0

We are making an interface with SharePoint. I did the app registration in AAD, gave SPO degelated permissions via Graph API

API call for access token works fine API call to get a file keeps erroring with a 403 forbidden.

Error message: 917656; Access+denied.+Before+opening+files+in+this+location%2c+you+must+first+browse+to+the+web+site+and+select+the+option+to+login+automatically.

Google doesn't help me any further... Maybe you guys can help me out?

SharePoint Online

Improve this question
2
  • Please refer to below articles for troubleshooting: undocumented-features.com/2019/12/02/… koskila.net/… Commented Jun 9, 2020 at 9:34
  • @Julie_MSFT Thanks for your reply, the settings as shown on the link were already set to allow all. error still occurs Commented Jun 9, 2020 at 11:07

1 Answer 1

Reset to default
1

For all you guys stumbling upon the same issue. This did the trick for us.

https://www.anupams.net/app-only-policy-with-tenant-level-permissions-in-sharepoint-online/

Since we were providing access to the WHOLE tenant and not just a site or sitecollection we needed to set the permissions on the tenant-admin-url

Literally the passage:

So what changed? Well, MS has recently made a change, which seems to have gone quietly. If you need any tenant level permission for your App only provider hosted app, you need to add permission in tenant admin site and not in any of the site collection! Well lets try that then…

Improve this answer

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.