Which OAuth flow did you use? The Client Credentials flow will generate an App access token, where as for any endpoint requiring scopes you need a User Token from going through either the Implicit or Auth Code flows, as only then will there be user interaction to grant those permissions.
/user and /videos doesn’t require user permissions, which would explain why an App token works for those endpoints, but any endpoint requiring a scope would fail.