I am trying to access userinfo using the outlook rest API: https://outlook.office.com/api/v2.0/me
If I am using the following scopes: "openid", "email", "profile", "offline_access", "https://outlook.office.com/Tasks.ReadWrite"
This works fine for Office 365 accounts but it fails for Outlook.com accounts with the following: 403 (Forbidden) {"error":{"code":"ErrorAccessDenied","message":"Access is denied. Check credentials and try again."}}
If I change the "https://outlook.office.com/Tasks.ReadWrite" scope for "https://outlook.office.com/Contacts.Read" or "https://outlook.office.com/Calendars.Read" it does work for Office 365 and Outlook.com accounts.
Is this a bug ? So what scopes do I need for https://outlook.office.com/api/v2.0/me" ? I prefer not to use the Contacts.Read/Calendar.Read scope for this since that would give much more permissions then necessary.
Thanks for helping!