{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 时光不老,我们不散 的问题《Office (JS) Outlook addin and Exchange token authe》','https://www.manongdao.com/q-599703.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
My Office add-in (which runs in Outlook) uses the OfficeJS library to get a callback token for authentication against Exchange:
Office.context.mailbox.getCallbackTokenAsync(...);
The token is sent to our server together with some message/attachment IDs and the server will attempt to connect to Exchange to retrieve said mail attachment. I use the EWS java API library for this. I am getting an Unauthorized 401 HTTP error back from Exchange when trying to bind to an EmailMessage:
ExchangeService exchangeService = new ExchangeService();
exchangeService.getHttpHeaders().put("Authorization", "Bearer " + callbackToken);
exchangeService.setUrl(new URI(ewsUrl));
EmailMessage mailMessage = EmailMessage.bind(exchangeService, new ItemId(mailMessageId));
When tested against Office 365 it all works flawlessly. However, when running this at a client I get the HTTP 401 response. The client runs Exchange 2013 on-premise. Does Exchange 2013 on-premise even support token authentication? Is there anything that needs to be done to enable this on that version of Exchange?