OAuth 2.0 for SharePoint

Prerequisites

• OAuth 2.0 is supported for SharePoint Online, which is available on Microsoft Azure.
• OAuth 2.0 authentication must be enabled in the Dataprep by Trifacta Cloud. For more information, see Enable OAuth 2.0 Authentication.

Create OAuth 2.0 Client App in Azure

In the Azure console, you must create the client app.

Steps:

1. Login to Azure: https://portal.azure.com/#home
2. Select Azure Active Directory > App Registrations > New registration.

3. Specify the following fields:

   Field	Description
   Name	The name of the app.
   Supported Account Types	Select either: Single tenant Multi tenant
   Redirect URI	Specify the URL in the following format, depending your project or workspace login: https://<Login_URL>/oauth2/callback Example: https://clouddataprep.com/oauth2/callback

4. To create the new registration, click Register.

5. Overview tab:

   NOTE: Copy the value for the Application (client) Id. This value must be applied in the Dataprep by Trifacta application.

6. Branding tab: (optional) Specify the following fields:

   Field	Description
   Name	The name of the app should match the value you specified previously.
   Logo	Upload a preferred logo for the app.
   Homepage URL	Set this value to the following: https://trifacta.com
   Terms of Service URL	Set this value to the following: https://www.trifacta.com/terms-conditions/
   Privacy Policy	Set this value to the following: https://www.trifacta.com/privacy-policy/
   Publisher Domain	Set this value to the following: trifacta.com
   MPN ID	If you are a Microsoft Partner, you can specify your MPN ID.

7. Certificates & Secrets tab: To create a new client secret:
   
   1. Select New client secret.
   2. Set the Expires option to Never.

   3. Select Add.

      NOTE: Copy the Value field. This value is the client secret and must be applied in the Dataprep by Trifacta application.

8. API Permissions tab:
   1. Select Add a permission.
   2. Select Sharepoint.

   3. Specify the permissions to enable for the client app. 

      NOTE: To be able to read from SharePoint Online, the following permission is required at a minimum: AllSites.Manage.

9. Save your changes.

Create OAuth 2.0 Client for SharePoint

After the SharePoint client app is created, you must create an OAuth 2.0 client in the Dataprep by Trifacta application, which is used to integrate with the OAuth 2.0 Client app that you created in Azure.

Steps:

1. Login to the Dataprep by Trifacta application as a workspace administrator.
2. In the lefthand menu, select User menu > Admin console > OAuth 2.0 Clients. 
3. In the OAuth 2.0 Clients page, click Register OAuth 2.0.0 Client.

4. Specify the fields for the new client:

   Field	Description
   Type	sharepoint
   Name	Enter a name for the client.
   Client ID	Paste the value of the Application (client) Id that was generated when you created the client app in Azure.
   Client Secret	Paste the value of the client secret that was generated when you created the client app in Azure.
   Authorization URL	Single tenant: https://login.microsoftonline.com/<tenant_identifier>/oauth2/v2.0/authorize Multi-tenant: https://login.microsoftonline.com/common/oauth2/v2.0/authorize
   Token URL	Single tenant: https://login.microsoftonline.com/<tenant_identifier>/oauth2/v2.0/token Multi-tenant: https://login.microsoftonline.com/common/oauth2/v2.0/token
   Scopes	Set the scopes to the following values: NOTE: Individual scopes must be separated by a space. https://<your_sharepoint_domain>/AllSites.Manage offline_access openid
   Access Token Expires In	Set this value to the following: 3599999.
   Refresh Token Expires In	Set this value to the following: 7775999999.

5. To save your OAuth 2.0 client, click Save.

For more information, see Create OAuth2 Client.

Create SharePoint Connection

After you have created the two OAuth 2.0 client references, you can create a connection to your SharePoint data.

For more information, see SharePoint Connections.