I'm developing a outlook addin, which access metadata of an email. But i have the problem, that the addin is not shown in the outlook web app, when i select an email with an digital signature. When I select the same email in the outlook rich client then iget the error, that the operation cannot be performed, because the permissions for the message are restricted.
I set up the permission in the addin manifest to "ReadWriteMailbox".
Can someone help me, how i can access an email with digital signature in the outlook addin?
Outlook Add-ins overview listed Mailbox items available to add-ins. The following is the quote from the document:
Outlook does not activate add-ins if the current message item, in a compose or read form, is one of the following:
Protected by Information Rights Management (IRM), in S/MIME format or encrypted in other ways for protection. A digitally signed message is an example since digital signing relies on one of these mechanisms.
To answer on your question ... you cannot access e-mail with digital signature from Outlook Office.js add-in.
EDIT:
Per Microsoft team comment, digitally sign messages are available to add-ons. I have verified with signed SMIME message, add-ons are active and functionality is fine. Waiting for documentation update.
Related
I have a scenario where a "compose mode" add-in for Outlook makes a subject line update to the draft email, then sends the email. The send action is currently carried out using either the EWS or REST APIs.
The issue occurs when a "override" policy tip is configured by the Exchange admin. The policy tip in question requires the user to choose override, in certain cases, to send an email (e.g external communication).
During message composition, if the appropriate trigger for the policy tip occurs, the policy tip appears and offers the user the option to override (as expected). When the add-in action is called, via ribbon button, the email appears to be sent. However, moments later an automated message from the Exchange indicates that the email has not been sent due to not adhering to the policy rule.
I believe this occurs because the send API, for both EWS and REST, does not call a local function in the Outlook client. Rather these API actually perform the send event on an email item syncedto and stored on the server. The Exchange server has no knowledge of the user's selection to override the policy tip at the client, so the issue occurs.
This happens in both Outlook on Desktop and Outlook Web Access.
I have searched through the EWS and REST APIs and cannot find any way to share/indicate the policy tip override when using these API.
I have searched the add-ins developer documentation and can find no mention of policy tips at all.
I have searched the Exchange admin policy tips documentation and can find no mention of add-ins compatibility or add-in related behavior.
So, can Microsoft Outlook Policy Tips be used in conjunction with add-ins REST/EWS send API?
I developed an Outlook Add-In that represents an html page with some JavaScript.
When I try to open the Add-in reading/writing an encrypted mail on our company's tenant, an error message appears.
"You cannot perform this action. Permission to this message is restricted"
The same Add-In works on my test tenant with encrypted mails.
I assume it's because of different Outlook versions (version 2002 on my business tenant vs version 2008 on my test tenant) or some special settings in the tenant.
This post Can't access email with digital signature in outlook addin? Microsoft explained that SMIME signed emails are supported but encrypted are not. But the post is almost 3 years old and as I said, it works with my test tenant.
For Outlook Win32, add-ins on encrypted mails are only supported on builds >= 13229.10000, see here for reference:https://learn.microsoft.com/en-us/office/dev/add-ins/reference/objectmodel/preview-requirement-set/outlook-requirement-set-preview#add-in-activation-on-items-protected-by-information-rights-management-irm
My Outlook Add-in works fine in compose mode, but it always not clickable in read mode, However, all my other colleges' outlook add-in work fine both in compose and read mode, does anyone know this issue?
From Outlook Add-ins overview ...
Outlook does not activate add-ins if the current message item, in a compose or read form, is one of the following:
Protected by Information Rights Management (IRM), in S/MIME format or encrypted in other ways for protection. A digitally signed message is an example since digital signing relies on one of these mechanisms.
A delivery report or notification that has the message class IPM.Report.*, including delivery and Non-Delivery Report (NDR) reports, and read, non-read, and delay notifications.
A draft (does not have a sender assigned to it), or in the Outlook Drafts folder.
A .msg or .eml file which is an attachment to another message.
A .msg or .eml file opened from the file system.
In a shared mailbox, in another user's mailbox, in an archive mailbox, or in a public folder.
Using a custom form.
You most likely have one of the situation listed above, for example use a custom form or messages are digitally signed, use of public folders, etc.
In Outlook 2016 (Outlook 2016 MSO 16.0.4266.1001 64 bit) , when S/Mime user accepts a calendar invitation sent by a non s-mime user, following error is displayed.
"Microsoft Outlook cannot sign or encrypt this message because there are no certificates which can be used to send from the email address . Either get a new digital ID to use with this account, or use the accounts button to send the message using an account that you have certificates for."
This error is not seen with Outlook 2013.
These 3 security properties are checked on opening the event (which are unchecked in Outlook 2013)
Encrypt message contents and attachments.
Add digital signature to outgoing messages.
Request S/Mime receipt for this message.
What mapi properties are used to check/uncheck these security properties?
I have register a custom URL in my system as described in the bellow link.
http://msdn.microsoft.com/en-us/library/aa767914(v=vs.85).aspx
when i send a mail to my email. i opened the mail in outlook email client and clicked on the link then it displayed warning message
Microsoft office had identified a potential security
concern.Hyperlinks can be harmful to your computer and data. To
protect your computer, click only those hyperlinks from trusted
sources.
Is there any way to disable the warning message?
If i digitally sign the email will that warning message comes?
If i sign the binary will that warning message comes?
That is just a security warning in Outlook itself, it has nothing to do with your custom URL.
How to enable or disable hyperlink warning messages in 2007 Office programs and in Office 2010 programs