Wiki source code of Azure AD

Hide last authors

version	line-number	content
2.1	1	{{content/}}
	2
13.1	3	{{version major="7" minor="1" /}} This feature is available starting with {{formcycle/}} version 7.1.
2.1	4
13.1	5	When adding a //Azure AD// identity provider the following parameters are requested:
2.1	6
13.1	7	== Base settings ==
2.1	8
13.1	9	{{figure image="azuread_base_settings_en.png" clear="h1"}}
	10	Basic settings for the configuration of the Azure AD identity provider.
2.1	11	{{/figure}}
	12
	13	=== Name ===
	14
13.1	15	Name of the identity provider in {{formcycle/}}.
	16	=== Different name on form login button ===
2.1	17
13.1	18	If a form has been configured to offer several authentication options, a dialog will be displayed when opening the form in which an authentication type has to be selected. The text used on the button for this identity provider can be configured here.
2.1	19
13.1	20	If nothing is entered here, the name entered under //Name// is used.
2.1	21
13.1	22	=== Alias for callback URL (UUID) ===
2.1	23
13.1	24	Unique identifier which is used when the identity provider returns to {{formcycle/}}. This value is generated automatically, but can be changed if necessary.
2.1	25
13.1	26	=== Callback URL ===
2.1	27
13.1	28	The URL which is used when returning from the identity provider to {{formcycle/}} is shown here and can be copied to the clipboard by clicking the copy icon to the right of the URL.
2.1	29
13.1	30	== Initially visible buttons ==
2.1	31
13.1	32	Below the base settings there are initially 2 buttons whose functions are intended to help with the configuration of the Azure AD identity provider.
2.1	33
13.1	34	=== Help ===
2.1	35
13.1	36	Opens this help page in the browser.
2.1	37
13.1	38	=== Add configuration ===
2.1	39
13.1	40	If the required information has been provided by the identity provider, the area for the configuration of the identity provider can be opened by clicking on this button. Afterwards the area //configuration// which is described below opens.
2.1	41
13.1	42	== Configuration ==
2.1	43
13.1	44	{{figure image="azuread_configuration_en.png" clear="h1"}}
	45	Configuration options of the Azure AD identity provider.
2.1	46	{{/figure}}
	47
	48	=== Client ID ===
	49
13.1	50	Unique ID of the configuration that is provided by the identity provider. After creating a new app registration (see points 1 and 2), it can be copied from the list of registrations (point 3).
2.1	51
13.1	52	{{figure image="azure_app_registration_en.png" clear="h3" float="left"}}
	53	Creating a new app registry inside Azure AD
2.1	54	{{/figure}}
	55
	56	=== Client secret ===
	57
13.1	58	Secret key which is used to authenticate your client. After creating a new client key within Azure (see points 1 and 2), this key is temporarily displayed (point 3). It is not possible to retrieve this key at a later time, so it must be created again if it is lost.
2.1	59
13.1	60	{{figure image="azure_secret_en.png" clear="h3" float="left"}}
	61	Creating a new client key within Azure AD.
2.1	62	{{/figure}}
	63
13.1	64	=== Directory (tenant) ID ===
2.1	65
13.1	66	Unique ID of the directory (tenant) which is used to query the group information and the manager. You can find this in the overview of your Azure tenant (see point 2).
2.1	67
13.1	68	{{figure image="azure_directory_id_en.png" clear="h3" float="left"}}
	69	Determine the tenant ID within Azure AD.
2.1	70	{{/figure}}
	71
13.1	72	=== Query full group information ===
2.1	73
13.1	74	Specifies if the Azure user groups of the user should be determined via Graph API after a successful login. This data is available via [[user placeholder>>doc:Formcycle.UserInterface.Variables\|\|anchor="HBenutzerplatzhalter" target="_blank"]] at //rawData.memberOf//.
2.1	75
13.1	76	=== Query manager ===
2.1	77
13.1	78	Specifies whether the user's manager should be determined via Graph API after a successful login. This data is available via [[user placeholder>>doc:Formcycle.UserInterface.Variables\|\|anchor="HBenutzerplatzhalter" target="_blank"]] at //rawData.manager//.