Recent versions of the Outlook Web Add-in utilize the Graph API in order to communicate with mailbox items. When deploying or installing the Outlook Web Add-in for Riva Insight, you will be asked to grant mailbox permissions, allowing the Web Add-in to use Graph to access mail items for use within Riva Insight.
Permission | Description | Use within Riva Insight |
openid | Allows users to sign in to the app with their work or school accounts and allows the app to see basic user profile information. | Required to allow Riva Insight to authenticate to the Graph API and identify the user logged into the Outlook mailbox. |
User.Read | Allows users to sign-in to the app, and allows the app to read the profile of signed-in users. It also allows the app to read basic company information of signed-in users. | |
offline_access | Allows the app to see and update the data you gave it access to, even when users are not currently using the app. This does not give the app any additional permissions. | |
profile | Allows the app to see your users' basic profile (e.g., name, picture, user name, email address) | |
Allows the app to read your users' primary email address | ||
Calendars.ReadWrite.Shared*1 | Allows the app to create, read, update and delete events in all calendars in the organization user has permissions to access. This includes delegate and shared calendars. |
Read access allow Riva Insight to obtain information from a meeting in order obtain the list of meeting attendees and get the current track and sync status. Also used to show the schedule within My Day. Write access allow Riva Insight to stamp the meeting with Track in CRM information so that Riva Sync can sync the calendar to CRM. |
Mail.ReadWrite.Shared1 | Allows the app to create, read, update and delete events in all calendars in the organization user has permissions to access. This includes delegate and shared calendars. |
Read access allow Riva Insight to obtain information from the email in order obtain the list of email recipient and get the current track and sync status. Write access allow Riva Insight to stamp the email with Track in CRM information so that Riva Sync can sync the calendar to CRM. |
Mail.Send.Shared1 | Allows the app to send mail as the signed-in user, including sending on-behalf of others. | Used by Track in CRM for tracking and sending an email. |
1. The "Shared" permission allows access to mail items in a delegate or shared mailbox. The permission does not grant any additional permission to those mailboxes that the user does not already have.