Überauth Microsoft

Microsoft OAuth2 strategy for Überauth.

Forked in a hurry from swelham/ueberauth_microsoft.

Installation

Setup your application at the new Microsoft app registration portal.

Add :ueberauth_microsoft to your list of dependencies in mix.exs:

 def deps do
   [{:ueberauth_microsoft, "~> 0.4"}]
 end

Add the strategy to your applications:

 def application do
   [applications: [:ueberauth_microsoft]]
 end

Add Microsoft to your Überauth configuration:

 config :ueberauth, Ueberauth,
   providers: [
     microsoft: {Ueberauth.Strategy.Microsoft, []}
   ]

Update your provider configuration:

config :ueberauth, Ueberauth.Strategy.Microsoft.OAuth,
  client_id: System.get_env("MICROSOFT_CLIENT_ID"),
  client_secret: System.get_env("MICROSOFT_CLIENT_SECRET"),
  tenant_id: System.get_env("MICROSOFT_TENANT_ID")

Include the Überauth plug in your controller:

defmodule MyApp.AuthController do
  use MyApp.Web, :controller
  plug Ueberauth
  ...
end

Create the request and callback routes if you haven’t already:

scope "/auth", MyApp do
  pipe_through :browser

  get "/:provider", AuthController, :request
  get "/:provider/callback", AuthController, :callback
end

Your controller needs to implement callbacks to deal with Ueberauth.Auth and Ueberauth.Failure responses.

For an example implementation see the Überauth Example application.

Calling

Depending on the configured url you can initial the request through:

/auth/microsoft

By default the scopes used are

openid
email
offline_access
https://graph.microsoft.com/user.read

Note: at least one service scope is required in order for a token to be returned by the Microsoft endpoint

You can configure additional scopes to be used by passing the extra_scopes option into the provider

config :ueberauth, Ueberauth,
  providers: [
    microsoft: {Ueberauth.Strategy.Microsoft, [extra_scopes: "https://graph.microsoft.com/calendars.read"]}
  ]

License

Please see LICENSE for licensing details.