mirror of https://github.com/42wim/matterbridge synced 2024-11-03 15:40:24 +00:00

History

Wim 23d8742f0d Update dependencies for 1.18.0 release (#1175 )		2020-07-18 17:27:41 +02:00
..
client_credentials_grant.go	Use upstream yaegashi/msgraph.go/msauth (msteams) (#1067 )	2020-03-28 23:44:49 +01:00
device_authorization_grant.go	Update dependencies for 1.18.0 release (#1175 )	2020-07-18 17:27:41 +02:00
msauth.go	Update dependencies for 1.18.0 release (#1175 )	2020-07-18 17:27:41 +02:00
README.md	Update dependencies for 1.18.0 release (#1175 )	2020-07-18 17:27:41 +02:00
resource_owner_password_grant.go	Update dependencies for 1.18.0 release (#1175 )	2020-07-18 17:27:41 +02:00
storage.go	Update dependencies for 1.18.0 release (#1175 )	2020-07-18 17:27:41 +02:00

README.md

msauth

Introduction

Very simple package to authorize applications against Microsoft identity platform.

It utilizes v2.0 endpoint so that it can authorize users using both personal (Microsoft) and organizational (Azure AD) account.

Usage

Device authorization grant

OAuth 2.0 device authorization grant flow

const (
	tenantID     = "XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX"
	clientID     = "YYYYYYYY-YYYY-YYYY-YYYY-YYYYYYYYYYYY"
	tokenCachePath  = "token_cache.json"
)

var scopes = []string{"openid", "profile", "offline_access", "User.Read", "Files.Read"}

	ctx := context.Background()
	m := msauth.NewManager()
	m.LoadFile(tokenCachePath)
	ts, err := m.DeviceAuthorizationGrant(ctx, tenantID, clientID, scopes, nil)
	if err != nil {
		log.Fatal(err)
	}
	m.SaveFile(tokenCachePath)

	httpClient := oauth2.NewClient(ctx, ts)
	...

Client credentials grant

OAuth 2.0 client credentials grant flow

const (
	tenantID     = "XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX"
	clientID     = "YYYYYYYY-YYYY-YYYY-YYYY-YYYYYYYYYYYY"
	clientSecret = "ZZZZZZZZZZZZZZZZZZZZZZZZ"
)

var scopes = []string{msauth.DefaultMSGraphScope}

	ctx := context.Background()
	m := msauth.NewManager()
	ts, err := m.ClientCredentialsGrant(ctx, tenantID, clientID, clientSecret, scopes)
	if err != nil {
		log.Fatal(err)
	}

	httpClient := oauth2.NewClient(ctx, ts)
    ...

Resource owner password credentials grant

OAuth 2.0 resource owner passowrd credentials grant flow

const (
	tenantID     = "XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX"
	clientID     = "YYYYYYYY-YYYY-YYYY-YYYY-YYYYYYYYYYYY"
	clientSecret = "ZZZZZZZZZZZZZZZZZZZZZZZZ"
	username     = "user.name@your-domain.com"
	password     = "secure-password"
)

var scopes = []string{msauth.DefaultMSGraphScope}

	ctx := context.Background()
	m := msauth.NewManager()
	ts, err := m.ResourceOwnerPasswordGrant(ctx, tenantID, clientID, clientSecret, username, password, scopes)
	if err != nil {
		log.Fatal(err)
	}

	httpClient := oauth2.NewClient(ctx, ts)
    ...

Authorization code grant

OAuth 2.0 authorization code grant flow
Not yet implemented.