Sharepoint Partner OAuth

Log in to Microsoft Azure

Log in to your Microsoft Azure portal.

Navigate to App Registrations

Go to your Microsoft Entra admin center.In the left navigation bar, click “Applications” > “App registrations”.

Register a New Application

Under App Registrations, click the ”+ New registration” button.

Configure Application Details

Under Register an application, input the following details:

• Name
• Supported account types
  • Select “Accounts in any organizational directory (Any Microsoft Entra ID tenant - Multitenant) and personal Microsoft accounts”
• Redirect URI
  • Select “Web”
  • Enter the URI: https://api.stackone.com/connect/oauth2/sharepoint/callback

Once complete, click “Register” to create the new application.

Obtain the App Client ID and Tenant ID

After registration, you’ll be taken to the application overview page.Copy the following values and store them safely to be used in a later step:

• Application (client) ID
• Directory (tenant) ID

Obtain the Application Client Secret

Under Client credentials on the right, click “Add a certificate or secret”.

Under Client secrets, click the ”+ New client secret” button.

Under Add a client secret, enter a description and select your desired expiration date for this secret.

Please keep in mind that a new secret will need to be generated when this one expires.

Click the “Add” button to proceed.

The new client secret will be displayed. Copy the Value and store it safely to be used in a later step.

Make sure to copy this value now. It will not be displayed again.

Set the Application API Permissions

Click “API permissions” near the left navigation.

Under Configured permissions, click the “Add a permission” button.

Under Request API permissions, click “Microsoft Graph”.

The application requires the following permissions.Delegated Permissions

• Files.Read - Read user files
• Files.Read.All - Read all files that user can access
• Files.ReadWrite - Read and upload user files
• offline_access - Maintain access to data you have given it access to
• Sites.Read.All - Read items in all site collections
• Sites.ReadWrite.All - Edit or delete items in all site collections
• User.Read - Sign in and read user profile
• User.ReadBasic.All - Read all users’ basic profiles

After selecting all of the listed permissions above, click the “Add permissions” button.

Grant Admin Consent for Application Permissions

All of the added permissions will be listed under Configured permissions. Please ensure that all of the permissions above are listed.Click the “Grant admin consent” button to approve all of the listed permissions.Click the “Yes” button to confirm Admin approval.

Add Single-Page Application Redirect URI

To support the File Picker, an additional Redirect URI is required for the Single-Page Application platform configuration.Navigate to Authentication under Manage, and click the “Add a platform” button.

Under Configure Platforms on the right, click Single-page application.

Enter the following Redirect URI:
https://app.stackone.com

Press the “Configure” button to continue, then the “Save” button in the Authorization screen you are returned to.