Given I'm logged in with MSSSO account;
And the Read the organization's roster permission is set;
When I call /education/me/classes endpoint;
Then I get the 403 response with the code AccessDenied and the message Required scp claim values are not provided.
What does the error mean? How do I fix it?
{
"aud": "https://graph.microsoft.com",
"iss": "https://sts.windows.net/22d54f2b-1771-400c-8839-1b661d1d5270/",
"iat": 1517909669,
"nbf": 1517909669,
"exp": 1517913569,
"acr": "1",
"aio": "Y2NgYLj3Um+jDePa8FgXu/w7Jkl3lHo0ZbNPdx498+y09QQTG3UA",
"amr": [
"pwd"
],
"app_displayname": "My company ",
"appid": "5a993391-9e90-45e8-9823-e6ba00f810f3",
"appidacr": "1",
"family_name": "user",
"given_name": "user",
"ipaddr": "91.244.25.19",
"name": "user",
"oid": "bb0571c2-e60d-4425-8c37-5cd7fabe5083",
"platf": "5",
"puid": "10033FFF9E13F0A0",
"scp": "Contacts.Read Directory.AccessAsUser.All Directory.Read.All email Files.Read Files.Read.All Group.Read.All Mail.Read.Shared Mail.Send offline_access openid People.Read profile User.Read User.Read.All User.ReadBasic.All",
"sub": "rq0gSA1ps5tiFGaN1n84WZEeqqBU5pKhv-cMJQRwpSw",
"tid": "22d54f2b-1771-400c-8839-1b661d1d5270",
"unique_name": "user@company.com",
"upn": "user@company.com",
"uti": "ARRvKJOO6UutMlcwAPgYAA",
"ver": "1.0"
}
