0

I am trying to create an authentication object using the Microsoft Graph Connector to connect my Mendix app to one of my organization’s SharePoint sites. I have installed the module and most of the dependencies (not sure on the API permissions). How can I check that the app registration has the correct API permissions? My organization’s SharePoint team has shared the client id, client secret, tenant_id, title, app domain (which is set to ‘localhost’) and redirect uri (which is set to ‘http://localhost:8082/oauth/v2/callback_azure’, I am testing from my laptop). Below are my scopes: I have tried a number of configurations but none of them work and each yield a different error message.  When prompt is ‘none’: AADSTS65001: The user or administrator has not consented to use the application with ID '<client_id>' named '<title>'. Send an interactive authorization request for this user and resource. When prompt is ‘consent’, I am prompted to use my organization’s Microsoft account. I click it and get an error: AADSTS90036: An unexpected, non-retryable error stemming from the directory service has occurred. When prompt is ‘consent’ but I select ‘Get Authorization without a User,’ I am prompted for my account and then I get an error: AADSTS1003031: Misconfigured required resource access in client application registration. What am I missing or how can I check why this is failing?   Edit: My organization’s SharePoint team checked the API permissions but found none. They also found that they are not required. Here is the screenshot they shared from Azure.     What are some next steps we can take to troubleshoot?

asked 2022-07-08

3 answers