jtlibing
diff --git a/‎src/ResourceManager/Batch/Commands.Batch.Test/Commands.Batch.Test.csproj
Lines changed: 2 additions & 1 deletion b/‎src/ResourceManager/Batch/Commands.Batch.Test/Commands.Batch.Test.csproj
Lines changed: 2 additions & 1 deletion
diff --git a/‎src/ResourceManager/Batch/Commands.Batch.Test/packages.config
Lines changed: 1 addition & 1 deletion b/‎src/ResourceManager/Batch/Commands.Batch.Test/packages.config
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/ResourceManager/DataFactories/Commands.DataFactories.Test/Commands.DataFactories.Test.csproj
Lines changed: 1 addition & 1 deletion b/‎src/ResourceManager/DataFactories/Commands.DataFactories.Test/Commands.DataFactories.Test.csproj
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/ResourceManager/DataFactories/Commands.DataFactories.Test/packages.config
Lines changed: 1 addition & 1 deletion b/‎src/ResourceManager/DataFactories/Commands.DataFactories.Test/packages.config
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/ResourceManager/Resources/Commands.Resources.Test/Commands.Resources.Test.csproj
Lines changed: 9 additions & 1 deletion b/‎src/ResourceManager/Resources/Commands.Resources.Test/Commands.Resources.Test.csproj
Lines changed: 9 additions & 1 deletion
diff --git a/‎src/ResourceManager/Resources/Commands.Resources.Test/Resources/NewRoleDefinition.json
Lines changed: 10 additions & 0 deletions b/‎src/ResourceManager/Resources/Commands.Resources.Test/Resources/NewRoleDefinition.json
Lines changed: 10 additions & 0 deletions
diff --git a/‎src/ResourceManager/Resources/Commands.Resources.Test/ScenarioTests/RoleDefinitionTests.cs
Lines changed: 43 additions & 0 deletions b/‎src/ResourceManager/Resources/Commands.Resources.Test/ScenarioTests/RoleDefinitionTests.cs
Lines changed: 43 additions & 0 deletions
diff --git a/‎src/ResourceManager/Resources/Commands.Resources.Test/ScenarioTests/RoleDefinitionTests.ps1
Lines changed: 120 additions & 0 deletions b/‎src/ResourceManager/Resources/Commands.Resources.Test/ScenarioTests/RoleDefinitionTests.ps1
Lines changed: 120 additions & 0 deletions
diff --git a/‎src/ResourceManager/Resources/Commands.Resources.Test/packages.config
Lines changed: 1 addition & 1 deletion b/‎src/ResourceManager/Resources/Commands.Resources.Test/packages.config
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/ResourceManager/Resources/Commands.Resources/Commands.Resources.csproj
Lines changed: 10 additions & 8 deletions b/‎src/ResourceManager/Resources/Commands.Resources/Commands.Resources.csproj
Lines changed: 10 additions & 8 deletions
diff --git a/‎src/ResourceManager/Resources/Commands.Resources/Models.ActiveDirectory/ParameterSet.cs
Lines changed: 4 additions & 0 deletions b/‎src/ResourceManager/Resources/Commands.Resources/Models.ActiveDirectory/ParameterSet.cs
Lines changed: 4 additions & 0 deletions
diff --git a/‎src/ResourceManager/Resources/Commands.Resources/Models.Authorization/AuthorizationClient.cs
Lines changed: 49 additions & 0 deletions b/‎src/ResourceManager/Resources/Commands.Resources/Models.Authorization/AuthorizationClient.cs
Lines changed: 49 additions & 0 deletions
diff --git a/‎src/ResourceManager/Resources/Commands.Resources/Models.Authorization/AuthorizationClientExtensions.cs
Lines changed: 4 additions & 1 deletion b/‎src/ResourceManager/Resources/Commands.Resources/Models.Authorization/AuthorizationClientExtensions.cs
Lines changed: 4 additions & 1 deletion
@@ -60,7 +60,8 @@
       <HintPath>..\..\..\packages\Microsoft.Azure.Gallery.2.6.2-preview\lib\net40\Microsoft.Azure.Gallery.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.Azure.Management.Authorization">
-      <HintPath>..\..\..\packages\Microsoft.Azure.Management.Authorization.0.18.0-preview\lib\net40\Microsoft.Azure.Management.Authorization.dll</HintPath>
+      <SpecificVersion>False</SpecificVersion>
+      <HintPath>..\..\..\packages\Microsoft.Azure.Management.Authorization.0.18.2-preview\lib\net40\Microsoft.Azure.Management.Authorization.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.Azure.Management.Batch">
       <HintPath>..\..\..\packages\Microsoft.Azure.Management.Batch.1.3.0-preview\lib\net40\Microsoft.Azure.Management.Batch.dll</HintPath>
 
@@ -6,7 +6,7 @@
   <package id="Microsoft.Azure.Common.Authentication" version="1.0.22-preview" targetFramework="net45" />
   <package id="Microsoft.Azure.Common.Dependencies" version="1.0.0" targetFramework="net45" />
   <package id="Microsoft.Azure.Gallery" version="2.6.2-preview" targetFramework="net45" />
-  <package id="Microsoft.Azure.Management.Authorization" version="0.18.0-preview" targetFramework="net45" />
+  <package id="Microsoft.Azure.Management.Authorization" version="0.18.2-preview" targetFramework="net45" />
   <package id="Microsoft.Azure.Management.Batch" version="1.3.0-preview" targetFramework="net45" />
   <package id="Microsoft.Azure.Management.Resources" version="2.18.0-preview" targetFramework="net45" />
   <package id="Microsoft.Azure.Test.Framework" version="1.0.5571.32271-prerelease" targetFramework="net45" />
 
@@ -60,7 +60,7 @@
     </Reference>
     <Reference Include="Microsoft.Azure.Management.Authorization">
       <SpecificVersion>False</SpecificVersion>
-      <HintPath>..\..\..\packages\Microsoft.Azure.Management.Authorization.0.18.0-preview\lib\net40\Microsoft.Azure.Management.Authorization.dll</HintPath>
+      <HintPath>..\..\..\packages\Microsoft.Azure.Management.Authorization.0.18.2-preview\lib\net40\Microsoft.Azure.Management.Authorization.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.Azure.Management.DataFactories">
       <HintPath>..\..\..\packages\Microsoft.Azure.Management.DataFactories.0.15.6-preview\lib\net40\Microsoft.Azure.Management.DataFactories.dll</HintPath>
 
@@ -5,7 +5,7 @@
   <package id="Microsoft.Azure.Common.Authentication" version="1.0.22-preview" targetFramework="net45" />
   <package id="Microsoft.Azure.Common.Dependencies" version="1.0.0" targetFramework="net45" />
   <package id="Microsoft.Azure.Gallery" version="2.6.2-preview" targetFramework="net45" />
-  <package id="Microsoft.Azure.Management.Authorization" version="0.18.0-preview" targetFramework="net45" />
+  <package id="Microsoft.Azure.Management.Authorization" version="0.18.2-preview" targetFramework="net45" />
   <package id="Microsoft.Azure.Management.DataFactories" version="0.15.6-preview" targetFramework="net45" />
   <package id="Microsoft.Azure.Management.Resources" version="2.18.0-preview" targetFramework="net45" />
   <package id="Microsoft.Azure.Test.Framework" version="1.0.5571.32271-prerelease" targetFramework="net45" />
 
@@ -64,7 +64,8 @@
       <HintPath>..\..\..\packages\Microsoft.Azure.Graph.RBAC.1.7.0-preview\lib\net40\Microsoft.Azure.Graph.RBAC.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.Azure.Management.Authorization">
-      <HintPath>..\..\..\packages\Microsoft.Azure.Management.Authorization.0.18.0-preview\lib\net40\Microsoft.Azure.Management.Authorization.dll</HintPath>
+      <SpecificVersion>False</SpecificVersion>
+      <HintPath>..\..\..\packages\Microsoft.Azure.Management.Authorization.0.18.2-preview\lib\net40\Microsoft.Azure.Management.Authorization.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.Azure.ResourceManager">
       <HintPath>..\..\..\packages\Microsoft.Azure.Management.Resources.2.18.0-preview\lib\net40\Microsoft.Azure.ResourceManager.dll</HintPath>
@@ -173,6 +174,7 @@
     <Compile Include="ScenarioTests\ResourceGroupTests.cs" />
     <Compile Include="ScenarioTests\ResourceTests.cs" />
     <Compile Include="ScenarioTests\RoleAssignmentTests.cs" />
+    <Compile Include="ScenarioTests\RoleDefinitionTests.cs" />
     <Compile Include="Templates\TestAzureResourceGroupTemplateCommandTests.cs" />
     <Compile Include="Templates\SaveAzureResourceGroupGalleryTemplateCommandTests.cs" />
     <Compile Include="Templates\GetAzureResourceGroupGalleryTemplateCommandTests.cs" />
@@ -245,6 +247,9 @@
     <Content Include="ScenarioTests\AuthorizationTests.ps1">
       <CopyToOutputDirectory>PreserveNewest</CopyToOutputDirectory>
     </Content>
+    <None Include="Resources\NewRoleDefinition.json">
+      <CopyToOutputDirectory>PreserveNewest</CopyToOutputDirectory>
+    </None>
     <None Include="ScenarioTests\ActiveDirectoryTests.ps1">
       <CopyToOutputDirectory>PreserveNewest</CopyToOutputDirectory>
     </None>
@@ -266,6 +271,9 @@
     <None Include="ScenarioTests\RoleAssignmentTests.ps1">
       <CopyToOutputDirectory>PreserveNewest</CopyToOutputDirectory>
     </None>
+    <None Include="ScenarioTests\RoleDefinitionTests.ps1">
+      <CopyToOutputDirectory>PreserveNewest</CopyToOutputDirectory>
+    </None>
     <None Include="SessionRecords\Microsoft.Azure.Commands.Resources.Test.ScenarioTests.ActiveDirectoryTests\TestGetADUserWithMail.json">
       <CopyToOutputDirectory>PreserveNewest</CopyToOutputDirectory>
     </None>
 
@@ -0,0 +1,10 @@
+{
+    "Name": "CustomRole Test Role",
+    "Description": "Test role",
+    "Actions": [
+        "Microsoft.Authorization/*/read",
+        "Microsoft.Support/*"
+    ],
+    "NotActions": [],
+    "AssignableScopes": ["Scope1" , "Scope2"]
+}
@@ -0,0 +1,43 @@
+// ----------------------------------------------------------------------------------
+//
+// Copyright Microsoft Corporation
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+// http://www.apache.org/licenses/LICENSE-2.0
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+// ----------------------------------------------------------------------------------
+
+
+using Microsoft.WindowsAzure.Commands.ScenarioTest;
+using Xunit;
+
+namespace Microsoft.Azure.Commands.Resources.Test.ScenarioTests
+{
+    public class RoleDefinitionTests
+    {
+        // TODO: Add  [Trait(Category.AcceptanceType, Category.CheckIn)] attribute for each test once it gets implemented fully
+
+        [Fact(Skip = "Not implemented")]
+        public void RoleDefinitionCreateTests()
+        {
+            ResourcesController.NewInstance.RunPsTest("Test-RoleDefinitionCreateTests");
+        }
+
+        [Fact(Skip="Not implemented")]
+        public void RdNegativeScenarios()
+        {
+            ResourcesController.NewInstance.RunPsTest("Test-RdNegativeScenarios");
+        }
+
+        [Fact(Skip = "Not implemented")]
+        public void RdPositiveScenarios()
+        {
+            ResourcesController.NewInstance.RunPsTest("Test-RDPositiveScenarios");
+        }
+    }
+}
@@ -0,0 +1,120 @@
+# ----------------------------------------------------------------------------------
+#
+# Copyright Microsoft Corporation
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+# http://www.apache.org/licenses/LICENSE-2.0
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+# ----------------------------------------------------------------------------------
+
+<#
+.SYNOPSIS
+Tests verify scenarios for RoleDefinitions creation.
+#>
+function Test-RoleDefinitionCreateTests
+{
+    # Basic positive case - read from file
+    $rdName = 'CustomRole Test Role'
+    New-AzureRoleDefinition -InputFile .\Resources\NewRoleDefinition.json
+    $rd = Get-AzureRoleDefinition -Name $rdName
+	Assert-NotNull $rd
+	Assert-AreEqual "Test role" $rd.Description 
+	Assert-AreEqual $true $rd.IsCustom
+	Assert-NotNull $rd.Actions
+	Assert-AreEqual "Microsoft.Authorization/*/read" $rd.Actions[0]
+	Assert-AreEqual "Microsoft.Support/*" $rd.Actions[1]
+	Assert-NotNull $rd.AssignableScopes
+	# The below scopes may need to be changed to actual scope values like /subscriptions/.... to satisfy the ARM access checks for PUT requests
+	Assert-AreEqual "Scope1" $rd.AssignableScopes[0]
+	Assert-AreEqual "Scope2" $rd.AssignableScopes[1]
+
+	# Basic positive case - read from object
+	$roleDef = Get-AzureRoleDefinition -Name "Virtual Machine Contributor"
+	$roleDef.Id = $null
+	$roleDef.Name = "Virtual machine restarter"
+	$roleDef.Actions.Add("Microsoft.ClassicCompute/virtualMachines/restart/action")
+	$roleDef.Description = "Can monitor and restart virtual machines"
+	
+	New-AzureRoleDefinition -Role $roleDef
+	$addedRoleDef = Get-AzureRoleDefinition -Name "Virtual machine restarter"
+
+	Assert-AreEqual $roleDef.Actions $addedRoleDef.Actions
+	Assert-AreEqual $roleDef.Description $addedRoleDef.Description
+	Assert-AreEqual $roleDef.AssignableScopes $addedRoleDef.AssignableScopes
+	Assert-AreEqual $true $roleDef.IsCustom
+}
+
+<#
+.SYNOPSIS
+Tests verify negative scenarios for RoleDefinitions
+#>
+function Test-RdNegativeScenarios
+{
+    # Does not throw when getting a non-existing role assignment
+    $rdName = 'aaaaaaaa-aaaa-aaaa-aaaa-aaaaaaaaaaaa'
+    $badRdNameResult = Get-AzureRoleDefinition -Name $rdName
+    Assert-Null $badRdNameResult
+
+    $rdId = 'aaaaaaaa-aaaa-aaaa-aaaa-aaaaaaaaaaaa'
+    $badIdException = "Can not find role definition with id " + $rdId + "."
+
+    # Throws on trying to update the a role that does not exist
+    Assert-Throws { Set-AzureRoleDefinition -InputFile .\Resources\RoleDefinition.json } $badIdException
+
+    # Get a null role definition
+    $rdName = 'nonExisting role'
+    $rdNull = Get-AzureRoleDefinition -Name $rdName
+
+    # Create a role definition
+    $rd = New-AzureRoleDefinition -InputFile .Resources\RoleDefinition.json
+
+    # Role Defintion not provided.
+    $roleDefNotProvided = "Role definition not provided."
+    Assert-Throws { Set-AzureRoleDefinition } $roleDefNotProvided
+    Assert-Throws { Set-AzureRoleDefinition -InputFile "" } $roleDefNotProvided
+    Assert-Throws { Set-AzureRoleDefinition -Role $rdNull } $roleDefNotProvided
+    Assert-Throws { Set-AzureRoleDefinition -InputFile "" -Role $rdNull } $roleDefNotProvided
+
+    # Provide role definition using either InputFile or Role, not both.
+    $doNotProvideBothParams = "Provide role definition using either InputFile or Role, not both."
+    Assert-Throws { Set-AzureRoleDefinition -InputFile .\Resources\RoleDefinition.json -Role $rd } $doNotProvideBothParams
+
+    # Throws on trying to delete a role that does not exist
+    Assert-Throws { Remove-AzureRoleDefinition -Id $rdId -Force} $badIdException
+}
+
+<#
+.SYNOPSIS
+Tests verify positive scenarios for RoleDefinitions.
+#>
+function Test-RDPositiveScenarios
+{
+    # Create a role definition with Name rdNamme.
+    $rdName = 'aaaaaaaa-aaaa-aaaa-aaaa-aaaaaaaaaaaa'
+    $rd = New-AzureRoleDefinition -InputFile .\Resources\RoleDefinition.json
+    $rd = Get-AzureRoleDefinition -Name $rdName
+
+    # Update the role definition with name $rdName that was created in the step above.
+    $newActions = {'Microsoft.Authorization/*/read'}
+    $rd.Actions = $newActions
+    $updatedRd = Set-AzureRoleDefinition -RoleDefinition $rd
+
+    Assert-AreEqual $rd.Name $updatedRd.Name
+    Assert-AreEqual $newActions $updatedRd.Actions
+
+    # delete the role definition
+    $deletedRd = Remove-AzureRoleDefinition -Id $rd.Id -Force
+    Assert-AreEqual $rd.Name $deletedRd.Name
+
+    # try to read the deleted role definition
+    $readRd = Get-AzureRoleDefinition -Name $rd.Name
+    Assert-Null $readRd
+
+    $rdReCreated = New-AzureRoleDefinition -Role $rd
+    $rdReDeleted = Get-AzureRoleDefinition -Name $rd.Name | Remove-AzureRoleDefinition -Force
+}
@@ -6,7 +6,7 @@
   <package id="Microsoft.Azure.Common.Dependencies" version="1.0.0" targetFramework="net45" />
   <package id="Microsoft.Azure.Gallery" version="2.6.2-preview" targetFramework="net45" />
   <package id="Microsoft.Azure.Graph.RBAC" version="1.7.0-preview" targetFramework="net45" />
-  <package id="Microsoft.Azure.Management.Authorization" version="0.18.0-preview" targetFramework="net45" />
+  <package id="Microsoft.Azure.Management.Authorization" version="0.18.2-preview" targetFramework="net45" />
   <package id="Microsoft.Azure.Management.Resources" version="2.18.0-preview" targetFramework="net45" />
   <package id="Microsoft.Azure.Test.Framework" version="1.0.5571.32271-prerelease" targetFramework="net45" />
   <package id="Microsoft.Azure.Test.HttpRecorder" version="1.0.5571.32271-prerelease" targetFramework="net45" />
 
@@ -68,8 +68,9 @@
       <SpecificVersion>False</SpecificVersion>
       <HintPath>..\..\..\packages\Microsoft.Azure.Graph.RBAC.1.7.0-preview\lib\net40\Microsoft.Azure.Graph.RBAC.dll</HintPath>
     </Reference>
-    <Reference Include="Microsoft.Azure.Management.Authorization">
-      <HintPath>..\..\..\packages\Microsoft.Azure.Management.Authorization.0.18.0-preview\lib\net40\Microsoft.Azure.Management.Authorization.dll</HintPath>
+    <Reference Include="Microsoft.Azure.Management.Authorization, Version=0.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <SpecificVersion>False</SpecificVersion>
+      <HintPath>..\..\..\packages\Microsoft.Azure.Management.Authorization.0.18.2-preview\lib\net40\Microsoft.Azure.Management.Authorization.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.Azure.ResourceManager">
       <HintPath>..\..\..\packages\Microsoft.Azure.Management.Resources.2.18.0-preview\lib\net40\Microsoft.Azure.ResourceManager.dll</HintPath>
@@ -132,6 +133,11 @@
     <Compile Include="ActiveDirectory\RemoveAzureADServicePrincipalCommand.cs" />
     <Compile Include="ActiveDirectory\NewAzureADServicePrincipalCommand.cs" />
     <Compile Include="Models.ResourceGroups\PSResourceProviderOperation.cs" />
+    <Compile Include="Properties\Resources.Designer.cs">
+      <AutoGen>True</AutoGen>
+      <DesignTime>True</DesignTime>
+      <DependentUpon>Resources.resx</DependentUpon>
+    </Compile>
     <Compile Include="ProviderFeatures\AzureProviderFeatureCmdletsBase.cs" />
     <Compile Include="ProviderFeatures\GetAzureProviderFeatureCmdlet.cs" />
     <Compile Include="Models.ActiveDirectory\ActiveDirectoryBaseCmdlet.cs" />
@@ -198,6 +204,7 @@
     <Compile Include="RoleAssignments\GetAzureRoleAssignmentCommand.cs" />
     <Compile Include="RoleAssignments\NewAzureRoleAssignmentCommand.cs" />
     <Compile Include="RoleDefinitions\GetAzureRoleDefinitionCommand.cs" />
+    <Compile Include="RoleDefinitions\NewAzureRoleDefinitionCommand.cs" />
     <Compile Include="Templates\TestAzureResourceGroupTemplateCommand.cs" />
     <Compile Include="Templates\SaveAzureResourceGroupGalleryTemplateCommand.cs" />
     <Compile Include="Templates\GetAzureResourceGroupGalleryTemplateCommand.cs" />
@@ -213,11 +220,6 @@
     <Compile Include="Models.ResourceGroups\SetResourceMode.cs" />
     <Compile Include="Models.ResourceGroups\TemplateFile.cs" />
     <Compile Include="Models.ResourceGroups\TemplateFileParameterV1.cs" />
-    <Compile Include="Properties\Resources.Designer.cs">
-      <AutoGen>True</AutoGen>
-      <DesignTime>True</DesignTime>
-      <DependentUpon>Resources.resx</DependentUpon>
-    </Compile>
     <Compile Include="Models.ResourceGroups\ResourceClient.ResourceManager.cs" />
     <Compile Include="Properties\AssemblyInfo.cs" />
     <Compile Include="ResourceGroupDeployments\StopAzureResourceGroupDeploymentCommand.cs" />
@@ -266,8 +268,8 @@
   <ItemGroup>
     <EmbeddedResource Include="Properties\Resources.resx">
       <Generator>ResXFileCodeGenerator</Generator>
-      <LastGenOutput>Resources.Designer.cs</LastGenOutput>
       <SubType>Designer</SubType>
+      <LastGenOutput>Resources.Designer.cs</LastGenOutput>
     </EmbeddedResource>
   </ItemGroup>
   <ItemGroup />
 
@@ -67,5 +67,9 @@ internal static class ParameterSet
         public const string ApplicationWithKeyCredential = "ApplicationWithKeyCredentialParameterSet";
 
         public const string Empty = "EmptyParameterSet";
+
+        public const string InputFile = "InputFileParameterSet";
+
+        public const string RoleDefinition = "RoleDefinitionParameterSet";
     }
 }
@@ -178,5 +178,54 @@ public PSRoleDefinition GetRoleRoleDefinition(string name)
 
             return role;
         }
+
+        public PSRoleDefinition CreateRoleDefinition(PSRoleDefinition roleDefinition)
+        {
+            AuthorizationClient.ValidateRoleDefinition(roleDefinition);
+            
+            Guid newRoleDefinitionId = Guid.NewGuid();
+            RoleDefinitionCreateOrUpdateParameters parameters = new RoleDefinitionCreateOrUpdateParameters()
+            {
+                RoleDefinition = new RoleDefinition()
+                {
+                    Name = newRoleDefinitionId,
+                    Properties = new RoleDefinitionProperties()
+                    {
+                        AssignableScopes = roleDefinition.AssignableScopes,
+                        Description = roleDefinition.Description,
+                        Permissions = new List<Permission>()
+                        {
+                            new Permission()
+                            {
+                                Actions = roleDefinition.Actions,
+                                NotActions = roleDefinition.NotActions
+                            }
+                        },
+                        RoleName = roleDefinition.Name,
+                        Type = "CustomRole"
+                    }
+                }
+            };
+
+            return AuthorizationManagementClient.RoleDefinitions.CreateOrUpdate(newRoleDefinitionId, parameters).RoleDefinition.ToPSRoleDefinition();
+        }
+
+        private static void ValidateRoleDefinition(PSRoleDefinition roleDefinition)
+        {
+            if (string.IsNullOrWhiteSpace(roleDefinition.Name))
+            {
+                throw new ArgumentException(ProjectResources.InvalidRoleDefinitionName);
+            }
+
+            if (roleDefinition.AssignableScopes == null || !roleDefinition.AssignableScopes.Any())
+            {
+                throw new ArgumentException(ProjectResources.InvalidAssignableScopes);
+            }
+
+            if (roleDefinition.Actions == null || !roleDefinition.Actions.Any())
+            {
+                throw new ArgumentException(ProjectResources.InvalidActions);
+            }
+        }
     }
 }
@@ -32,7 +32,10 @@ public static PSRoleDefinition ToPSRoleDefinition(this RoleDefinition role)
                     Name = role.Properties.RoleName,
                     Actions = new List<string>(role.Properties.Permissions.SelectMany(r => r.Actions)),
                     NotActions = new List<string>(role.Properties.Permissions.SelectMany(r => r.NotActions)),
-                    Id = role.Id
+                    Id = role.Id,
+                    AssignableScopes = role.Properties.AssignableScopes.ToList(),
+                    Description = role.Properties.Description,
+                    IsCustom = role.Properties.Type == "CustomRole" ? true : false
                 };
             }
Original file line number	Diff line number	Diff line change
`@@ -67,5 +67,9 @@ internal static class ParameterSet`
`67`	`67`	`public const string ApplicationWithKeyCredential = "ApplicationWithKeyCredentialParameterSet";`
`68`	`68`
`69`	`69`	`public const string Empty = "EmptyParameterSet";`
	`70`	`+`
	`71`	`+ public const string InputFile = "InputFileParameterSet";`
	`72`	`+`
	`73`	`+ public const string RoleDefinition = "RoleDefinitionParameterSet";`
`70`	`74`	`}`
`71`	`75`	`}`