Graph API 401 Unauthorized error

Question

Graph API 401 Unauthorized error

svc_CLM_CampOps_Custom_EPS_WW 1

I am attempting to call POST https://graph.microsoft.com/v1.0/planner/plans

I have a valid access_token response from the authorization API which I use in the call as 'Bearer <access_token>. I have checked my application permisions and they include Group.ReadWrite.All and Tasks.ReadWrite. I have verified that my JSON is valid through the graph explorer.

I cannot figure out why I continue to get the response:
401 - Unauthorized: Access is denied due to invalid credentials.
You do not have permission to view this directory or page using the credentials that you supplied.

3 answers

Your answer

Answer 1

Hi @svc_CLM_CampOps_Custom_EPS_WW

As per the documentation, Create Plannerplan Graph API only supports Delegated permissions.

Please make sure that you give Tasks.ReadWrite and Group.ReadWrite.All permissions as Delegated permissions while creating a new Plannerplan.

Post giving permissions, you can decode your application token and check whether 'scp' property has these permissions or not.

Hope this helps.

If the answer is helpful, please click Accept Answer and kindly upvote. If you have any further questions about this answer, please click Comment.

Answer 2

svc_CLM_CampOps_Custom_EPS_WW 1

Thank you for your response. I do have delegated permissions:

I have tried to decode my toked, but it is showing completely different roles than what I have configured:

HarmeetSingh7172 4,826 Reputation points

2022-09-12T21:25:57.057+00:00

Hi @svc_CLM_CampOps_Custom_EPS_WW

The token you're using is not a delegated token, instead it's an Application token.
In Delegated token, you will see a property called 'scp' which will be having all the delegated permissions in it. But in this case, we can see property as 'roles' which is found in Application token. Please generate a new Delegated token and re-run the query.

Hope this helps.
If the answer is helpful, please click Accept Answer and kindly upvote. If you have any further questions about this answer, please click Comment

Answer 3

svc_CLM_CampOps_Custom_EPS_WW 1

I don't know the difference...can you provide any detail with how to get a delegated token?

HarmeetSingh7172 4,826 Reputation points

2022-09-12T23:49:30.09+00:00

Hi @svc_CLM_CampOps_Custom_EPS_WW

As Create PlannerPlan Graph API only supports Delegated Permissions, so you can use Graph Explorer tool to run this specific API.

Under Modify Permissions tab, you have to consent Tasks.ReadWrite and Group.ReadWrite.All Permissions to run the query successfully.

Refer this documentation to know the difference between Delegated and Application permissions.

Hope this helps.
If the answer is helpful, please click Accept Answer and kindly upvote. If you have any further questions about this answer, please click Comment

Share via

Graph API 401 Unauthorized error

3 answers

Your answer