Graph API currently requires delegated permissions to create/read and manipulate tasks. This is not even with other Graph endpoints (e.g messages, events) and should be fixed for uniform access. From business standpoint, lack of access using application permissions is preventing us from implementing business critical features in our apps.