Maybe I am missing something but here is the scenario I encounter, which makes me wonder if OneNote sharing is a really bad idea.
Step 1: I create a OneNote notebook and share it with ******@outlook.com - I set it to allow editing and require to sign in with a MS account
******@outlook.com gets my email with the link, and for whatever reason he purposely or accidentally shares the link with other people.
Step 2: anyone - I repeat ANYONE - with a Microsoft account that has that link to my OneNote notebook can see, edit, delete and do whatever they want with it.
I find that extremely insecure.
If I share it with ******@outlook.com, I would expect that only people that sign in as ******@outlook.com would have access to the notebook. This is not the case. Anybody with a MS account and the link can do whatever they want.
This works e.g. with Google drive shared files completely different. If I share a document on Google drive with ******@gmail.com, only someone who knows the link and logs in as ******@gmail.com can see and access the shared file. That is security.
Am I missing something or is this another occasion where MS simply does not "get" security?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
