oauthazure-active-directoryazure-ad-graph-apisharepoint-rest-api
Using SharePoint Rest API
I am trying to read SharePoint lists using the following endpoint (http://url/_api/web/lists) and I am passing the access token, but the response returns Access Denied.
While I use the same access token to call an endpoint from the graph API (https://graph.microsoft.com/v1.0/sites/root/lists) and it works fine.
Should I use a different access token when I work with SharePoint REST APIs? or am I missing something here?
Thanks.
Solution
Yes, you should use a different access token since the endpoints are different. The graph api and sharepoint api are different resource, you need to grant the application different permissions.
Note:
SharePoint APIs are available via the Microsoft Graph API. You may want to consider using Microsoft Graph instead.
- Facebook OAuth "The domain of this URL isn't included in the app's domain"
- Extend Magento REST API in custom module
- LinkedIn API OAuth refresh token
- Exchanging a google idToken for local openId token c#
- Curl error 60, SSL certificate issue: self signed certificate in certificate chain
- Keycloak + SPA as client (Vue) + Spring Cloud Gateway as resource server + Spring Boot Microservices
- oAuth: How to integrate Twitter and LinkedIn in the same app?
- How can I download a single raw file from a private github repo using the command line?
- How do you access the result structure returned with cfoauth?
- SSO not working in iOS when using AWS Cognito and Azure AD
- In JWT Authentication in .NET 7, how can a "validated" token be "missing"?
- Use CakePHP Http Client with Magento2 rest API search criteria
- GitLab OAuth access token validity
- How to get access Token from Amadesu API on Python
- Difficulty setting up Oauth, Error (400): invalid_scope
- Microsoft OAuth authorization code flow CORS
- Allowing Cognito non verified users to sign in?
- How to start using OAuth in Silverlight
- Getting invalid_scope when attempting to obtain a refresh token via the Google API
- OAuth2AuthenticationException: [invalid_client] when try sign in with Apple in Spring Boot application
- JWT (Json Web Token) Audience "aud" versus Client_Id - What's the difference?
- Relationship between Google Identity Services - Sign In with Google and User Authorization for Google APIs
- How to list all contacts of email without the Oauth API?
- Why Both Web and Android Client IDs needed for Google authn using Supabase on Flutter?
- Keycloak - Assign a client scope to user with a specific role
- Endless troubles with next-auth v4 and FacebookProvider
- Is there any way to check if oauth token is expired or not?
- How can an Accelo Web Application determine the 'staff ID' of the logged-in user?
- Why is my user anonymous after logging in by OAuth2 with Spring Boot?
- "Could not authenticate you." -error when using Twitter OAuth