Martin Machacek

Additional info probably contains wrong link. I guess the correct one is https://learn.microsoft.com/en-us/graph/api/rbacapplication-list-roleeligibilityscheduleinstances?view=graph-rest-1.0&tabs=http Maybe we can add options `startDateTime` and `includePrincipalDetails` similar to `entra pim role assignment list`

@martinlingstuyl Any update on this? Can I start working on it?

@martinlingstuyl > I'll update the endpoint indeed. I've also added the options. > > We must be sure by the way to also use https://learn.microsoft.com/en-us/graph/api/unifiedroleeligibilityscheduleinstance-filterbycurrentuser?view=graph-rest-1.0&tabs=http > > ...for the current...

> > We can still filter eligible roles by principalId for the current user. > > But can you call the endpoint without a administrative role? Quick test on my...

> hmmm, but that seems rather odd and insecure. Are you really sure? :-) Yep, I've tried two users. One user is global admin and the second one is a...

From previous ticket #5766, `appScopeId` is not needed. From testing `endDateTime` and `duration` options don't have effect for `adminRemove` or `selfDeactive`. Removing/deactivating should be performed immediately on server.

There are three possible values for directoryScopeId - `/` - tenant wide scope - `/administrativeUnits/{unit_id}` - scope limited to a specific administrative unit - `/{appObjectId}` - scope limited to a...

@martinlingstuyl Can I take it or do you plan to update the spec?

Compared to similar ones, looks good. I will take it once is reviewed by other maintainers

@martinlingstuyl Do you want to allow filtering by scheduleInfo/startDateTime or createdDateTime? What about an option `status` to allow filter by the status of the role assignment request? Seems to me...