Forum Discussion
Graph API permissions and protecting secrets
I am looking for some guidance to configure 'least-privileged' permissions for Graph API. I'll be invoking Graph API from Microsoft Flow to provision a new Team and set its properties like Team owner...
I had a similar challenge (but not using Flow). The Graph Security API was great but with Application permissions the scope of access was far too broad. I finally found a technote that documented an approach of implementing two Application interfaces - one to provide a Username & Password authentication and the second to provide the Graph access. - https://vincentlauzon.com/2017/01/29/authenticating-to-azure-ad-non-interactively/
This worked for me