Jun 27 2019 12:34 AM - edited Jun 27 2019 12:40 AM
We are using https://www.npmjs.com/package/passport-azure-ad in our website and user has option to authenticate himself and grant permission of accessing contacts to our application. The problem happens when user delete / disconnect himself from our website and try to login again via office 365 account. This time office365 still remembers the granted permission and doesn't ask to grant permission again. Is there a REST API we can hit to revoke the permission completely? Is there any way that we can programmatically revoke app permissions ?
Jun 27 2019 09:59 AM
Should be possible via the (beta) appRoleAssignments Graph endpoint: https://docs.microsoft.com/en-us/graph/api/approleassignment-delete?view=graph-rest-beta&tabs=cs
Or you can always use PowerShell.