This is the multi-page printable view of this section. Click here to print.

Return to the regular view of this page.

Exporting Graph Permission Diagnostics

How to export a diagnostics file when the WikiPakk Table of Contents web part asks for a Microsoft Graph permission that seems to be granted already.

    WikiPakk requires a Microsoft Graph permission (see Microsoft Graph API Permissions). Until a tenant administrator grants it, the Table of Contents web part shows a placeholder message instead of the outline, asking for that approval. In other words, the placeholder is simply the sign that the required Graph permission is still missing.

    Usually granting the permission resolves this. But sometimes the placeholder stays, even though the administrator says: “I granted everything.” There are several possible reasons for that, and they all look the same from the outside. The diagnostics export tells them apart.

    When to use it

    Use it when the permission placeholder does not go away, especially when:

    • the administrator has already granted the permission, but the message still shows
    • the permission was granted just minutes ago and you want to know why it is not working yet
    • support asks you for it

    You do not have to wait for support to ask. Attaching the file to your first support request saves a round-trip and gets your issue solved faster.

    How to export

    1. Open a page where the Table of Contents web part shows the permission placeholder (the message asking to grant the Graph API permission).
    2. Below the message, click the small Export diagnostics link.

    That is all. The link is always there while the placeholder is shown.

    What to expect

    Clicking Export diagnostics immediately downloads a file to your computer. Nothing is sent anywhere; the export only saves a file locally.

    The file is named like this:

    wikipakk-graph-permission-diagnostics-<pagename>-<date>-<time>.json
    

    What the file contains

    The file is plain text and contains everything needed to pinpoint why the permission check fails:

    • the result of a live permission check against Microsoft Graph, including the exact error details Microsoft returned (error code, message, and a request ID that Microsoft support can look up)
    • which permissions your sign-in actually carries right now, and when your sign-in token was issued; this is the key to the common case where the permission was granted correctly, but a few minutes too recently
    • WikiPakk’s own cached permission verdict, which can lag behind reality for up to an hour
    • the WikiPakk version, the web part settings context, and the page address
    • a plain-language conclusion, so the most likely cause is spelled out right in the file

    The file deliberately contains no passwords and no access tokens. Only descriptive details of your sign-in are included (such as the account name and the list of granted permissions), never the credential itself. Unlike the Table of Contents diagnostics, it also contains no page content.

    Sending the file to support

    1. If you need to, review the file first. It is plain text, so you can open it in any text editor (such as Notepad).
    2. Zip the file. Some mail systems block .json attachments, and zipping avoids that.
    3. Email the zipped file to [email protected], together with a note on when the permission was granted.

    With this file, support can immediately tell apart a missing grant, a grant that has not reached your sign-in token yet, a stale cache, and a policy issue in your tenant, without a lengthy back and forth.