Dear all,
I am refering to this article here: Azure app with client secret - access to sharepoint where it says that we would need to grant Sites.ReadWrite.All for Microsoft Graph. However, this would grant the application way too much privileges, in our IT departments opinion. It should be possible only to allow it User.Read for the authentication and then a read and write permission on the site itself like this:
Does anybody know why it’s not working like this?