skip to Main Content

Can an Azure app read role defs w/o perms?

Microsoft states that Microsoft.Authorization/roleDefinitions/read permission is needed to read RBAC role definition. It is mentioned here https://learn.microsoft.com/en-us/rest/api/authorization/role-definitions/list?tabs=HTTP However I have Azure application which has assigned empty role (having 0 permissions) and still can read role definitions. How is that possible?…

VIEW QUESTION
Back To Top
Search