In my app event receiever I generate a new site collection which holds some utility lists that hold general information. This generated site collection is different than the site collection in which the appweb of my application is, so assume the following:
Primary site collection: primary.sharepoint.com
Generated site collection: primary.sharepoint.com/sites/utility
My problem is when coming from primary.sharepoint.com, I cannot find a way to get access to the list outside of expliciting setting credentials using SharePointOnlineCredentials. The problem with this is the username and password for this constructor I am actually putting into the primary.sharepoint.com/sites/utility site collection for the rest of the app to use.
I have tried app policies, and pretty much everything in the TokenHelper class. Either get access denied or a forbidden error.
Thoughts? TIA!