GraphAPI V1.0: Getting error reading non-admin users tasks, email and notes using admin token

Question

Hello, We have been using the graph api to read all users tasks, email and notes using the admin token, noticing few errors since last week causing our backend process to fail reading the mailbox items . Anything changed recently related to permissions? please confirm

Tasks:

Status code: 400

End point to access non-admin users tasks: https://graph.microsoft.com/v1.0/users/82a6da4f-48d5-4be7-bff4-59bd.../todo/lists

Token: AdminUsers token

Response:

{
    "error": {
        "code": "invalidRequest",
        "message": "Invalid request",
        "innerError": {
            "code": "ErrorIncorrectRoutingHint",
            "date": "2025-02-19T18:06:25",
            "request-id": "5491d861-ea8f-414d-9b49-ed59f6b97428",
            "client-request-id": "21e791a0-b460-487a-8878-8061ef336d1c"
        }
    }
}

Email/Notes:

StatusCode: 403

Token: AdminUsers token

End point: https://graph.microsoft.com/v1.0/users/82a6da4f-48d5-4be7-bff4-59bd.../messages

{
    "error": {
        "code": "ErrorAccessDenied",
        "message": "Access is denied. Check credentials and try again."
    }
}

Do I need any special permissions to be added? Please confirm.

Answer 1

Hello, did you check admin consent permissions ?

The ErrorAccessDenied indicates that the application lacks the necessary permissions to access the user's messages. This can result from:

Insufficient Permissions: The application may not have the required API permissions granted.

Missing Admin Consent: Even with the correct permissions, lack of admin consent can prevent access.