stackoom
  简体   繁体   中英

Microsoft Graph Teams Guest Invitation

 原文  2019-08-30 13:27:55       azure-active-directory/ microsoft-graph-api

Question

I'm trying to develop an app in Teams to help team owners invite external guests to their teams. The app uses graph api /invitations call in the backend to get the job done. We are restricting users who can invite guests by assigning them the User.Invite.All api permission in Azure portal under AD App registration blade. What we found was that even users who have not been assigned this permission are able to invite guests. Am I doing anything wrong?

1 answers

solution1
 0  2019-08-30 17:18:22

If you gave the delegated permission User.Invite.All to the app, and the user is able to invite a user, then the user already had rights to invite users. They would be able to go to eg portal.azure.com, and invite users from there as well in that case.

If you gave the app permission User.Invite.All to the app, then any user using the app can invite users, since the app itself has the permission and the user info is not even present in the access token.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Add guest invitation via Microsoft Graph and App Credentials give Method Not Found Customized html message in microsoft azure guest invitation Can I create Microsoft Teams online meetings on behalf of guest users using Graph API? List of guest users via microsoft graph Respond to a bot call in Microsoft Teams with Graph API Check Redeem status of Directory Invitation through Microsoft Graph Get information about invitation of B2B user in Microsoft Graph How to sent invitation email using Microsoft Graph API How to find azure AD guest user invitation has redeemed or not using Graph API Guest User Invitation Not Sending Email
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM