Oauth2 for SharePoint 365 REST

sharepoint oauth ms-office preview
23,487

Solution 1

I've successfully connected to SharePoint Online using PHP. It looks to me like you're combining two different methods to do so. Here is what I did:

The appregnew.aspx and appprincipals.aspx pages are used for apps for SharePoint but it doesn't look like you're building one.

Solution 2

I think you are trying to do OAuth from Sharepoint Online without creating an Add-In inside Sharepoint. This was the exact problem I was facing. I know this is an old question but my answer might be helpful to someone else coming here.

It is possible to do OAuth from any web-app. Here are the step by step instructions in my blog -

https://medium.com/@yash_agarwal2/performing-oauth-and-rest-calls-with-sharepoint-online-without-creating-an-add-in-677e15c8d6ab#.6pf4wp83b

High Level overview -

1) Get client id and secret by registering yourself here - https://sellerdashboard.microsoft.com/Registration

2) Get Access Token, Refresh Token by following steps here -

https://msdn.microsoft.com/en-us/library/office/jj687470.aspx

Share:
23,487
ZinaliErik
Author by

ZinaliErik

Updated on September 09, 2020

Comments

  • ZinaliErik
    ZinaliErik over 3 years

    I'm trying to connect to Sharepoint Online (Sharepoint 365?) content using OAuth2 and the REST API. I need to do this from Python as it is an addition to an existing application. I have already managed to connect the application to Google Drive using OAuth2 and REST, so I think I understand the fundamentals of using OAuth2.

    I've tried a number of combinations of places to configure the client_id and client_secret and authenticate and receive access and refresh tokens.

    So far I have been able to receive a refresh token and use it to obtain an access token; however, I'm unable to use the access token to access content on the Sharepoint 365 site.

    For configuring the client_id and client_secret I associated my Sharepoint site with AAD using the Azure Management Portal. Then I added an application to the Sharepoint AD entry with the client_id and client_secret. In Sharepoint I used appregnew.aspx to register the client_id and verified the application appears in appprincipals.aspx.

    I call the authentication service using: .../login.windows.net/common/oauth2/authorize?api-version=1.0&response_type=code&client_id=&redirect_uri=&resource=Microsoft.Sharepoint

    and am able to authenticate, receive a code, call back to .../login.windows.net/common/oauth2/token with the code and receive access and refresh tokens.

    I serialized those tokens and from a separate process call .../login.windows.net/common/oauth2/token with the refresh_token, client_id, client_secret, and grant_type=refresh_token and receive a new access token.

    Finally I call in to Sharepoint service endpoint -my.sharepoint.com/personal//_api/web/files' with the new access token and it fails telling me the resource Microsoft.Sharepoint is invalid (Invalid audience Uri 'Microsoft.SharePoint')

    I've been spinning my wheels trying various permutations of where the client_id is configured and this is as far as I've gotten. Since all the documentation and examples seem to depend on using C# libraries such as TokenHelper I feel like I'm missing something key but simple and can't find the required information.

    Has anyone connected to Sharepoint Online using Python, Ruby, Java, etc? If so:

    1. Where should the client_id be configured?
    2. What are the endpoints for obtaining the refresh and access tokens?
    3. What is the appropriate audience uri or resource for which to request tokens?

    Many thanks!

  • Yuriy Galanter
    Yuriy Galanter about 6 years
    I know it's a very old topic, but I am just starting with SharePoint integration and your post is the most helpful. My question is - does authentication always require interactive part - where use has to actually manually login using their login and password? Or can it be fully automated? Thanks!

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

IE8 Printing Issue - Shrink to Fit is not Shrinking, right side getting hacked
How can I get an oauth access token in sharepoint 2013?
Get started with Office 365 REST API
How to manage OAuth flow in mobile application with server
Spotify PKCE in Dart/Flutter: "code_verifier was incorrect"
Why does "appAuthRedirectScheme" as manifest placeholder has no effect?
Flutter + Django OAuth integration
Should I use OAuth (or what else) for the backend of a mobile app? - There is only *one* "third-party" application in such cases
How to create stripe standard account with flutter and firebase
Flutter: PlatformException(sign_in_failed, com.google.android.gms.common.api.ApiException: 10: , null)