This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 43%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVB%3C/text%3E%3C/svg%3E)
I am developing a React application and i have created one user (eg:@company.com) who belongs to a Microsoft 365 account. My requirement is : "Whoever the user belongs to the m365 environment can able to create a folder in the abc@example.com user's OneDrive account using their own Microsoft credentials from my React application". I am using Microsoft graph API to create folder and MSAL for generating token. When i try to get the one drive folder i can able to create it when i sign in using the same account (@company.com). But when i try to create a folder using different user (who belongs to the same M365 environment) it throws access denied error. But i configured necessary permission to create a folder in Graph API. even when i check the token in jwt.ms website i can see the permissions (Files.Read.All & Files.ReadWrite.All). I am in a deadlock situation. can you guide me how to resolve this issue. Here are some screenshot of my Azure permission list and Application code
i am using /users/{user-id}/dirve/items/root/children post request api to create folder. do i need more permissions?
Hi @vignesh babu
In a delegated context, you can only create folders for the currently logged in user. If you want to create folders for other users in your organization, you should use application permissions (client credentials flow).
Hope this helps.
If the reply is helpful, please click Accept Answer and kindly upvote it. If you have additional questions about this answer, please click Comment.
thank you so much. this way works!