Unauthorized - 401 - Insufficient authorization in token

That looks correct yes. That requests the user:read:follows scope and the moderation:read scope