FAQ - BeZoned Application Permissions
General understanding
Microsoft 365 applications use a permission-based security model. Before an application can access information or perform actions on behalf of a user or an organization, the required permissions must be granted by the user or a Microsoft 365 administrator.
BeZoned integrates deeply with Microsoft Teams and Microsoft 365 to create a unified virtual office experience. Rather than requiring users to switch between Teams, Outlook, Planner, Whiteboard, Files, and other Microsoft applications, BeZoned brings these capabilities together in a single interface.
To provide this experience, BeZoned uses the Microsoft Graph APIβthe standard Microsoft interface for accessing Microsoft 365 services. Every permission requested by BeZoned corresponds to a documented Microsoft Graph permission and is required to enable one or more specific features within the application.
The sections below explain each permission requested by BeZoned, why it is needed, and which feature depends on it. Following Microsoft's principle of least privilege, BeZoned requests only the permissions necessary to deliver its functionality.
FAQ
Permissions needed
Microsoft recommends following the principle of least privilege, meaning that applications should request only the permissions that are necessary to provide their functionality.
BeZoned follows this principle. Rather than requesting a small number of broad permissions that grant extensive access, BeZoned requests a larger number of more specific permissions. This allows us to request only the access required for individual features, helping to minimize the overall level of access granted.
Below is a list of the Microsoft permissions that BeZoned requests to operate within Microsoft Teams and Microsoft 365, together with an explanation of why each permission is needed.