我们正在开发一个使用MSOutlook-SDK-iOS版本2.0.1的iOS应用程序来启用用户 从iOS应用程序发送和接收工作(Outlook)电子邮件。我们在Microsoft Azure ActiveDirectory中注册了iOS应用程序并进行了指定 Microsoft Graph(5个委派权限)和Office 365 Exchange Online(4个委派权限)权限。以下是Azure AD中的应用清单:
{
"appId": "3b008367-4e7d-43e5-9a76-46a908e8fa65",
"appRoles": [],
"availableToOtherTenants": true,
"displayName": "Chatbaka",
"errorUrl": null,
"groupMembershipClaims": null,
"homepage": null,
"identifierUris": [],
"keyCredentials": [],
"knownClientApplications": [],
"logoutUrl": null,
"oauth2AllowImplicitFlow": false,
"oauth2AllowUrlPathMatching": false,
"oauth2Permissions": [],
"oauth2RequirePostResponse": false,
"passwordCredentials": [],
"publicClient": true,
"replyUrls": [
"url based on app name and iOS bundle id"
],
"requiredResourceAccess": [
{
"resourceAppId": "00000003-0000-0000-c000-000000000000",
"resourceAccess": [
{
"id": "14dad69e-099b-42c9-810b-d002981feec1",
"type": "Scope"
},
{
"id": "64a6cdd6-aab1-4aaf-94b8-3cc8405e90d0",
"type": "Scope"
},
{
"id": "e383f46e-2787-4529-855e-0e479a3ffac0",
"type": "Scope"
},
{
"id": "024d486e-b451-40bb-833d-3e66d98c5c73",
"type": "Scope"
},
{
"id": "570282fd-fa5c-430d-a7fd-fc8dc98a9dca",
"type": "Scope"
}
]
},
{
"resourceAppId": "00000002-0000-0ff1-ce00-000000000000",
"resourceAccess": [
{
"id": "2e83d72d-8895-4b66-9eea-abb43449ab8b",
"type": "Scope"
},
{
"id": "5eb43c10-865a-4259-960a-83946678f8dd",
"type": "Scope"
},
{
"id": "75767999-c7a8-481e-a6b4-19458e0b30a5",
"type": "Scope"
},
{
"id": "185758ba-798d-4b72-9e54-429a413a2510",
"type": "Scope"
}
]
}
],
"samlMetadataUrl": null,
"extensionProperties": [],
"objectType": "Application",
"objectId": "b49a326e-1053-4a34-92e3-453b7adecf1a",
"deletionTimestamp": null,
"createdOnBehalfOf": null,
"createdObjects": [],
"manager": null,
"directReports": [],
"members": [],
"memberOf": [],
"owners": [],
"ownedObjects": []
}
MSOutlook-SDK-iOS版本2.0.1依赖于orc库版本0.20.3和ADALiOS库版本1.2.4。 iOS应用程序使用以下身份验证终结点和资源:
static private let kRedirectURL = "based on app name and iOS bundle id"
// The Azure OAuth2 authority
static private let kAuthorityURL = "https://login.microsoftonline.com/common"
// The resource identifier for the Outlook APIs
static private let kOutlookResourceURL = "https://outlook.office365.com"
// The client ID obtained by registering the app
static private let kClientId = "obtained from manually registering in Azure AD"
// API version url
static let kAPIUrl = "https://outlook.office.com/api/v2.0"
我们注意到有些用户成功地能够在iOS应用中收到他们的工作电子邮件,而其他用户遇到授权错误。
我们有以下问题:
对于我们的某个用户,我们从iOS ADAL库中收到以下错误:错误:授权错误。附加信息:操作已取消.. ErrorCode:3072。我们添加了逻辑以将ADAL日志记录级别更改为详细。 这是日志片段:
您是否可以提供有关用户收到此错误的原因以及解决方法的更多信息?