Comments (8)
osysltd
commented on August 28, 2024
Hi @sinag
Most probably you're using v2 app, switch to v1 app id and secret, grant necessary permissions once.
from office365apieditor.
sinag
commented on August 28, 2024
what do you you mean switching to v1?
What I did was File->New Session->Use my application button
from office365apieditor.
osysltd
commented on August 28, 2024
sorry I was thinking that you're using Api Editor, not Mailbox Viewer.
In this scenario I guess you need to create an app in AAD, grant exchange permissions for this app and give admin consent
from office365apieditor.
sinag
commented on August 28, 2024
Delegated permissions or application permissions?
Are these ok?
https://graph.microsoft.com/Calendars.Read
https://graph.microsoft.com/Calendars.ReadWrite
https://graph.microsoft.com/Contacts.Read
https://graph.microsoft.com/Contacts.ReadWrite
https://graph.microsoft.com/Mail.Read
https://graph.microsoft.com/Mail.ReadWrite
https://graph.microsoft.com/Tasks.Read
https://graph.microsoft.com/Tasks.ReadWrite
https://graph.microsoft.com/Mail.Send
https://graph.microsoft.com/User.ReadBasic.All
from office365apieditor.
sinag
commented on August 28, 2024
To be more specific about the problem;
I have an account "[email protected]" which is from an azure active directory on a tenant and is using exchange online.
With this account, I can login with File->New Session->Sign-in
But if I try to use my own application id, which I have created with another trial personel account, than it requires admin approval from "yyy.com"
from office365apieditor.
rykoma
commented on August 28, 2024
@sinag
It seems that sign-in using your app (your application ID) is detected as a risky end-user consent request.
https://docs.microsoft.com/en-us/azure/active-directory/manage-apps/configure-user-consent?tabs=azure-portal#risk-based-step-up-consent
I could not repro the issue, and we have no way to know why your application ID is detected. Unfortunately, we can do nothing from the application side.
from office365apieditor.
sinag
commented on August 28, 2024
great info thanks
my application's domain is not a verified domain, my guess is this could be an issue
what about disabling risk-based step-up consent?
according to my scenario this should be done on "yyy.com" side i guess
from office365apieditor.
rykoma
commented on August 28, 2024
Yes. If you want to disable risk-based step-up consent, you need to do it in the tenant which the end-user belongs to.
Though I'm not an Azure AD expert, I think disabling risk-based step-up consent is not recommended for security reasons.
from office365apieditor.
Related Issues (14)
- Office365 management activity API service seems mostly dysfunctional past 1 week now HOT 5
- GUI Display bugs HOT 1
- Internal error when use exchange api to create o365 group HOT 1
- findReplaceDialog HOT 2
- Remote Sign-out HOT 3
- This repo is missing important files
- Not able to Open .msg and .eml files from New Outlook version(1.2023.515.100 (Production)). HOT 1
- Application is not supported for this API version. HOT 9
- Office 365 reports HOT 2
- prereqs just dont work HOT 3
- Error that manifest signing certificate in the cert store not found HOT 2
- FIlter broken in Excel Should say "Blank" instead of select all HOT 1
- SmartScreen block MSI installation HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from office365apieditor.