When building private SharePoint Addin, API permission can be granted either :
- from the authorized API tab in registered application in the Azure AD portal
- or from the /_layouts/15/appinv.aspx from a site collection or at tenant level.
What’s the difference beetween the two ?
when it’s better to use one instead of the other ?