MinimalPermissionsGuidancePlugin

  • Article

Compares the permissions used in the JWT token sent to Microsoft Graph against the minimum required scopes needed for requests that proxy recorded and shows the difference.

Screenshot of a command prompt with Dev Proxy showing minimal permissions for a set of Microsoft Graph API requests.

Plugin instance definition

{
  "name": "MinimalPermissionsGuidancePlugin",
  "enabled": false,
  "pluginPath": "~appFolder/plugins/dev-proxy-plugins.dll",
  "configSection": "minimalPermissionsGuidancePlugin"
}

Configuration example

{
    "minimalPermissionsGuidancePlugin": {
        "permissionsToIgnore": [ 
            "profile", 
            "openid", 
            "offline_access", 
            "email"
        ]
    }
}

Configuration properties

Property Description Default
permissionsToIgnore The scopes to ignore and not include in the report. profile openid offline_access email

Command line options

None