General Azure issue when using CreateAnonymousLink or CreateOrganizationSharingLink in Sharepoint CSOM? RRS feed

  • Question

  • Hi!

    We have a product that has been working at customers for a long period of time.

    Part of this project just calls CreateOrganizationSharingLink and CreateAnonymousLink (it's a C# project that uses CSOM) and the Sharepoint connection uses ADAL.

    When calling CreateOrganizationSharingLink or CreateAnonymousLink (and only if using ADAL) at some customers we are getting:

    Microsoft.SharePoint.Client.ServerUnauthorizedAccessException: Access denied. You do not have permission to perform this action or access this resource.

    This is new, nothing has changed in our application nor in the server registered application. In the server side the permissions are:

    Microsoft Graph (user read)

    Sharepoint (MyFiles.Read and MyFiles.Write)

    It happens at some customers (several customers, but I did not find any pattern).

    If I use the standard credentials (username and pwd) instead of ADAL everything works fine.

    If it helps, we have seen that when using ADAL, then when calling Microsoft.SharePoint.Client.Web.GetObjectSharingSettings (the URL parameter is the same parameter that is passed to CreateAnonymousLink) we get:





    While if the same is done without using ADAL (that is, using the user name and password in SharePointOnlineCredentials) then we get:





    I think something happened in the Azure server since it was working for long time.

    Any idea?

    Friday, August 14, 2020 12:36 PM