You can use an admin refresh token to read data from the GraphQL service - by default, it has a lifetime of 10 years, but you have to be careful not to leak it as it would allow an attacker to read all data until you revoke the token.
Looking at this thread, it appears it’s possible to configure PowerBI to pass this token in the
Authorization header. Then, you can create your GraphQL request as an
HTTP GET request and execute in PowerBI, for example:
is the equivalent of
which will give you the
isAdmin values for all
User objects stored in the
* Note: While replying, I noticed that there’s a validation bug in the GraphQL service that will reject access for admin users. I’ve fixed it and expect an update to be rolled out to Cloud instances in the next few days.