From 09445540376093f2a5b14089ee504e9a7249f72d Mon Sep 17 00:00:00 2001
From: R0gue-one <harshitjaiswal2606@gmail.com>
Date: Tue, 24 Mar 2026 20:05:50 +0530
Subject: [PATCH 1/2] note added on reason for FullControl scope

---
 connectors/microsoft-365/sharepoint.mdx | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/connectors/microsoft-365/sharepoint.mdx b/connectors/microsoft-365/sharepoint.mdx
index 4a1b59e..df01880 100644
--- a/connectors/microsoft-365/sharepoint.mdx
+++ b/connectors/microsoft-365/sharepoint.mdx
@@ -117,6 +117,12 @@ Copy the "Application (client) ID" NOT the "Object ID". These are different valu
   - `Sites.FullControl.All`
 - Click **Add permissions**
 
+<Note>
+  **Permission Requirements:**
+  * Although the connector only performs read operations, `Sites.FullControl.All` is strictly required by the SharePoint API to fetch granular site group permissions.
+  * `Files.ReadWrite.All` is required by the Microsoft Graph API to establish and renew webhook subscriptions for document libraries.
+</Note>
+
 ### Step 4: Grant Admin Consent
 
 - On the API permissions page, click **"Grant admin consent for [Your Organization]"**

From b18743d8fc10d2f4e747da3215435721b3254321 Mon Sep 17 00:00:00 2001
From: R0gue-one <harshitjaiswal2606@gmail.com>
Date: Wed, 25 Mar 2026 12:11:47 +0530
Subject: [PATCH 2/2] review comment

---
 connectors/microsoft-365/sharepoint.mdx | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/connectors/microsoft-365/sharepoint.mdx b/connectors/microsoft-365/sharepoint.mdx
index df01880..47b0b76 100644
--- a/connectors/microsoft-365/sharepoint.mdx
+++ b/connectors/microsoft-365/sharepoint.mdx
@@ -119,8 +119,8 @@ Copy the "Application (client) ID" NOT the "Object ID". These are different valu
 
 <Note>
   **Permission Requirements:**
-  * Although the connector only performs read operations, `Sites.FullControl.All` is strictly required by the SharePoint API to fetch granular site group permissions.
-  * `Files.ReadWrite.All` is required by the Microsoft Graph API to establish and renew webhook subscriptions for document libraries.
+  * `Sites.FullControl.All` is strictly required by the SharePoint API to fetch granular site group permissions.
+  * `Files.ReadWrite.All` is required by the Microsoft Graph API to establish and renew webhook subscriptions for document libraries. If you don't plan on using webhooks, you can use `Files.Read.All` instead.
 </Note>
 
 ### Step 4: Grant Admin Consent