Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.alterauth.com/llms.txt

Use this file to discover all available pages before exploring further.

Overview

Connect your users to Microsoft for Office 365, Outlook email, OneDrive files, Teams, Calendar, and Azure services.
PropertyValue
Provider IDmicrosoft
CategoryPopular
PKCESupported
Token refreshAutomatic
Redirect URIShown in Developer Portal

Step 1: Create a Microsoft OAuth App

1

Go to App registrations in the Microsoft Entra admin center

Navigate to App registrations in the Microsoft Entra admin center and sign in with your Microsoft account.
2

Register a new application

Click New registration. Enter an application name and select Accounts in any organizational directory and personal Microsoft accounts.
3

Configure the redirect URI

Under Authentication, click Add a platform > Web. Add the Alter callback URL from the Developer Portal as the redirect URI.
4

Create a client secret

Go to Certificates & secrets > New client secret. Set an expiry and copy the Value immediately — it’s only shown once.
5

Get your credentials

Copy the Application (client) ID from the Overview page. The secret you copied is your Client Secret.
Never share your Client Secret publicly. Store it securely and only enter it in the Alter Vault Developer Portal.

Step 2: Add to Alter Vault

1

Open the Developer Portal

Go to portal.alterauth.com and navigate to your app.
2

Add Microsoft provider

Go to OAuth Providers > Add Provider > Microsoft.
3

Enter credentials

  • Client ID: Paste your Application (client) ID
  • Client Secret: Paste your client secret Value
4

Select scopes

Choose the scopes your app needs.
5

Save

Click Save. The provider is now active.

Available Scopes

ScopeDescription
openidOpenID Connect authentication
profileAccess to user profile information
emailAccess to user email address
offline_accessObtain refresh tokens for long-lived access
User.ReadRead user profile
User.ReadWriteRead and write user profile
Mail.ReadRead email messages
Mail.SendSend emails on behalf of user
Calendars.ReadRead calendar events
Calendars.ReadWriteCreate and manage calendar events
Files.ReadRead OneDrive files
Files.ReadWriteRead and write OneDrive files

Notes

  • Always include offline_access to receive a refresh token for long-lived access.
  • Microsoft requires admin consent for certain organizational scopes.
  • See the Microsoft OAuth 2.0 documentation for more details.