Sharepoint API permissions

Roger Roger 4,961 Reputation points
2021-02-05T01:18:13.767+00:00

Hi All

i have an Azure App Registration. i.e i have a client id created in Azure App Registration. i have a team site. i have a folder by name Test01 in the team site. I want to integrate Azure App with team site. i.e i want to upload/download/edit the files in this team site folder Test01 and i dont want to give full control.

i have logged in to team site url: https://mycompany.sharepoint.com/sites/myteamsite/_layouts/15/appinv.aspx
in the appid: i have put the app id.
in App's Permission Request XML will the below permission work only for this team site. i.e to upload/download/edit files only from Test01 folder.

<AppPermissionRequests AllowAppOnlyPolicy="true">
<AppPermissionRequest Scope="http://sharepoint/content/sitecollection/web/list"
Right="Read" />
</AppPermissionRequests>

SharePoint Server
SharePoint Server
A family of Microsoft on-premises document management and storage systems.
2,254 questions
SharePoint
SharePoint
A group of Microsoft Products and technologies used for sharing and managing content, knowledge, and applications.
9,883 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,883 questions
0 comments No comments
{count} votes

Accepted answer
  1. Baker Kong-MSFT 3,796 Reputation points
    2021-02-05T06:48:06.303+00:00

    Hi @Roger Roger ,

    It's not possible to limit the permission to folder level. The lowest permission level is list.

    Check below docs to get more details about permission:

    https://learn.microsoft.com/en-us/sharepoint/dev/sp-add-ins/add-in-permissions-in-sharepoint#AssociatedProperties

    Best Regards,
    Baker Kong


    If an Answer is helpful, please click "Accept Answer" and upvote it.
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments No comments

1 additional answer

Sort by: Most helpful
  1. Roger Roger 4,961 Reputation points
    2021-02-05T09:41:44.307+00:00

    So is the below format correct?

    <AppPermissionRequests AllowAppOnlyPolicy="true">
    <AppPermissionRequest Scope="http://sharepoint/content/sitecollection/web/list"
    Right="Read" />
    </AppPermissionRequests>