NCCOMMS, profile picture
Uploaded byNCCOMMS
PDF, PPTX75 views

O365Con18 - Connect SharePoint Framework Solutions to API's secured with Azure AD - Waldek Mastykarz

This document discusses securing APIs with Azure Active Directory (AD) authentication from SharePoint Framework (SPFx) solutions. It introduces the AadHttpClient SDK that can be used to call APIs secured with Azure AD without dealing with OAuth flows directly. The SDK handles retrieving access tokens automatically based on the permissions configured for the calling web part in the Azure AD tenant. The document provides an overview of how AadHttpClient works and links to additional resources on setting up API permissions and enabling cross-origin resource sharing (CORS) for APIs.

Embed presentation

Download as PDF, PPTX
Connect SharePoint Framework solutions to APIs secured with Azure AD
Authenticationisdifficult
rencore.com Calling API secured with Azure AD prerequisites What is OAuth? Which flow do I need? Which type of Azure AD app to create? Which URLs to enter as Reply URLs? …but I don’t know where users will put my web part or extension Is there an SDK I can use? Does it work in TypeScript? What if I add another web part to the page? What if two web parts request token at the same time? … …so what do I enter in Reply URLs?
AadHttpClient 👍
rencore.com Calling API secured with Azure AD prerequisites What is OAuth? Which flow do I need? Which type of Azure AD app to create? Which URLs to enter as Reply URLs? …but I don’t know where users will put my web part or extension Is there an SDK I can use? Does it work in TypeScript? What if I add another web part to the page? What if two web parts request token at the same time? … …so what do I enter in Reply URLs?
It.Just.Works.
rencore.com Connect to Azure AD-secured APIs from SPFx without headaches Demo
rencore.com Connect to Azure AD-secured APIs using the AadHttpClient SharePoint Online Client-side web part Azure Active Directory "SharePoint Online Client“ Permissions - xyz Tenant administrator configures what scopes are available for the MSGraphClient and AadHttpClient by configuring permissions to specific pre-provisioned application in the Azure Active Directory. 1 3 2 Configured access tokens automatically included in the call with needed permissions Request access tokens from the Azure AD side for the used application Custom API
rencore.com • Use the AadHttpClient class to access Azure AD-secured APIs wldk.nl/spconnect01 • Don’t pass web part context into React components wldk.nl/spconnect02 • Enable CORS for your API wldk.nl/spconnect03 • Setup API permissions in your tenant wldk.nl/spconnect01 • Each piece of JavaScript can access approved APIs wldk.nl/spconnect04 • Setup API permissions without packages wldk.nl/spconnect05 • Additional configuration required for multi-tenant apps wldk.nl/spconnect06 • Isolated web parts wldk.nl/spconnect07 Takeaways
Waldek Mastykarz Head of Product SharePoint MVP https://blog.mastykarz.nl @waldekm
Secure. Modernize. Empower.
O365Con18 - Connect SharePoint Framework Solutions to API's secured with Azure AD - Waldek Mastykarz

More Related Content

PDF
O365Con18 - Azure AD Connect Inside and Out - Sander Berkouwer
byNCCOMMS
 
PPTX
Azure Web Apps Advanced Security
byUdaiappa Ramachandran
 
PDF
O365Con18 - Introduction to Azure Web Applications - Eric Shupps
byNCCOMMS
 
PDF
SPUnite17 Introduction to Azure Web Applications
byNCCOMMS
 
PDF
SPUnite17 Who Are You and What Do You Want
byNCCOMMS
 
PPTX
Azure functions serverless
byUdaiappa Ramachandran
 
PPTX
ECS 2018: Introduction to Azure Web Applications
byEric Shupps
 
PPTX
Building a document e-signing workflow with Azure Durable Functions
byJoonas Westlin
 
O365Con18 - Azure AD Connect Inside and Out - Sander Berkouwer
byNCCOMMS
 
Azure Web Apps Advanced Security
byUdaiappa Ramachandran
 
O365Con18 - Introduction to Azure Web Applications - Eric Shupps
byNCCOMMS
 
SPUnite17 Introduction to Azure Web Applications
byNCCOMMS
 
SPUnite17 Who Are You and What Do You Want
byNCCOMMS
 
Azure functions serverless
byUdaiappa Ramachandran
 
ECS 2018: Introduction to Azure Web Applications
byEric Shupps
 
Building a document e-signing workflow with Azure Durable Functions
byJoonas Westlin
 

What's hot

PPTX
Logic apps and PowerApps - Integrate across your APIs
bySriram Hariharan
 
PPTX
Azure Bot Service
byAzure Riyadh User Group
 
PPTX
Azure App Service Deep Dive
byAzure Riyadh User Group
 
PPTX
Azure staticwebapps
byUdaiappa Ramachandran
 
PDF
O365Con18 - PowerApps build custom forms for SharePoint with Azure Maps - Bra...
byNCCOMMS
 
PPTX
Microsoft Reactor Toronto 5/5/2020 | Azure Kubernetes In Action - Running and...
byRoy Kim
 
PPTX
Integrating your on-premises Active Directory with Azure and Office 365
bynelmedia
 
PPTX
Windows Azure Active Directory
byPavel Revenkov
 
PPTX
Creating Cloud-Ready Enterprise Applications with the SharePoint 2013 Add-In ...
byEric Shupps
 
PPTX
Deep Dive Mobile Development with Office 365
byChakkaradeep Chandran
 
PPTX
Introduction to Azure Web Applications for Office and SharePoint Developers
byEric Shupps
 
PPTX
Apps 101 - Moving to the SharePoint 2013 App Model - Presented 7/27/13 at Sha...
byBlueMetalInc
 
PDF
SPTECHCON - Who are You and What Do You Want - Working with OAuth in SharePoi...
byEric Shupps
 
PPTX
Identity and o365 on Azure
byMostafa
 
PPTX
SharePoint and Office Development Workshop
byEric Shupps
 
PPTX
Building Push Triggers for Logic Apps
byBizTalk360
 
PPTX
Securing SharePoint Apps with OAuth
byKashif Imran
 
PPTX
Windows azure active directory
byKrunal Trivedi
 
PPTX
AAD with MVC App
bySasha Rosenbaum
 
PPTX
Building Apps for SharePoint 2013 by Andrew Connell - SPTechCon
bySPTechCon
 
Logic apps and PowerApps - Integrate across your APIs
bySriram Hariharan
 
Azure Bot Service
byAzure Riyadh User Group
 
Azure App Service Deep Dive
byAzure Riyadh User Group
 
Azure staticwebapps
byUdaiappa Ramachandran
 
O365Con18 - PowerApps build custom forms for SharePoint with Azure Maps - Bra...
byNCCOMMS
 
Microsoft Reactor Toronto 5/5/2020 | Azure Kubernetes In Action - Running and...
byRoy Kim
 
Integrating your on-premises Active Directory with Azure and Office 365
bynelmedia
 
Windows Azure Active Directory
byPavel Revenkov
 
Creating Cloud-Ready Enterprise Applications with the SharePoint 2013 Add-In ...
byEric Shupps
 
Deep Dive Mobile Development with Office 365
byChakkaradeep Chandran
 
Introduction to Azure Web Applications for Office and SharePoint Developers
byEric Shupps
 
Apps 101 - Moving to the SharePoint 2013 App Model - Presented 7/27/13 at Sha...
byBlueMetalInc
 
SPTECHCON - Who are You and What Do You Want - Working with OAuth in SharePoi...
byEric Shupps
 
Identity and o365 on Azure
byMostafa
 
SharePoint and Office Development Workshop
byEric Shupps
 
Building Push Triggers for Logic Apps
byBizTalk360
 
Securing SharePoint Apps with OAuth
byKashif Imran
 
Windows azure active directory
byKrunal Trivedi
 
AAD with MVC App
bySasha Rosenbaum
 
Building Apps for SharePoint 2013 by Andrew Connell - SPTechCon
bySPTechCon
 

Similar to O365Con18 - Connect SharePoint Framework Solutions to API's secured with Azure AD - Waldek Mastykarz

PPTX
Connect SharePoint Framework solutions to APIs secured with Azure AD
byBIWUG
 
PPTX
harePoint Framework Webinar Series: Consume Graph APIs in SharePoint Framework
byJenkins NS
 
PPTX
Deep dive into Salesforce Connected App
byDhanik Sahni
 
PPTX
SPFx Webinar Loading SharePoint data in a SPFx Webpart
byJenkins NS
 
PDF
Leveraging APIs from SharePoint Framework solutions
byDragan Panjkov
 
PPTX
Mastering Modern Authentication and Authorization Techniques for SharePoint, ...
byEric Shupps
 
PPTX
APIs, APIs Everywhere!
byBIWUG
 
PPTX
Handling Cross-Domain calls & authentication in SharePoint 2013
byBIWUG
 
PPTX
Developing Apps with Azure AD
bySharePointRadi
 
PDF
24032022 Zero Trust for Developers Pub.pdf
byTomasz Kopacz
 
PDF
Spca2014 office365 ap is full hackett obrien
byNCCOMMS
 
PPTX
SPConnect2014 Office 365 APIs
byWes Hackett
 
PPTX
Azure AD for browser-based application developers
byBob German
 
PPTX
#SPFestSea azr302 The SharePoint Framework and the #MicrosoftGraph under ster...
byVincent Biret
 
PPTX
Chris OBrien - Weaving Enterprise Solutions into Office Products
byChris O'Brien
 
PPTX
Calling APIs with SharePoint Framework
byGiuseppe Marchi
 
PPTX
#Techorama belgium 2018 vincent biret deep dive with the #MicrosoftGraph
byVincent Biret
 
PPTX
ECS 19 - Chris O'Brien - The hit list - Office 365 dev techniques you should ...
byEuropean Collaboration Summit
 
PPTX
SharePoint Saturday Belgium 2018 - APIs, APIs everywhere!
bySébastien Levert
 
PPTX
SharePoint Conference 2018 - APIs, APIs everywhere!
bySébastien Levert
 
Connect SharePoint Framework solutions to APIs secured with Azure AD
byBIWUG
 
harePoint Framework Webinar Series: Consume Graph APIs in SharePoint Framework
byJenkins NS
 
Deep dive into Salesforce Connected App
byDhanik Sahni
 
SPFx Webinar Loading SharePoint data in a SPFx Webpart
byJenkins NS
 
Leveraging APIs from SharePoint Framework solutions
byDragan Panjkov
 
Mastering Modern Authentication and Authorization Techniques for SharePoint, ...
byEric Shupps
 
APIs, APIs Everywhere!
byBIWUG
 
Handling Cross-Domain calls & authentication in SharePoint 2013
byBIWUG
 
Developing Apps with Azure AD
bySharePointRadi
 
24032022 Zero Trust for Developers Pub.pdf
byTomasz Kopacz
 
Spca2014 office365 ap is full hackett obrien
byNCCOMMS
 
SPConnect2014 Office 365 APIs
byWes Hackett
 
Azure AD for browser-based application developers
byBob German
 
#SPFestSea azr302 The SharePoint Framework and the #MicrosoftGraph under ster...
byVincent Biret
 
Chris OBrien - Weaving Enterprise Solutions into Office Products
byChris O'Brien
 
Calling APIs with SharePoint Framework
byGiuseppe Marchi
 
#Techorama belgium 2018 vincent biret deep dive with the #MicrosoftGraph
byVincent Biret
 
ECS 19 - Chris O'Brien - The hit list - Office 365 dev techniques you should ...
byEuropean Collaboration Summit
 
SharePoint Saturday Belgium 2018 - APIs, APIs everywhere!
bySébastien Levert
 
SharePoint Conference 2018 - APIs, APIs everywhere!
bySébastien Levert
 

More from NCCOMMS

PDF
O365Con19 - Developing Timerjob and Eventhandler Equivalents - Adis Jugo
byNCCOMMS
 
PDF
O365Con19 - Customise the UI in Modern SharePoint Workspaces - Corinna Lins
byNCCOMMS
 
PDF
O365Con19 - Lets Get Started with Azure Container Instances - Jussi Roine
byNCCOMMS
 
PDF
O365Con19 - Sharepoint with (Artificial) Intelligence - Adis Jugo
byNCCOMMS
 
PDF
O365Con19 - O365 Identity Management and The Golden Config - Chris Goosen
byNCCOMMS
 
PDF
O365Con19 - Azure Blackbelt - Jussi Roine
byNCCOMMS
 
PDF
O365Con19 - Start Developing Teams Tabs and SharePoint Webparts with SPFX - O...
byNCCOMMS
 
PDF
O365Con19 - Things I've Learned While Building a Product on SharePoint Modern...
byNCCOMMS
 
PDF
O365Con19 - Office 365 Groups Surviving the Real World - Jasper Oosterveld
byNCCOMMS
 
PDF
O365Con19 - Model-driven Apps or Canvas Apps? - Rick Bakker
byNCCOMMS
 
PDF
O365Con19 - Tips and Tricks for Complex Migrations to SharePoint Online - And...
byNCCOMMS
 
PDF
O365Con19 - Keep Control of Your Data with AIP and CA - Bram de Jager
byNCCOMMS
 
PDF
O365Con19 - Sharing Code Efficiently in your Organisation - Elio Struyf
byNCCOMMS
 
PDF
O365Con19 - Start Your Journey from Skype for Business to Teams - Sasja Beere...
byNCCOMMS
 
PDF
O365Con19 - Kaizala a Dive Into the Unknown - Rick van Rousselt
byNCCOMMS
 
PDF
O365Con19 - Be The Protagonist of Your Modern Workplace - Corinna Lins
byNCCOMMS
 
PDF
O365Con19 - UI:UX 101 Learn How to Design Custom Experiences for SharePoint -...
byNCCOMMS
 
PDF
O365Con19 - How to Inspire Users to Unstick from Email - Luise Freese
byNCCOMMS
 
PDF
O365Con19 - How to Really Manage all your Tasks Across Microsoft 365 - Luise ...
byNCCOMMS
 
PDF
O365Con19 - What Do You Mean 90 days Isn't Enough - Paul Hunt
byNCCOMMS
 
O365Con19 - Developing Timerjob and Eventhandler Equivalents - Adis Jugo
byNCCOMMS
 
O365Con19 - Customise the UI in Modern SharePoint Workspaces - Corinna Lins
byNCCOMMS
 
O365Con19 - Lets Get Started with Azure Container Instances - Jussi Roine
byNCCOMMS
 
O365Con19 - Sharepoint with (Artificial) Intelligence - Adis Jugo
byNCCOMMS
 
O365Con19 - O365 Identity Management and The Golden Config - Chris Goosen
byNCCOMMS
 
O365Con19 - Azure Blackbelt - Jussi Roine
byNCCOMMS
 
O365Con19 - Start Developing Teams Tabs and SharePoint Webparts with SPFX - O...
byNCCOMMS
 
O365Con19 - Things I've Learned While Building a Product on SharePoint Modern...
byNCCOMMS
 
O365Con19 - Office 365 Groups Surviving the Real World - Jasper Oosterveld
byNCCOMMS
 
O365Con19 - Model-driven Apps or Canvas Apps? - Rick Bakker
byNCCOMMS
 
O365Con19 - Tips and Tricks for Complex Migrations to SharePoint Online - And...
byNCCOMMS
 
O365Con19 - Keep Control of Your Data with AIP and CA - Bram de Jager
byNCCOMMS
 
O365Con19 - Sharing Code Efficiently in your Organisation - Elio Struyf
byNCCOMMS
 
O365Con19 - Start Your Journey from Skype for Business to Teams - Sasja Beere...
byNCCOMMS
 
O365Con19 - Kaizala a Dive Into the Unknown - Rick van Rousselt
byNCCOMMS
 
O365Con19 - Be The Protagonist of Your Modern Workplace - Corinna Lins
byNCCOMMS
 
O365Con19 - UI:UX 101 Learn How to Design Custom Experiences for SharePoint -...
byNCCOMMS
 
O365Con19 - How to Inspire Users to Unstick from Email - Luise Freese
byNCCOMMS
 
O365Con19 - How to Really Manage all your Tasks Across Microsoft 365 - Luise ...
byNCCOMMS
 
O365Con19 - What Do You Mean 90 days Isn't Enough - Paul Hunt
byNCCOMMS
 

Recently uploaded

PDF
Igniting the Future: Copilot trends, agentic transformation and product roadm...
byUni Systems S.M.S.A.
 
PDF
Guided Substation Engineering with CoMPAS: Simplifying IEC 61850
byDanBrown980551
 
PDF
Empowering Productivity with Clever Prompts and Intelligent Agents
byUni Systems S.M.S.A.
 
PPTX
Basics of Identity Access Management In mordern Infrastructure
byPrinceXavier18
 
PDF
How Mobile Apps Are Shaping the Future of Digital Innovation
byWilliam Taylor
 
PDF
TrustArc Webinar - Looking Ahead: The 2026 Privacy Landscape
byTrustArc
 
PDF
Safeguarding AI-Based Financial Infrastructure
byYasir Naveed Riaz
 
PDF
Decoding the DNA: The Digital Networks Act, the Open Internet, and IP interco...
byCSUC - Consorci de Serveis Universitaris de Catalunya
 
PPTX
Ritesh_kumar_Aatmanirbhar Bharat: Make in India, Make for the World.pptx
byriteshrkgs2008
 
PDF
Generative AI in 2026: Hype, Bubble, Winter or The Real Deal?
byDr. Tathagat Varma
 
PDF
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
PDF
Top Cybersecurity Threats 2025 Guide by Sureshdas
byPrintersassist
 
PDF
Zero Trust & Defense-in-Depth: The Future of Critical Infrastructure Security
byYasir Naveed Riaz
 
PDF
The Ultimate Guide to Problem Management Dashboards for IT Teams.pdf
byomnex systems
 
PDF
DIGITAL FORENSICS - Notes for Everything.pdf
bypankajkumavatbeit
 
PDF
Innovative AI Solutions for Business Growth.pdf
byVox Works
 
PDF
Incident Response Planning with a Foundation Model
byKim Hammar
 
PDF
AI Technology important knowledge ......
byutkarshj2007
 
PDF
Recursive Self Improvement vs Continuous Learning
byBob Marcus
 
PDF
Ransomware_Resilience_Strategic_Playbook.pdf
byAfonso Henrique Rodrigues Alves
 
Igniting the Future: Copilot trends, agentic transformation and product roadm...
byUni Systems S.M.S.A.
 
Guided Substation Engineering with CoMPAS: Simplifying IEC 61850
byDanBrown980551
 
Empowering Productivity with Clever Prompts and Intelligent Agents
byUni Systems S.M.S.A.
 
Basics of Identity Access Management In mordern Infrastructure
byPrinceXavier18
 
How Mobile Apps Are Shaping the Future of Digital Innovation
byWilliam Taylor
 
TrustArc Webinar - Looking Ahead: The 2026 Privacy Landscape
byTrustArc
 
Safeguarding AI-Based Financial Infrastructure
byYasir Naveed Riaz
 
Decoding the DNA: The Digital Networks Act, the Open Internet, and IP interco...
byCSUC - Consorci de Serveis Universitaris de Catalunya
 
Ritesh_kumar_Aatmanirbhar Bharat: Make in India, Make for the World.pptx
byriteshrkgs2008
 
Generative AI in 2026: Hype, Bubble, Winter or The Real Deal?
byDr. Tathagat Varma
 
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
Top Cybersecurity Threats 2025 Guide by Sureshdas
byPrintersassist
 
Zero Trust & Defense-in-Depth: The Future of Critical Infrastructure Security
byYasir Naveed Riaz
 
The Ultimate Guide to Problem Management Dashboards for IT Teams.pdf
byomnex systems
 
DIGITAL FORENSICS - Notes for Everything.pdf
bypankajkumavatbeit
 
Innovative AI Solutions for Business Growth.pdf
byVox Works
 
Incident Response Planning with a Foundation Model
byKim Hammar
 
AI Technology important knowledge ......
byutkarshj2007
 
Recursive Self Improvement vs Continuous Learning
byBob Marcus
 
Ransomware_Resilience_Strategic_Playbook.pdf
byAfonso Henrique Rodrigues Alves
 

O365Con18 - Connect SharePoint Framework Solutions to API's secured with Azure AD - Waldek Mastykarz

  • 2.
    Connect SharePoint Frameworksolutions to APIs secured with Azure AD
  • 3.
  • 4.
    rencore.com Calling API securedwith Azure AD prerequisites What is OAuth? Which flow do I need? Which type of Azure AD app to create? Which URLs to enter as Reply URLs? …but I don’t know where users will put my web part or extension Is there an SDK I can use? Does it work in TypeScript? What if I add another web part to the page? What if two web parts request token at the same time? … …so what do I enter in Reply URLs?
  • 5.
  • 6.
    rencore.com Calling API securedwith Azure AD prerequisites What is OAuth? Which flow do I need? Which type of Azure AD app to create? Which URLs to enter as Reply URLs? …but I don’t know where users will put my web part or extension Is there an SDK I can use? Does it work in TypeScript? What if I add another web part to the page? What if two web parts request token at the same time? … …so what do I enter in Reply URLs?
  • 7.
  • 8.
    rencore.com Connect to AzureAD-secured APIs from SPFx without headaches Demo
  • 9.
    rencore.com Connect to AzureAD-secured APIs using the AadHttpClient SharePoint Online Client-side web part Azure Active Directory "SharePoint Online Client“ Permissions - xyz Tenant administrator configures what scopes are available for the MSGraphClient and AadHttpClient by configuring permissions to specific pre-provisioned application in the Azure Active Directory. 1 3 2 Configured access tokens automatically included in the call with needed permissions Request access tokens from the Azure AD side for the used application Custom API
  • 10.
    rencore.com • Use theAadHttpClient class to access Azure AD-secured APIs wldk.nl/spconnect01 • Don’t pass web part context into React components wldk.nl/spconnect02 • Enable CORS for your API wldk.nl/spconnect03 • Setup API permissions in your tenant wldk.nl/spconnect01 • Each piece of JavaScript can access approved APIs wldk.nl/spconnect04 • Setup API permissions without packages wldk.nl/spconnect05 • Additional configuration required for multi-tenant apps wldk.nl/spconnect06 • Isolated web parts wldk.nl/spconnect07 Takeaways
  • 11.
    Waldek Mastykarz Head ofProduct SharePoint MVP https://blog.mastykarz.nl @waldekm
  • 12.