OAuth 2.0 Configuration Examples

This topic provides examples of what information is expected for an OAuth provider for Microsoft and Google.

Microsoft

Provider Information

Parameter Example Additional Information
Client ID

11de338f-3443-4c96-8fa5-81e5c682af10

Can be found on the Overview page of the application registered

Client Secret

xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

Can be created under Certificates & secrets of the application registered

Discovery Endpoint

https://login.microsoftonline.com/6fe2c527-u776-4v20
-kqq8-a63670f1043r//v2.0/.well-known/openid-configuration

Can be found under the Endpoints menu found on the Overview page of the application registered

Authorization Endpoint

https://login.microsoftonline.com/6fe2c527-f885-4a20
-aeb8-b69640f1056b/oauth2/v2.0/authorize

Can be found under the Endpoints menu found on the Overview page of the application registered

Token Endpoint

https://login.microsoftonline.com/6fe2c527-f885-4a20
-aeb8-b69640f1056b/oauth2/v2.0/token

Can be found under the Endpoints menu found on the Overview page of the application registered

User Info Endpoint

https://graph.microsoft.com/oidc/userinfo

Generic endpoint for all registered applications

Scopes

openid, email, offline_access

Required scopes that need to be included in the configuration.

Configuration in Web Server

The following image is an example of the General tab where the values retrieved from the Microsoft provider are set.

Mapping Users

The following image is an example of how to map the Web Server user to their Microsoft account in the Users tab.

Google

Provider Information

Parameter Example Additional Information
Client ID

343312345323453-t3424qpj03iie75appleqasff42ksq322.apps.googleusercontent.com

Can be found on the Overview page of the application registered

Client Secret

xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

Can be created under Certificates & secrets of the application registered

Authorization Endpoint

https://accounts.google.com/o/oauth2/v2/auth

Generic endpoint that can be found under Authenticating the User

Token Endpoint

https://oauth2.googleapis.com/token

Generic endpoint that can be found under Authenticating the User

User Info Endpoint

https://openidconnect.googleapis.com/v1/userinfo

Generic endpoint for all registered applications

Scopes

openid, email

Required scopes that need to be included in the configuration

Discovery Endpoint

https://accounts.google.com/.well-known/openid-configuration

Generic endpoint that can be found under Discovery document

Configuration in Web Server

The following image is an example of the General tab where the values retrieved from the Google provider are set.

Mapping Users

The following image is an example of how to map the Web Server user to their Google account in the Users tab.