My application is currently in legacy mode. (Active until June 2016) If I apply for Instagram API Approval, and it's denied, will my application still function until June 2016, or will it be disabled?
It will function, but it will be in sandbox mode. Only people listed as admins for the app will be able to use it.
Related
We have a multitenant application that heavily relies on the Graph API. We access both mailboxes through Messages API and Sharepoint sites through Files API. Most clients use a very permissive access model to get more features available in our application. A few has strict demands on access and for those we are only allowed to access a specific sharepoint site. For this site we've registered another AppId to use Sites.Select permission where the clients Global Admin allow access to our application using PowerShell
This has worked fine until this morning, where all requests to the Files API are returning "403 Forbidden" and the C# SDK is returning "Access denied".
I've requested the clients to execute PowerShell command to verify if we still has access to their Sharepoint site:
Get-PnPAzureADAppSitePermission -AppId 'xxxxxxxxxxxx'
but they all get the same error message:
Get-PnPAzureADAppSitePermission: Operation Failed
The Pnp.PowerShell cmdlet used is 1.10
Anyone know why this happened to MS Graph or if the PS error is related to the Graph error?
Did Microsoft change something?
This has been acknowledged by MS as an unexpected service issue and can be tracked as SP381039
Title: Users may see 'Access Denied' errors when using Graph APIs for SharePoint Online
User Impact: Users may see 'Access Denied' errors when using Graph APIs for SharePoint Online.
Current status: We've identified that components of the authentication feature are unexpectedly not present in some users' environments thus resulting in the Graph API access requests to fail. We're redeploying the affected feature within impacted environments to remediate impact. In parallel, we're investigating recent feature changes to identity why the components are unexpectedly not present.
Next update by: Tuesday, May 17, 2022, at 5:00 PM UTC
Latest update from MS, received 17 May 16:45:
Current status: We've confirmed that a recent feature deployment misconfiguration has prevented components associated with the authentication feature from being available in a group of customer environments, which is producing 'Access Denied' errors when using Graph APIs for SharePoint Online. We've confirmed that our redeployment of the authentication feature to some impacted environments has resolved the impact. We're now redeploying the feature to all affected remaining environments, which is expected to remediate impact.
Scope of impact: This issue may potentially affect any of your users attempting to utilize Graph APIs for SharePoint Online.
Root cause: A recent feature deployment misconfiguration has prevented an authentication feature from being available in a group of customer environments, resulting in impact.
Next update by: Tuesday, May 17, 2022, at 9:30 PM UTC
Exactly the same issue Tuesday AM New Zealand time. Using C# code / Postman and PowerShell directly.
I've logged a ticket with Microsoft as my guess (no evenidence) is it is a code regression on PNP. I'll update here if I hear anything.
We have 2 apps (test and prod), both began failing Tuesday morning with 403 / access denied messages.
When I tried to check permissions and reset permissions using
get-PnPAzureADAppSitePermission
or
grant-PnPAzureADAppSitePermission
Powershell says : "Operation not supported"
Full text
Grant-PnPAzureADAppSitePermission : {"error":{"code":"notSupported","message":"Operation not supported","innerError":{"
date":"2022-05-16T23:39:16","request-id":"xxxx-azureappid-yyyy","client-request-id":"xxxx-azureappid-yyyy"}}}
At line:8 char:1
Grant-PnPAzureADAppSitePermission -AppId $appId -DisplayName 'TenantName...
+ CategoryInfo : NotSpecified: (:) [Grant-PnPAzureADAppSitePermission], HttpRequestException
+ FullyQualifiedErrorId : System.Net.Http.HttpRequestException,PnP.PowerShell.Commands.Apps.GrantPnPAzureADAppSite
Permission
This morning when I tested this, everything is back to the way it was on Friday New Zealand time.
I've heard from Microsoft via the ticket I logged, that the "PG team had reinstated an update from the backend". It didn't work last night, but this morning we're back up and running.
I hope your tenancies come back too. If not log a Microsoft ticket if you can. I do this via the https://admin.microsoft.com/Adminportal/Home?source=applauncher#/support/requests page using the "New service request" menu item. We have this feature due to our contract with Microsoft.
Is it possible to update the AuthenicationPhoneNumber using the B2C graph api? If not is there any programmatic way of updating this field?
Unfortunately, it is not supported to Add/Update Authentication Phone Number via graph api or do that programmatically.
See this similar issue: Azure B2C - Add/Update Authentication Contact Info.
Also, see the reply of AAD Team in this feedback:
Dec 8, 2017 We are building an API that will allow you to get and set credential information (i.e. Authentication Phone, Authentication Email, etc.) for both multi-factor authentication (MFA) and self-service password reset (SSPR). We will keep you updated when this becomes available.
March 1, 2019 Hi folks! The work for this feature is still in progress. We will update you when it is available. Thank you for your patience!
According to the reply, the API to access the Authentication Phone may come soon, just wait for it.
I have an app on Instagram which was created before Nov 17 2015.
After Instagram Platform and documentation update, I re-approved all the permissions I needed through the review process.
It say in the documentation that I could switch to Live mode by clicking a button in my app configuration.
I don't see any button there.
Is there a chance that apps which was created before the changes will see the button only in after the grace period of June 2016?
Can I assume my app is Live?
There is no button. Switch should be automatic
I was wondering whether instagram gives access to account settings where an app could update a users website address?
No, you can't.
Sadly, Instagram API is getting more and more restrictive. Actually, they are going to review every APP ever created in order to approve/disapprove the use of several components:
Instagram Platform and documentation update. Apps created on or after Nov 17, 2015 will start in Sandbox Mode and function on newly updated API rate-limits and behaviors. Prior to going Live, and being able to be used by people other than the developers of the app, these apps will have to go through a new review process. Please read the API documentation or the Change Log for more details.
Any app created before Nov 17, 2015 will continue to function until
June 2016. After June 2016, the app will automatically be moved to
Sandbox Mode if it wasn't approved through the review process. The
previous version of our documentation is stil available here.
If you want to check what is available to do with their API, just visit this enpoints link.
For my company, I have an Office 365 E3 subscription (not trial).
My office 365 account is also global admin.
Now I would like to use Office 365 API. According to the getting started tutorial I was told to associate Azure with Office 365.
So I when go to Office 365 Admin panel then click to Azure AD. I end up with Azure Sign up screen however the screen is empty. What am I missing?
It may not be a development question, but as there is no O365 forum, an answer can still be provided, which this site is all about.
You need to go on this website https://manage.windowsazure.com/ and register to access your Azure AD. It takes few minutes to proceed.
there's a new getting-started flow that might make this easier in the future, in case others hit this as well on http://dev.office.com/getting-started/office365apis.
The problem appears to be my browser is blocking third party cookies . When I turned that option, it worked.