Refactor conditional logic for handling application endpoints in GraphMinimalPermissionsGuidancePlugin. Closes #1605 (#1606)

waldekmastykarz · garrytrinder · web-flow · commit 74d48ea8c72a · 2026-04-09T13:46:11.000Z
Co-authored-by: Garry Trinder &lt;garry@trinder365.co.uk&gt;
diff --git a/DevProxy.Plugins/Reporting/GraphMinimalPermissionsGuidancePlugin.cs b/DevProxy.Plugins/Reporting/GraphMinimalPermissionsGuidancePlugin.cs
@@ -141,22 +141,20 @@ public override async Task AfterRecordingStopAsync(RecordingArgs e, Cancellation
             }
             else
             {
-                // skip empty roles which are returned in case we couldn't get permissions information
-                // 
                 // application permissions are always the same because they come from app reg
                 // so we can just use the first request that has them
                 if (permissions.Any() && !rolesToEvaluate.Any())
                 {
                     rolesToEvaluate = permissions;
+                }
 
-                    if (ProxyUtils.IsGraphBatchUrl(uri))
-                    {
-                        applicationEndpoints.AddRange(requestsFromBatch);
-                    }
-                    else
-                    {
-                        applicationEndpoints.Add(methodAndUrl);
-                    }
+                if (ProxyUtils.IsGraphBatchUrl(uri))
+                {
+                    applicationEndpoints.AddRange(requestsFromBatch);
+                }
+                else
+                {
+                    applicationEndpoints.Add(methodAndUrl);
                 }
             }
         }

Original file line number	Diff line number	Diff line change
`@@ -141,22 +141,20 @@ public override async Task AfterRecordingStopAsync(RecordingArgs e, Cancellation`
`141`	`141`	`}`
`142`	`142`	`else`
`143`	`143`	`{`
`144`		`- // skip empty roles which are returned in case we couldn't get permissions information`
`145`		`- //`
`146`	`144`	`// application permissions are always the same because they come from app reg`
`147`	`145`	`// so we can just use the first request that has them`
`148`	`146`	`if (permissions.Any() && !rolesToEvaluate.Any())`
`149`	`147`	`{`
`150`	`148`	`rolesToEvaluate = permissions;`
	`149`	`+ }`
`151`	`150`
`152`		`- if (ProxyUtils.IsGraphBatchUrl(uri))`
`153`		`- {`
`154`		`- applicationEndpoints.AddRange(requestsFromBatch);`
`155`		`- }`
`156`		`- else`
`157`		`- {`
`158`		`- applicationEndpoints.Add(methodAndUrl);`
`159`		`- }`
	`151`	`+ if (ProxyUtils.IsGraphBatchUrl(uri))`
	`152`	`+ {`
	`153`	`+ applicationEndpoints.AddRange(requestsFromBatch);`
	`154`	`+ }`
	`155`	`+ else`
	`156`	`+ {`
	`157`	`+ applicationEndpoints.Add(methodAndUrl);`
`160`	`158`	`}`
`161`	`159`	`}`
`162`	`160`	`}`