We are integrating the microsoft graph to fetch the contacts of signed-in user through microsoft graph SDK but I one thing here is that we are using our implemented OAuth2.0 protocol for authentication in microsoft graph instead of Auth using given JS SDK with following permissions which are registered on Azure Active Directory
scope = offline_access Contacts.Read Contacts.Read.Shared
Problem : Admin consent should not be shown to user when registered permissions are not required admin consent.