SubjectRightsRequest.ReadWrite.All
Export JSON
Export CSV
Copy URL
Print
ApplicationDelegated
Read/Write
All Resources
Allows the app to read and write subject rights requests without a signed in user.
Permission data: April 6, 2026 at 4:06 AM UTC
Delegated Access
App-Only Access
Permission Details
Application Permission
Read and write all subject rights requests
Allows the app to read and write subject rights requests without a signed in user.
Permission ID:
8387eaa4-1a3c-41f5-b261-f888138e6041
Delegated Permission
Admin consent required
Read and write subject rights requests
Allows the app to read and write subject rights requests on behalf of the signed-in user
User sees: Allows the app to read and write subject rights requests on your behalf.
Permission ID:
2b8fcc74-bce1-4ae3-a0e8-60c53739299d
Properties
Microsoft Graph v1.0
exact-category-docs
Properties is shown from stable Microsoft Graph v1.0 metadata.
| Property | Type | Description |
|---|---|---|
assignedTo |
identity |
Identity that the request is assigned to. |
closedDateTime |
DateTimeOffsetNullable |
The date and time when the request was closed. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2014 is 2014-01-01T00:00:00Z. |
contentQuery |
StringNullable |
KQL based content query that should be used for search. This property is defined only for APIs accessed using the \security query path and not the \privacy query path. |
createdBy |
identitySet |
Identity information for the entity that created the request. |
createdDateTime |
DateTimeOffsetNullable |
The date and time when the request was created. The timestamp type represents date and time information using ISO 8601 format and is always in UTC. For example, midnight UTC on Jan 1, 2014 is 2014-01-01T00:00:00Z. |
dataSubject |
dataSubject |
Information about the data subject. |
dataSubjectType |
dataSubjectType |
The type of the data subject. The possible values are: customer, currentEmployee, formerEmployee, prospectiveEmployee, student, teacher, faculty, other, unknownFutureValue. |
description |
StringNullable |
Description for the request. |
displayName |
StringNullable |
The name of the request. |
externalId |
StringNullable |
The external ID for the request that is immutable after creation and is used for tracking the request for the external system. This property is defined only for APIs accessed using the \security query path and not the \privacy query path. |
history |
subjectRightsRequestHistory collection |
Collection of history change events. |
id |
String |
Unique identifier for the subjectRightsRequest object. Inherited from entity. |
includeAllVersions |
BooleanNullable |
Include all versions of the documents. By default, the current copies of the documents are returned. If SharePoint sites have versioning enabled, including all versions includes the historical copies of the documents. This property is defined only for APIs accessed using the \security query path and not the \privacy query path. |
includeAuthoredContent |
BooleanNullable |
Include content authored by the data subject. This property is defined only for APIs accessed using the \security query path and not the \privacy query path. |
insight |
subjectRightsRequestDetail |
Insight about the request. |
Showing 15 of 29 properties.
JSON Representation
Microsoft Graph v1.0
exact-category-docs
JSON representation is shown from stable Microsoft Graph v1.0 metadata.
JSON representation
{
"@odata.type": "#microsoft.graph.subjectRightsRequest",
"assignedTo": "String",
"closedDateTime": "String (timestamp)",
"contentQuery": "String",
"createdBy": {
"@odata.type": "microsoft.graph.identitySet"
},
"createdDateTime": "String (timestamp)",
"dataSubject": {
"@odata.type": "microsoft.graph.dataSubject"
},
"dataSubjectType": "String",
"description": "String",
"displayName": "String",
"externalId": "String",
"history": [
{
"@odata.type": "microsoft.graph.subjectRightsRequestHistory"
}
],
"id": "String (identifier)",
"includeAllVersions": "Boolean",
"includeAuthoredContent": "Boolean",
"insight": {
"@odata.type": "microsoft.graph.subjectRightsRequestDetail"
},
"internalDueDateTime": "String (timestamp)",
"lastModifiedBy": {
"@odata.type": "microsoft.graph.identitySet"
},
"lastModifiedDateTime": "String (timestamp)",
"mailboxLocations": {
"@odata.type": "microsoft.graph.subjectRightsRequestMailboxLocation"
},
"pauseAfterEstimate": "Boolean",
"regulations": [
"String"
],
"siteLocations": {
"@odata.type": "microsoft.graph.subjectRightsRequestSiteLocation"
},
"stages": [
{
"@odata.type": "microsoft.graph.subjectRightsRequestStageDetail"
}
],
"status": "String",
"type": "String"
}Relationships
Microsoft Graph v1.0
exact-category-docs
Relationships is shown from stable Microsoft Graph v1.0 metadata.
| Relationship | Type | Description |
|---|---|---|
approvers |
user collection |
Collection of users who can approve the request. Currently only supported for requests of type delete. |
collaborators |
user collection |
Collection of users who can collaborate on the request. |
notes |
authoredNote collection |
List of notes associated with the request. |
team |
team |
Information about the Microsoft Teams team that was created for the request. |
history |
subjectRightsRequestHistory collection |
Collection of history change events. |
regulations |
string collection |
List of regulations that this request fulfill. |
stages |
subjectRightsRequestStageDetail collection |
Information about the different stages for the request. |
Graph Methods
Delegated access
App-only access
Exact Microsoft Learn match
Microsoft Graph v1.0 endpoints are mapped directly from refreshed Microsoft Learn permissions tables.
Exact Microsoft Learn match
Microsoft Graph beta endpoints are mapped directly from refreshed Microsoft Learn permissions tables.
Exact Microsoft Learn PowerShell match
Microsoft Graph PowerShell v1.0 commands are mapped directly from refreshed Microsoft Learn PowerShell snippets.
Exact Microsoft Learn PowerShell match
Microsoft Graph PowerShell beta commands are mapped directly from refreshed Microsoft Learn PowerShell snippets.
Code Examples
C# / .NET SDK
Create authoredNote
// Code snippets are only available for the latest version. Current version is 5.x
// Dependencies
using Microsoft.Graph.Models;
var requestBody = new AuthoredNote
{
Content = new ItemBody
{
Content = "Please take a look at the files tagged with follow up",
ContentType = BodyType.Text,
},
};
// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=csharp
var result = await graphClient.Privacy.SubjectRightsRequests["{subjectRightsRequest-id}"].Notes.PostAsync(requestBody);
JavaScript
Create authoredNote
const options = {
authProvider,
};
const client = Client.init(options);
const authoredNote = {
content: {
content: 'Please take a look at the files tagged with follow up',
contentType: 'text'
}
};
await client.api('/privacy/subjectRightsRequests/{subjectRightsRequestId}/notes')
.post(authoredNote);
PowerShell
Create authoredNote
Import-Module Microsoft.Graph.Compliance
$params = @{
content = @{
content = "Please take a look at the files tagged with follow up"
contentType = "text"
}
}
New-MgPrivacySubjectRightsRequestNote -SubjectRightsRequestId $subjectRightsRequestId -BodyParameter $params
Python
Create authoredNote
# Code snippets are only available for the latest version. Current version is 1.x
from msgraph import GraphServiceClient
from msgraph.generated.models.authored_note import AuthoredNote
from msgraph.generated.models.item_body import ItemBody
from msgraph.generated.models.body_type import BodyType
# To initialize your graph_client, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=python
request_body = AuthoredNote(
content = ItemBody(
content = "Please take a look at the files tagged with follow up",
content_type = BodyType.Text,
),
)
result = await graph_client.privacy.subject_rights_requests.by_subject_rights_request_id('subjectRightsRequest-id').notes.post(request_body)App Registration
1
Navigate to Azure Portal
Go to App registrations in Microsoft Entra admin center
2
Add API Permission
Select your app → API permissions → Add a permission → Microsoft Graph
3
Select Permission Type
Choose Application permissions or delegated permissions and search for SubjectRightsRequest.ReadWrite.All
4
Grant Admin Consent
Application permissions always require admin consent.