Recent Discussions
OneDrive Sharing and Graph "/invite" Endpoint Now Creating Guest Users?
I have an application that integrates with OneDrive via the Graph API, and leverages OneDrive sharing features. Recently I got a new Microsoft E5 dev license, and I've noticed that the sharing workflows and API results are different on this license than on my previous license, and the enterprise licenses of my clients that use the application. All instances are using v1 of the API. On my new license, when I share a OneDrive file/folder using the "/invite" endpoint of the API, it adds the external email I'm sharing with as a Guest on my M365 tenant. It did not do this before. The initial result of the API call to the /invite endpoint is the same as it was previously: [{ 'roles': ['read'], 'grantedToIdentities': [{ 'user': { 'email': '<external email>' } }], 'invitation': { 'signInRequired': True }, 'link': { 'type': 'view', 'webUrl': '<link URL>' } }] However, if I share another file/folder with the same external email, the response is different: [{ 'id': '<permission ID>', 'roles': ['read'], 'grantedTo': { 'user': { 'email': '<external email>', 'displayName': '<external email (minus domain)>' } } }] As you can see, the response now contains "grantedTo" instead of "grantedToIdentity". The response also does not contain a link URL, and I need to perform an extra API call on the permissions of the shared item in order to find the link. This response format matches the responses I expect when I share with internal emails on my tenant, and I can see in the admin centre that the external email has been added as a Guest user. With my old license, and my clients' licenses, external recipients were not added as guests on the M365 tenant, and sharing multiple drive items with the same external user always returned the same format of API response (always including the link URL). Shared Item Access Workflow With my new license, when I use the link to access the shared item with my external email, I am now prompted to provide permissions to my account for the OneDrive tenant (email and tenant domain redacted here for privacy): I am also prompted to set up MFA: With the previous workflow, I just had to enter my email address, then verify the email with a code. I was not prompted to grant permissions or set up MFA. This seems needlessly complicated for sharing drive items with external users, particularly those that are not tech-savvy. Why is the sharing workflow so different on my new dev license? Can I adjust the settings on my tenant to prevent this, or is this how sharing will work going forward? If so, when can I expect this to change for my clients' license? I see no mention of this in the https://learn.microsoft.com/en-us/graph/api/driveitem-invite?view=graph-rest-1.0&tabs=http, and I can't find any mention of the change online. I've reviewed the sharing settings in the Sharepoint Admin Centre. However, these are identical to the settings on my old license. I've tried messing with the External Collaboration settings in Entra to prevent guest users from being created, but this prevents me from sharing with external users altogether. I can't find any other settings that may control this behaviour. Please help!
Trying to create Graph connector, can't see menu options
I am trying to follow this microsoft tutuorial to create a graph connector: https://github.com/microsoftgraph/msgraph-sample-github-connector-python I am a global admin in my own personal tenant (it is a paid subscription). The code in this repo creates a connection in azure, and I have no problem following the first part of it (the code successfully creates the connection, and I am able to create the schema for the connection. The problem I have is that I can't see the "Data Options" tab in my tenant. Here is what the instructor sees: here is what I see in my tenant: Once again, I was able to create the schema for the connector via code, so I know it is there:
Identifier(s) in API calls to load mail folders and mails from folders
Hi all. I am trying to load user folders with https://learn.microsoft.com/en-us/graph/api/user-list-mailfolders?view=graph-rest-1.0&tabs=http , and later emails for given folder with https://learn.microsoft.com/en-us/graph/api/user-list-messages?view=graph-rest-1.0&tabs=http . In both calls common part is: GET /users/{id | userPrincipalName}... On Azure portal userPrincipalName parameter is editable: Is it a must to use Object ID (below) for accessing user and so forth ? For my use case it would be of great benefit to use User principal name , but what happens if someone changes it ? Thanks in advance, Dragan
No output for Invoke-MgGraphRequest for user presence
Hi All! I am experiencing some odd behaviour with a Invoke-MgGraphRequest and an Azure Runbook and could do with a nudge in the right direction. I am trying to report on my Teams presence using GraphAPI. When I use the following code, it works, presence returned: Invoke-MgGraphRequest -method GET -Uri "https://graph.microsoft.com/v1.0/communications/presences/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx" But, When I try and assign this output to a variable (so it can be passed to a SharePoint list) I don't get any output: $returned=Invoke-MgGraphRequest -method GET -Uri "https://graph.microsoft.com/v1.0/communications/presences/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx" $returned.value | ForEach-Object {$_.availability} Am I doing something wrong, or is this expected behaviour?
Object reference not set when using New-MgInvitation with Runbook and Managed Identities
I am trying to send an AzureAD guest invitation using an Azure Runbook and GraphAPI. I have created a system managed identity for this (can successfully run Connect-MgGraph -identity in the runbook). When I try and execute: New-MgInvitation -InvitedUserDisplayName "John Doe" -InvitedUserEmailAddress email address removed for privacy reasons -InviteRedirectUrl "https://myapplications.microsoft.com" -SendInvitationMessage:$true I get the following error: New-MgInvitation : Object reference not set to an instance of an object. At line:4 char:1 + New-MgInvitation -InvitedUserDisplayName "John Doe" -InvitedUser ... + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ + CategoryInfo : NotSpecified: (:) [New-MgInvitation_CreateExpanded], NullReferenceException + FullyQualifiedErrorId : Microsoft.Graph.PowerShell.Cmdlets.NewMgInvitation_CreateExpanded I have a managed identity for the runbook, with the following permissions: Microsoft.Graph.Identity.SignIns and Microsoft.Graph.Authentication modules are both loaded in my automation account. If I run the code in a local PowerShell session it works. Has anyone had any experience with this? Thanks in advance, Matt
Field Skipped When Multiple SharePoint Tasks Requested
I have encountered some unexpected behavior when using Microsoft Graph to request data from SharePoint task lists. I discovered this using MS Graph in C# and I have reproduced it in https://developer.microsoft.com/en-us/graph/graph-explorer Here is an example of a query for one specific task (Id: 61) requesting fields: 'Title', 'Milestone', and 'Area' ('Milestone' and 'Area' are custom managed metadata fields). In this case, all columns are returned properly. The next query is identical except, instead of requesting only one task, I am requesting all of the tasks in the list. This time the 'Milestone' field is not included in the result for item 61. This happens with every task in the list. If I request an individual task by id I can retrieve all fields correctly but if I request multiple tasks I cannot retrieve the 'Milestone' field. What could be causing this behavior? Thank you!
Update Taskdescription via VBA - Error -2147483638 - the data required for this operation are not ye
Hello! I develop an integration of planner tasks into an internal access database and there I will create a task with a important description. The creation works fine, but when I update the taskdetails and there the description I get the error -2147483638 - the data required for this operation are not yet. If I go stepwise through the code all works fine, but not in processing my whole code. I think that the task descriptions is not accessible that early so I have to put my code to sleep, just I can't find anything about "How long do I have to put my code to sleep?" or exists any other reason for that? Update: First I have set Sleep 10000 for 10 seconds pause of the code and second here a screenshot in german with the error message, because the 10 seconds don't helps. My VBA-Code to Update is the following. This function is a part of my class "Teams" Public Function UpdateTaskDescription(pstr_ID As String, pstr_Description As String) As Boolean On Error GoTo Err_UpdateTaskDescription Dim GraphAPI As New MSXML2.XMLHTTP60 Dim str_URL As String Dim str_Body As String Dim str_ETag As String Dim JSON As Object str_URL = "https://graph.microsoft.com/v1.0/planner/tasks/" & pstr_ID & "/details" wiederholung: str_ETag = GetETagByDetails(pstr_ID) With GraphAPI .Open "PATCH", str_URL, True .setRequestHeader "Content-Type", "application/json" .setRequestHeader "Authorization", GetAuthentication '.setRequestHeader "Prefer", "return=representation" Kann mit angegeben werden, wenn das gesamte Objekt zurückkommen soll. So kommt nur 204 - No content => success .setRequestHeader "If-Match", str_ETag str_Body = "{" & vbNewLine str_Body = str_Body & Chr(34) & "description" & Chr(34) & " : " & Chr(34) & pstr_Description & Chr(34) & vbNewLine str_Body = str_Body & "}" .Send str_Body End With UpdateTaskDescription = GraphAPI.Status Err_UpdateTaskDescription: If Err.Number = -2147483638 Then GraphAPI.abort GoTo wiederholung Else MsgBox Err.Number & " > " & Err.Description End If End Function Thanks in advance. Axel
Recent Blogs
- ServiceNow tickets Graph connector is now generally available, adding to the suite of Microsoft Graph connectors for ServiceNowJan 17, 2024
- Get complete control of your Graph connectors rollout strategy with a measured exposure of connections to select users and groupsDec 01, 2023
