethodLoadStartExternalUsersSelfServiceSignUp/identityProviders/ List identityProviders (in a user flow)
`Get-MgBetaIdentityAuthenticationEventFlowIncludeApplication` /identity/authenticationEventsFlows/{authenticationEventsFlow-id}/conditions/applications/includeApplications/ List includeApplications (for a user flow)
`Get-MgBetaIdentityAuthenticationEventListener` /identity/authenticationEventListeners List authenticationEventListeners
`Get-MgBetaIdentityAuthenticationEventListener` /identity/authenticationEventListeners/{authenticationEventListenerId} Get authenticationEventListener
`New-MgBetaIdentityAuthenticationEventFlow` /identity/authenticationEventsFlows Create authenticationEventsFlow
`New-MgBetaIdentityAuthenticationEventFlowAsOnAuthenticationMethodLoadStartExternalUserSelfServiceSignUpIdentityProviderByRef` /identity/authenticationEventsFlows/{authenticationEventsFlow-id}/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAuthenticationMethodLoadStart/microsoft.graph.onAuthenticationMethodLoadStartExternalUsersSelfServiceSignUp/identityProviders/$ref Add identityProvider (to a user flow)
`New-MgBetaIdentityAuthenticationEventFlowAsOnGraphAPretributeCollectionExternalUserSelfServiceSignUpAttributeByRef` /identity/authenticationEventsFlows/{authenticationEventsFlow-id}/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAttributeCollection/microsoft.graph.onAttributeCollectionExternalUsersSelfServiceSignUp/attributes/$ref Add attribute (to user flow)
`New-MgBetaIdentityAuthenticationEventFlowIncludeApplication` /identity/authenticationEventsFlows/{authenticationEventsFlow-id}/conditions/applications/includeApplications Add includeApplication (to a user flow)
`New-MgBetaIdentityAuthenticationEventListener` /identity/authenticationEventListeners Create authenticationEventListener
`Remove-MgBetaIdentityAuthenticationEventFlow` /identity/authenticationEventsFlows/{authenticationEventsFlow-id}/ Delete authenticationEventsFlow
`Remove-MgBetaIdentityAuthenticationEventFlowAsOnAuthenticationMethodLoadStartExternalUserSelfServiceSignUpIdentityProviderBaseByRef` /identity/authenticationEventsFlows/{authenticationEventsFlow-id}/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAuthenticationMethodLoadStart/microsoft.graph.onAuthenticationMethodLoadStartExternalUsersSelfServiceSignUp/identityProviders/$ref Remove identityProvider (from a user flow)
`Remove-MgBetaIdentityAuthenticationEventFlowAsOnGraphAPretributeCollectionExternalUserSelfServiceSignUpAttributeIdentityUserFlowAttributeByRef` /identity/authenticationEventsFlows/{authenticationEventsFlow-id}/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAttributeCollection/microsoft.graph.onAttributeCollectionExternalUsersSelfServiceSignUp/attributes/{attributeId}/$ref Remove attribute (from user flow)
`Remove-MgBetaIdentityAuthenticationEventFlowIncludeApplication` /identity/authenticationEventsFlows/{authenticationEventsFlow-id}/conditions/applications/includeApplications/{appId} Delete authenticationConditionApplication (from a user flow)
`Remove-MgBetaIdentityAuthenticationEventListener` /identity/authenticationEventListeners/{authenticationEventListenerId} Delete authenticationEventListener
`Update-MgBetaIdentityAuthenticationEventFlow` /identity/authenticationEventsFlows/{authenticationEventsFlow-id} Update authenticationEventsFlow
`Update-MgBetaIdentityAuthenticationEventListener` /identity/authenticationEventListeners/{authenticationEventListenerId} Update authenticationEventListener

Code Examples

C# / .NET SDK

Add attribute (to user flow)

View official example on Microsoft Learn

// Code snippets are only available for the latest version. Current version is 5.x

// Dependencies
using Microsoft.Graph.Models;

var requestBody = new ReferenceCreate
{
	OdataId = "https://graph.microsoft.com/v1.0/identity/userFlowAttributes/city",
};

// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=csharp
await graphClient.Identity.AuthenticationEventsFlows["{authenticationEventsFlow-id}"].GraphExternalUsersSelfServiceSignUpEventsFlow.OnAttributeCollection.GraphOnAttributeCollectionExternalUsersSelfServiceSignUp.Attributes.Ref.PostAsync(requestBody);

JavaScript

Add attribute (to user flow)

View official example on Microsoft Learn

const options = {
	authProvider,
};

const client = Client.init(options);

const identityUserFlowAttribute = {
    '@odata.id':'https://graph.microsoft.com/v1.0/identity/userFlowAttributes/city'
};

await client.api('/identity/authenticationEventsFlows/0313cc37-d421-421d-857b-87804d61e33e/microsoft.graph.externalUsersSelfServiceSignUpEventsFlow/onAttributeCollection/microsoft.graph.onAttributeCollectionExternalUsersSelfServiceSignUp/attributes/$ref')
	.post(identityUserFlowAttribute);

PowerShell

Add attribute (to user flow)

View official example on Microsoft Learn

Import-Module Microsoft.Graph.Identity.SignIns

$params = @{
	"@odata.id" = "https://graph.microsoft.com/v1.0/identity/userFlowAttributes/city"
}

New-MgIdentityAuthenticationEventFlowAsOnGraphAPretributeCollectionExternalUserSelfServiceSignUpAttributeByRef -AuthenticationEventsFlowId $authenticationEventsFlowId -BodyParameter $params

Python

Add attribute (to user flow)

View official example on Microsoft Learn

# Code snippets are only available for the latest version. Current version is 1.x
from msgraph import GraphServiceClient
from msgraph.generated.models.reference_create import ReferenceCreate
# To initialize your graph_client, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=python
request_body = ReferenceCreate(
	odata_id = "https://graph.microsoft.com/v1.0/identity/userFlowAttributes/city",
)

await graph_client.identity.authentication_events_flows.by_authentication_events_flow_id('authenticationEventsFlow-id').graph_external_users_self_service_sign_up_events_flow.on_attribute_collection.graph_on_attribute_collection_external_users_self_service_sign_up.attributes.ref.post(request_body)

App Registration

1

Navigate to Azure Portal

Go to App registrations in Microsoft Entra admin center

2

Add API Permission

Select your app → API permissions → Add a permission → Microsoft Graph

3

Select Permission Type

Choose Application permissions or delegated permissions and search for EventListener.ReadWrite.All

4

Grant Admin Consent

Application permissions always require admin consent.