MS Azure integration

MS Azure integration#

This document describes the integration of Allegra with Microsoft Azure, both from a technical perspective and from a user’s perspective. The integration process is explained in detail in the video “MS Azure Integration”.

Prerequisites and setup#

To connect Microsoft Azure with Allegra, you must first create an Azure Enterprise Application. This application forms the interface between Allegra and the Microsoft world and must therefore be configured correctly on both sides.

In Allegra, the following information is required for the new Enterprise Application:

  • Application Client ID

  • Application Client Secret (this is generated in Microsoft Azure in the Certificates & secrets section of the application properties)

  • Directory Tenant ID

../../_images/msazure-1.png

In Microsoft Azure, the following web redirect URIs must be entered in the application’s authentication settings:

  • {ALLEGRA_URL}/msExchangeAuthCallback.action (for Microsoft Exchange)

  • {ALLEGRA_URL}/msAzureSsoCallback.action (for single sign-on)

Technical details#

For communication with Microsoft Azure, Allegra uses the MSAL4J SDK (Microsoft Authentication Library for Java). This library makes it possible to retrieve tokens from Azure AD v2 (for work and school accounts as well as MSA) and from Azure AD B2C. This gives Allegra access to the Microsoft Cloud APIs as well as to other APIs protected by Microsoft identities.

The required API permissions can be configured in Azure within the Enterprise Application.

Contents