Retirement of RBAC Application Impersonation in Exchange Online

Hi,

Can you please help me know if we will be affected by this change.

1) We are a cloud service product and host an enterprise application with various mailbox  permissions including full_access_as_app.

2) Our exchange online clients  have the enterprise app present in their Azure and they grant the permissions for the app to give access to their mailboxes.

3) Our app does mailbox operations. We also perform EWS operations on various mailboxes. this is using the OAuth cerdentials obtained  through App .

4)Our code uses below EWS Java APIs(ews-java-api-2.0.jar) . We use the following piece of code to call EWS API such as findItem, copyItem

ExchangeService service = new ExchangeService(ExchangeVersion.Exchange2010_SP2);
service.setImpersonatedUserId(new ImpersonatedUserId(ConnectingIdType.SmtpAddress, userId));

Does this API: setImpersonatedUserId() fall under the applicatioin impersonation which you are currently retiring?

5) I also ran the below command in one of the exchange online accounts and got the below output:

Get-ManagementRoleAssignment -Role ApplicationImpersonation -GetEffectiveUsers

Name Role RoleAssigneeName RoleAssigneeType AssignmentMethod EffectiveUserName
---- ---- ---------------- ---------------- ---------------- -----------------
ApplicationImpersonation-Orga… ApplicationImpersonation Organization Management RoleGroup Direct All Group Members
ApplicationImpersonation-Orga… ApplicationImpersonation Organization Management RoleGroup RoleGroup xxxxxxxxxxxxxx
ApplicationImpersonation-RIM-… ApplicationImpersonation RIM-MailboxAdmins34343434343434… RoleGroup Direct All Group Members
ApplicationImpersonation-Impe… ApplicationImpersonation Impersonation RoleGroup Direct All Group Members
ApplicationImpersonation-Impe… ApplicationImpersonation Impersonation RoleGroup RoleGroup user1

How can I identify if this tenant is affected by this change from the above output?

Request your help on this one.