identity governance: update module mapping (#680)

* move cmdlet supression for new AR, TOU and app consent from mapping to identity.governance readme

* unsupress AR definition, history definition and policy cmdlets

* change AR rename back to supress cmdlets for now

Co-authored-by: Peter Ombwa <[email protected]>

Author: markwahl-msft

config/ModulesMapping.jsonc

@@ -19,7 +19,7 @@
     "Financials": "^financials\\.",
     "Groups": "^groups.group$|^groups.directoryObject$|^groups.conversation$|^groups.endpoint$|^groups.extension$|^groups.resourceSpecificPermissionGrant$|^groups.profilePhoto$|^groups.conversationThread$|^groupLifecyclePolicies\\.|^users.group$|^groups.directorySetting$|^groups.Actions$|^groups.Functions$",
     "Identity.DirectoryManagement": "^administrativeUnits\\.|^contacts\\.|^devices\\.|^domains\\.|^directoryRoles\\.|^directoryRoleTemplates\\.|^directorySettingTemplates\\.|^settings\\.|^subscribedSkus\\.|^contracts\\.|^directory\\.|^users.scopedRoleMembership$|^organization.organization$|^organization.organizationalBranding$|^organization.organizationSettings$|^organization.Actions$|^organization.extension$",
-    "Identity.Governance": "^accessReviews\\.|^businessFlowTemplates\\.|^programs\\.|^programControls\\.|^programControlTypes\\.|^privilegedRoles\\.|^privilegedRoleAssignments\\.|^privilegedRoleAssignmentRequests\\.|^privilegedApproval\\.|^privilegedOperationEvents\\.|^privilegedAccess\\.|^agreements\\.|^users.agreementAcceptance$|^identityGovernance.entitlementManagement$|^identityGovernance.Functions$|^identityGovernance.Actions$",
+    "Identity.Governance": "^accessReviews\\.|^businessFlowTemplates\\.|^programs\\.|^programControls\\.|^programControlTypes\\.|^privilegedRoles\\.|^privilegedRoleAssignments\\.|^privilegedRoleAssignmentRequests\\.|^privilegedApproval\\.|^privilegedOperationEvents\\.|^privilegedAccess\\.|^agreements\\.|^users.agreementAcceptance$|^identityGovernance\\.",
     "Identity.SignIns": "^organization.certificateBasedAuthConfiguration$|^invitations\\.|^identityProviders\\.|^oauth2PermissionGrants\\.|^riskDetections\\.|^riskyUsers\\.|^dataPolicyOperations\\.|^identity.identityUserFlow$|^trustFramework\\.|^informationProtection\\.|^policies\\.|^users.authentication$|^users.informationProtection$|^identity.conditionalAccessRoot$",
     "Mail": "^users.inferenceClassification$|^users.mailFolder$|^users.message$",
     "Notes": "^users.onenote$|^groups.onenote$|^sites.onenote$",

profiles/Identity.Governance/definitions/v1.0-beta.md

@@ -36,8 +36,20 @@ profiles:
       /agreements/{agreement-id}/files/{agreementFileLocalization-id}/versions/{agreementFileVersion-id}: v1.0-beta
       /businessFlowTemplates: v1.0-beta
       /businessFlowTemplates/{businessFlowTemplate-id}: v1.0-beta
+      /identityGovernance: v1.0-beta
+      /identityGovernance/accessReviews: v1.0-beta
+      /identityGovernance/accessReviews/definitions: v1.0-beta
+      /identityGovernance/accessReviews/definitions/{accessReviewScheduleDefinition-id}: v1.0-beta
+      /identityGovernance/accessReviews/definitions/{accessReviewScheduleDefinition-id}/instances: v1.0-beta
+      /identityGovernance/accessReviews/definitions/{accessReviewScheduleDefinition-id}/instances/{accessReviewInstance-id}: v1.0-beta
+      /identityGovernance/accessReviews/definitions/{accessReviewScheduleDefinition-id}/instances/{accessReviewInstance-id}/decisions: v1.0-beta
+      ? /identityGovernance/accessReviews/definitions/{accessReviewScheduleDefinition-id}/instances/{accessReviewInstance-id}/decisions/{accessReviewInstanceDecisionItem-id}
+      : v1.0-beta
       ? /identityGovernance/accessReviews/definitions/{accessReviewScheduleDefinition-id}/instances/{accessReviewInstance-id}/decisions/microsoft.graph.filterByCurrentUser(on={on})
       : v1.0-beta
+      /identityGovernance/accessReviews/definitions/{accessReviewScheduleDefinition-id}/instances/{accessReviewInstance-id}/definition: v1.0-beta
+      ? /identityGovernance/accessReviews/definitions/{accessReviewScheduleDefinition-id}/instances/{accessReviewInstance-id}/definition/$ref
+      : v1.0-beta
       ? /identityGovernance/accessReviews/definitions/{accessReviewScheduleDefinition-id}/instances/{accessReviewInstance-id}/definition/microsoft.graph.stop
       : v1.0-beta
       ? /identityGovernance/accessReviews/definitions/{accessReviewScheduleDefinition-id}/instances/{accessReviewInstance-id}/microsoft.graph.acceptRecommendations
@@ -56,7 +68,20 @@ profiles:
       : v1.0-beta
       /identityGovernance/accessReviews/definitions/{accessReviewScheduleDefinition-id}/microsoft.graph.stop: v1.0-beta
       /identityGovernance/accessReviews/definitions/microsoft.graph.filterByCurrentUser(on={on}): v1.0-beta
+      /identityGovernance/accessReviews/historyDefinitions: v1.0-beta
+      /identityGovernance/accessReviews/historyDefinitions/{accessReviewHistoryDefinition-id}: v1.0-beta
       /identityGovernance/accessReviews/historyDefinitions/{accessReviewHistoryDefinition-id}/microsoft.graph.generateDownloadUri: v1.0-beta
+      /identityGovernance/accessReviews/policy: v1.0-beta
+      /identityGovernance/appConsent: v1.0-beta
+      /identityGovernance/appConsent/appConsentRequests: v1.0-beta
+      /identityGovernance/appConsent/appConsentRequests/{appConsentRequest-id}: v1.0-beta
+      /identityGovernance/appConsent/appConsentRequests/{appConsentRequest-id}/userConsentRequests: v1.0-beta
+      /identityGovernance/appConsent/appConsentRequests/{appConsentRequest-id}/userConsentRequests/{userConsentRequest-id}: v1.0-beta
+      /identityGovernance/appConsent/appConsentRequests/{appConsentRequest-id}/userConsentRequests/{userConsentRequest-id}/approval: v1.0-beta
+      ? /identityGovernance/appConsent/appConsentRequests/{appConsentRequest-id}/userConsentRequests/{userConsentRequest-id}/approval/steps
+      : v1.0-beta
+      ? /identityGovernance/appConsent/appConsentRequests/{appConsentRequest-id}/userConsentRequests/{userConsentRequest-id}/approval/steps/{approvalStep-id}
+      : v1.0-beta
       ? /identityGovernance/appConsent/appConsentRequests/{appConsentRequest-id}/userConsentRequests/microsoft.graph.filterByCurrentUser(on={on})
       : v1.0-beta
       /identityGovernance/appConsent/appConsentRequests/microsoft.graph.filterByCurrentUser(on={on}): v1.0-beta
@@ -1495,6 +1520,11 @@ profiles:
       ? /identityGovernance/entitlementManagement/connectedOrganizations/{connectedOrganization-id}/internalSponsors/{directoryObject-id}
       : v1.0-beta
       /identityGovernance/entitlementManagement/settings: v1.0-beta
+      /identityGovernance/termsOfUse: v1.0-beta
+      /identityGovernance/termsOfUse/agreementAcceptances: v1.0-beta
+      /identityGovernance/termsOfUse/agreementAcceptances/{agreementAcceptance-id}: v1.0-beta
+      /identityGovernance/termsOfUse/agreements: v1.0-beta
+      /identityGovernance/termsOfUse/agreements/{agreement-id}: v1.0-beta
       /privilegedAccess: v1.0-beta
       /privilegedAccess/{privilegedAccess-id}: v1.0-beta
       /privilegedAccess/{privilegedAccess-id}/resources: v1.0-beta

src/Identity.Governance/Identity.Governance/readme.md

@@ -218,6 +218,26 @@ directive:
       verb: Remove
       subject: (.*)(EntitlementManagement)Setting$
     remove: true
+  - where:
+      verb: Get|Update
+      subject: (.*)(IdentityGovernance)$
+    remove: true
+  - where:
+      verb: Get|Remove|Update
+      subject: (.*)(IdentityGovernance)AccessReview$
+    remove: true
+  - where:
+      verb: New|Remove|Update|Get|Add|Invoke|Reset|Send|Set|Stop
+      subject: (.*)(IdentityGovernance)(AccessReviewDefinition|AccessReviewHistoryDefinition|AccessReviewPolicy)(.*)$
+    remove: true
+  - where:
+      verb: New|Remove|Update|Get
+      subject: (.*)(IdentityGovernance)Term
+    remove: true
+  - where:
+      verb: New|Remove|Update|Get|Invoke
+      subject: (.*)(IdentityGovernance)AppConsent
+    remove: true
 # Rename cmdlets with duplicates in their name.
   - where:
       subject: ^(BusinessFlowTemplate)(\1)+