microsoftgraph / msgraph-sample-rubyrailsapp

I believe a previous version of this sample project did not include "mailboxSettings" on this line:

msgraph-sample-rubyrailsapp/graph-sample/lib/microsoft_graph_auth.rb

Line 38 in a7ea3e4

    
           @raw_info ||= access_token.get('https://graph.microsoft.com/v1.0/me?$select=displayName,mail,mailboxSettings,userPrincipalName').parsed

Without it my application works out of the box, but with it I get access denied errors. Maybe it should be removed from the sample?

mailboxSettings is needed to get the user's timezone from their mailbox settings. If you're getting access denied, perhaps you haven't consented to MailboxSettings.Read?

I understand. My point is that is not mentioned in the README under "Register a web application", so it seems to me that either the README needs to change, or the mailboxSettings permission needs to be removed from the me-url in order for this sample project to work "out of the box".

None of the permissions are discussed in the README. There is no need to configure the permission on the app registration, the sample does dynamic consent by including the scopes in the authorization request.

The permission should be included in your oauth_environment_variables.rb file:

msgraph-sample-rubyrailsapp/graph-sample/config/oauth_environment_variables.rb.example

Line 3 in a7ea3e4

    
           ENV['AZURE_SCOPES'] = 'openid profile email offline_access user.read mailboxsettings.read calendars.readwrite'

What type of account are you logging into the app with - a work/school account, or a personal Microsoft account (Outlook.com, Hotmail, etc.)?

That's it! I'm missing the , scope: ENV.fetch('AZURE_SCOPES') part. Thank you!
I do think it might be better if the me-request is not done with permissions that are missing from your scope to avoid errors. The default scope is missing mailboxsettings.read, but at least this sample project works without problems.

Default "me" url gives errors