GetOAuthAccessToken
Gets an authentication token from AzureActiveDirectory.
Input
Name | Type | Description |
AuthMode | String | The type of authentication mode to use. Select App for getting authentication tokens via a desktop app. Select Web for getting authentication tokens via a Web app.
The allowed values are APP, WEB. The default value is APP. |
CallbackUrl | String | The URL the user will be redirected to after authorizing your application. This value must match the Reply URL you have specified in the Azure AD app settings. |
Verifier | String | The verifier returned from Azure AD after the user has authorized your app to have access to their data. This value will be returned as a parameter to the callback URL. |
Scope | String | A space-separated list of scopes to request from the user when OAuthGrantType='CODE'. When OAuthGrantType='CLIENT', a scope of 'https://graph.microsoft.com/.default' is used. '/.default' picks up whatever permissions your app already has.
The default value is offline_access https://graph.microsoft.com/group.readwrite.all https://graph.microsoft.com/groupmember.readwrite.all https://graph.microsoft.com/user.read.all https://graph.microsoft.com/user.read https://graph.microsoft.com/directory.readwrite.all https://graph.microsoft.com/RoleManagement.ReadWrite.Directory https://graph.microsoft.com/directory.accessasuser.all https://graph.microsoft.com/domain.readwrite.all https://graph.microsoft.com/device.read.all https://graph.microsoft.com/RoleManagement.Read.Directory https://graph.microsoft.com/organization.Read.all https://graph.microsoft.com/Application.ReadWrite.all https://graph.microsoft.com/AuditLog.Read.All https://graph.microsoft.com/DeviceLocalCredential.Read.All. |
State | String | An arbitrary string of your choosing that is returned to your app; a successful roundtrip of this string helps ensure that your app initiated the request. |
Prompt | String | Defaults to 'select_account' which prompts the user to select account while authenticating. Set to 'None', for no prompt, 'login' to force user to enter their credentials or 'consent' to trigger the OAuth consent dialog after the user signs in, asking the user to grant permissions to the app. |
Result Set Columns
Name | Type | Description |
OAuthAccessToken | String | The access token used for communication with AzureActiveDirectory. |
ExpiresIn | String | The remaining lifetime on the access token. A -1 denotes that it will not expire. |
OAuthRefreshToken | String | Refresh token to renew the access token. |