Usar funções de personificação
Para acessar os dados da caixa de correio, use a ação de API AssumeImpersonationRole do Amazon WorkMail. Para obter mais detalhes sobre as APIs do Amazon WorkMail, consulte Referência de API.
AssumeImpersonationRole retorna um Token. Esse Token deve ser passado em 15 minutos para o protocolo EWS por meio do cabeçalho HTTP Authorization.
Os exemplos a seguir demonstram como usar funções de personificação com o protocolo EWS. As constantes usadas nos exemplos especificam os seguintes detalhes exclusivos de sua organização e conta:
WORKMAIL_ORGANIZATION_IDIMPERSONATION_ROLE_IDWORKMAIL_EWS_URLEMAIL_ADDRESS
exemplo Java: API Java do EWS
import software.amazon.awssdk.services.workmail.WorkMailClient;
import software.amazon.awssdk.services.workmail.model.AssumeImpersonationRoleRequest;
import software.amazon.awssdk.services.workmail.model.AssumeImpersonationRoleResponse;
import microsoft.exchange.webservices.data.core.ExchangeService;
import microsoft.exchange.webservices.data.core.enumeration.misc.ExchangeVersion;
import microsoft.exchange.webservices.data.misc.ImpersonatedUserId;
import microsoft.exchange.webservices.data.core.enumeration.misc.ConnectingIdType;
// ...
AssumeImpersonationRoleResponse response = workMailClient.assumeImpersonationRole(
AssumeImpersonationRoleRequest.builder()
.organizationId(WORKMAIL_ORGANIZATION_ID)
.impersonationRoleId(IMPERSONATION_ROLE_ID)
.build());
ExchangeService exchangeService = new ExchangeService(ExchangeVersion.Exchange2010_SP2);
exchangeService.setUrl(URI.create(WORKMAIL_EWS_URL));
exchangeService.getHttpHeaders().put("Authorization", "Bearer " + response.token());
exchangeService.setImpersonatedUserId(new ImpersonatedUserId(ConnectingIdType.SmtpAddress, EMAIL_ADDRESS));exemplo .Net: API gerenciada do EWS
using Amazon.WorkMail; using Amazon.WorkMail.Model; using Microsoft.Exchange.WebServices.Data; // ... AssumeImpersonationRoleRequest request = new AssumeImpersonationRoleRequest(); request.OrganizationId =WORKMAIL_ORGANIZATION_ID; request.ImpersonationRoleId =IMPERSONATION_ROLE_ID; AssumeImpersonationRoleResponse response = workMailClient.AssumeImpersonationRole(request); ExchangeService service = new ExchangeService(ExchangeVersion.Exchange2010_SP2); service.Url = new Uri(WORKMAIL_EWS_URL); service.HttpHeaders.Add("Authorization", "Bearer " + response.Token); service.ImpersonatedUserId = new ImpersonatedUserId(ConnectingIdType.SmtpAddress,EMAIL_ADDRESS);
exemplo Python: Exchangelib
import boto3
from requests.auth import AuthBase
from exchangelib.transport import AUTH_TYPE_MAP
from exchangelib import Configuration, Account, Version, IMPERSONATION
from exchangelib.version import EXCHANGE_2010_SP2
work_mail_client = boto3.client("workmail")
class ImpersonationRoleAuth(AuthBase):
def __init__(self):
self.token = work_mail_client.assume_impersonation_role(
OrganizationId=WORKMAIL_ORGANIZATION_ID,
ImpersonationRoleId=IMPERSONATION_ROLE_ID
)["Token"]
def __call__(self, r):
r.headers["Authorization"] = "Bearer " + self.token
return r
AUTH_TYPE_MAP["ImpersonationRoleAuth"] = ImpersonationRoleAuth
ews_config = Configuration(
service_endpoint=WORKMAIL_EWS_URL,
version=Version(build=EXCHANGE_2010_SP2),
auth_type="ImpersonationRoleAuth"
)
ews_account = Account(
config=ews_config,
primary_smtp_address=EMAIL_ADDRESS,
access_type=IMPERSONATION
)