Deployed with App registrations, getting 401 responses (not authorized)

[AyTonyM]

We deployed the application following the deployment guide. It was successfully deployed, however, we're seeing:
"

GET /api/sentnotifications
Response code | 401

I have:

• verified the secrets in the key vault are correct
• re-synced the function apps and app service
• added the six graph api permissions and granted admin consent
• configured the scope for the graph api as well (api://redacted.azurefd.net/access_as_user)

App Service:

[peddivyshnavi]

Hi @AyTonyM
Thanks for reaching out to us
sorry for delay in response we will get back to you ASAP

[peddivyshnavi]

Hi @AyTonyM
Upon review, we have see that the supported account type for the graph app registration is currently set to multi-tenant. Could you please update it to single-tenant
for reference :

deployment guide

[AyTonyM]

We flipped that earlier in the troubleshooting process, however we see the same results:

[AyTonyM]

Here's another screenshot of App Insights:

[peddivyshnavi]

Hi @AyTonyM
we will get back to you ASAP

[peddivyshnavi]

Hi @AyTonyM
Could you please check whether secrets got updated correctly in all app functions and app service
as well as could you please validate app domain value in manifest file

[AyTonyM]

The manifest files for both the users and author files match the output from from the deployment:

Additionally, all of the connection strings point to valid key vault secrets, and I confirmed that those secrets correspond to the correct app registrations.

Does the user or author app registration need any api permissions like the graph app registration?

[peddivyshnavi]

Hi @AyTonyM
could you please check whether manifest section which is under manage in graph app registration is updated.