Skip to main content

OAuth 2.0 for SharePoint

Configure the Trifacta Application to integrate with your SharePoint deployment using OAuth 2.0 to authenticate.

Prerequisites
  • OAuth 2.0 is supported for SharePoint Online, which is available on Microsoft Azure.

  • OAuth 2.0 authentication must be enabled in theDesigner Cloud Powered by Trifacta platform. For more information, seeEnable OAuth 2.0 Authentication.

Create OAuth 2.0 Client App in Azure

In the Azure console, you must create the client app.

Steps:

  1. Login to Azure: https://portal.azure.com/#home

  2. Select Azure Active Directory > App Registrations > New registration.

  3. Specify the following fields:

    Field

    Description

    Name

    The name of the app.

    Supported Account Types

    Select either:

    • Single tenant

    • Multi tenant

    Redirect URI

    Specify the URL in the following format, depending your project or workspace login:

    https://<Login_URL>/oauth2/callback

    Example:

    https://<platform_url>:<port_number>/oauth2/callback

  4. To create the new registration, click Register.

  5. Overview tab:

    Note

    Copy the value for the Application (client) Id. This value must be applied in the Trifacta Application.

  6. Branding tab: (optional) Specify the following fields:

    Field

    Description

    Name

    The name of the app should match the value you specified previously.

    Logo

    Upload a preferred logo for the app.

    Homepage URL

    Set this value to the following:

    https://trifacta.com

    Terms of Service URL

    Set this value to the following:

    https://www.trifacta.com/terms-conditions/

    Privacy Policy

    Set this value to the following:

    https://www.trifacta.com/privacy-policy/

    Publisher Domain

    Set this value to the following:

    trifacta.com

    MPN ID

    If you are a Microsoft Partner, you can specify your MPN ID.

  7. Certificates & Secrets tab: To create a new client secret:

    1. Select New client secret.

    2. Set the Expires option to Never.

    3. Select Add.

      Note

      Copy the Value field. This value is the client secret and must be applied in the Trifacta Application.

  8. API Permissions tab:

    1. Select Add a permission.

    2. Select Sharepoint.

    3. Specify the permissions to enable for the client app.

      Note

      To be able to read from SharePoint Online, the following permission is required at a minimum: AllSites.Manage.

  9. Save your changes.

Create OAuth 2.0 Client for SharePoint

After the SharePoint client app is created, you must create an OAuth 2.0 client in the Trifacta Application, which is used to integrate with the OAuth 2.0 Client app that you created in Azure.

Steps:

  1. Login to the Trifacta Application as a workspace administrator.

  2. In the lefthand menu, select User menu > Admin console > OAuth 2.0 Clients.

  3. In the OAuth 2.0 Clients page, click Register OAuth 2.0.0 Client.

  4. Specify the fields for the new client:

    Field

    Description

    Type

    sharepoint

    Name

    Enter a name for the client.

    Client ID

    Paste the value of the Application (client) Id that was generated when you created the client app in Azure.

    Client Secret

    Paste the value of the client secret that was generated when you created the client app in Azure.

    Authorization URL

    Single tenant:

    https://login.microsoftonline.com/<tenant_identifier>/oauth2/v2.0/authorize

    Multi-tenant:

    https://login.microsoftonline.com/common/oauth2/v2.0/authorize

    Token URL

    Single tenant:

    https://login.microsoftonline.com/<tenant_identifier>/oauth2/v2.0/token

    Multi-tenant:

    https://login.microsoftonline.com/common/oauth2/v2.0/token

    Scopes

    Set the scopes to the following values:

    Note

    Individual scopes must be separated by a space.

    https://<your_sharepoint_domain>/AllSites.Manage offline_access openid

    Access Token Expires In

    Set this value to the following: 3599999.

    Refresh Token Expires In

    Set this value to the following: 7775999999.

  5. To save your OAuth 2.0 client, click Save.

For more information, see Create OAuth2 Client.

Create SharePoint Connection

After you have created the two OAuth 2.0 client references, you can create a connection to your SharePoint data.

Note

You must create a separate connection for each OAuth 2.0 client that is available in the Trifacta Application.

For more information, see SharePoint Connections.