...
When the user logs in to SharePoint a user token is created for this user.
The user token (together with some additionally required information) is then used to request an access token from SharePoint. Thus the access token is issued for this specific user.
The access token is then used for every request of data from SharePoint in the Confluence macro to SharePoint. That means that the respose response contains only contains SharePoint data granted to this specific userthat the logged in user is allowed to access.
Impact of permissions to the Confluence Macros
Therefore, the The user has to be logged in to both systems (Confluence and SharePoint) in one browser window while using the app.
User not logged in to SharePoint
If a user is logged in to Confluence but not to SharePoint he won’t see any SharePoint content. Instead a message like the following will be displayed:
...
Image 1: User not logged in to SharePoint cannot see any SharePoint content
User logged in to Confluence and SharePoint
If a user is logged in to both Confluence and SharePoint as well , then in a the SharePoint List macro or SharePoint Document macro in Confluence there will be displayed all lists respectively only display lists and documents the logged in SharePoint user is permitted to see in SharePoint itself.
User logged in without permission
If a SharePoint List macro is configured to show a list that the the logged in SharePoint user isn’t allowed to see, the following hint will be displayed:
...