I'm currently accessing Exchange API through OAuth access token.
However I had to select 'fullaccessas_app by using Exchange Web Services with full access to all mailboxes'
Is it possible to restrict the scope of mailboxes in this scenario?
Looking to the Azure configuration for an application, if your application runs as a service (or a daemon) without a user, it seems to be the only option. However, if your application should grant access to a user you can switch to 'Delegateds permission' tab, toggle 'EWS' and check 'EWS.AccessAsUser.All' option. Then the user should access mailboxes as configured on Exchange server.
Update: We published a blog post that describes how to login with OAuth 2.0 to Office365 with Rebex Secure Mail, and another one that describes how to register application for with appropriate permissions in Azure.
Welcome to Q&A forum for C# and VB.NET developers working with following .NET components:
If you need immediate assistance, please contact us directly.