![]() The app-only access tokens are passed to the Office 365 Management APIs to authenticate and authorize your application. These access tokens are called app-only tokens because they do not include information about the tenant admin.Ĭall the Office 365 Management APIs. Using your application's credentials as configured in Azure AD, your application requests additional access tokens for a consented tenant on an ongoing basis, without the need for further tenant admin interaction. The tenant ID must be extracted from the access token and stored for future use. Your application makes a service-to-service call to Azure AD to exchange this authorization code for an access token, which contains information about both the tenant admin and your application. After consent is granted, the UI redirects the user back to your application with an authorization code in the URL. The consent process is a browser-based experience that requires the tenant admin to sign in to the Azure AD consent UI and review the access permissions that your application is requesting, and then either grant or deny the request. ![]() An Office 365 tenant admin must explicitly grant consent to allow your application to access their tenant data by means of the Office 365 Management APIs. ![]() This allows you to establish an identity for your application and specify the permission levels it needs to access the APIs. ![]() To allow your application access to the Office 365 Management APIs, you need to register your application in Azure AD. The Office 365 Management APIs use Azure AD to provide authentication services that you can use to grant rights for your application to access them. When you create an application that needs access to secured services like the Office 365 Management APIs, you need to provide a way to let the service know if your application has rights to access it. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |