It can be difficult to secure user identities in cloud-based apps, especially when it comes to Outlook plugins that employ Azure SSO. Some user claims, such "preferred_username", are modifiable, which might lead to security issues. This has caused developers to look for more dependable ways to get user data, such the Microsoft Graph API. The user's mail attribute is one of the details whose immutability still raises concerns.