{.NET » Web} Microsoft Graph: Read user profile and group memberships @CODEKICKER

Microsoft Graph: Read user profile and group memberships

In our application we have a background service, that “syncs” user data and group membership information to our database from the Microsoft Graph.

The permission model:

Programming against the Microsoft Graph is quite easy. There are many SDKS available, but understanding the permission model is hard.

‘Directory.Read.All’ and ‘User.Read.All’:

Initially we only synced the “basic” user data to our database, but then some customers wanted to reuse some other data already stored in the graph. Our app required the ‘Directory.Read.All’ permission, because we thought that this would be the “highest” permission - this is wrong!

If you need “directory” information, e.g. memberships, the Directory.Read.All or Group.Read.All is a good starting point. But if you want to load specific user data, you might need to have the User.Read.All permission as well.

Hope this helps!

Weitere News:

1 Meinung

Learn to separate yourself from things that happen to you. Instead of assuming bad things only happen to bad people, realize that bad things do happen every day and it is up to you how you react. https://tutuappx.com/ Vidmate

bostapusto

Schreibe einen Kommentar:

Themen:

Entweder einloggen...			...oder ohne Wartezeit registrieren
Benutzername Passwort Login mit OpenID			Benutzername Passwort Passwort wiederholen E-Mail

Code-Inside Blog

Blog über die moderne Webentwicklung mit ASP.NET MVC, Javascript & HTML5 auf der Microsoft Plattform.

» code-inside.de

Über den Autor

Robert Mühsig ist Webentwickler bei der T-Systems Multimedia Solutions GmbH in Dresden und wurde von Microsoft mit dem ASP.NET MVP Award ausgezeichnet.

Themen des Autors

» Mehr von Code-Inside Blog

».NET Software-Entwickler (m/w)

TOP TECHNOLOGIES CONSULTING GmbH

Kontakt, Impressum, Lizenz, AGB