You have a single-page application (SPA) named TodoListSPA and a server-based web app named TodoListService.
The permissions for the TodoList SPA API are configured as shown in the TodoList SPA exhibit. (Click the TodoListSPA tab.)
The permissions for the TodoListService API are configured as shown in the TodoListService exhibit. (Click the TodoListService tab.)
You need to ensure that TodoListService can access a Microsoft OneDrive file of the signed-in user. The solution must use the principle of least privilege.
Which permission should to grant?
- A: the Sites.Read.All delegated permission for TodoListService
- B: the Sites.Read.All delegated permission for TodoListSpa
- C: the Sites.Read.All application permission for TodoListSPA
- D: the Sites.Read.All application permission for TodoListService