Hi,
We are adding shared mailbox support for our product using Office JS add-in. Since this is a request from multiple customers, we are evaluating the current shared mailbox model using office JS add-ins.
We ran into permission issue while retrieving list of categories from the mailbox. https://graph.microsoft.com/v1.0/users/email address removed for privacy reasons/outlook/masterCategories API doesn't return any categories. It throws error access denied (403 error code) when user try to get list of categories from the shared mailbox. It looks like ".shared" permission is missing for "mailboxSettings" in the delegated user scenario.
The above API works fine with application level permission and not with delegated user scenario. In organizations, application administrators wont be agree to give application level permission to the add-in. That case, this API can't be used in a normal user scenario. This API should also work like other APIs in delegated user scenario and require API permission like “MailboxSettings.Read.Shared / MailboxSettings.ReadWrite.Shared” instead of application level permission.
No CommentsBe the first to comment
