How do I configure FeatureBase as an Azure Active Directory IDP?

Configure FeatureBase as an Azure Active Directory application Identity Provider (IdP)

Table of contents

Before you begin
Step one: Register FeatureBase as an Azure application
Step 2 - create an application secret key
Step 3 - Add the secret key to featurebase.conf
Step 4 - Create Azure groups
Step 5 - Add users to Azure groups
Step 6 - Set application authentication
Next step

Before you begin

Obtain administrator privileges to your Azure AD account
Install FeatureBase Community
Add authentication to featurebase.conf

Step one: Register FeatureBase as an Azure application

The following values are used when registering FeatureBase as an Azure AD aplication:

Step	What to add	Example
4	Redirect URL	The fully qualified domain or public IP address with `/redirect` as a suffix	`https://featurebase-hostname-or-ip:10101/redirect`
6	Microsoft Graph permissions	`Microsoft Graph : Delegated : GroupMember.ReadAll.` `Microsoft Graph : Delegated : User.Read.All.`

Register FeatureBase as an Azure AD application

Step 2 - create an application secret key

Create an application secret key for FeatureBase

Step 3 - Add the secret key to `featurebase.conf`

CD to the /featurebase/opt directory.
Edit featurebase.conf in a text editor.
Edit client-secret value then add the Azure AD FeatureBase application secret.

Step 4 - Create Azure groups

Complete steps 1-10 of Create Azure AD groups

Step 5 - Add users to Azure groups

Complete steps 11-12 of Add users to groups

Step 6 - Set application authentication

Perform these steps in your Azure application settings.

Open the Application configuration page.
Click the Authentication tab > Advanced Settings
Toggle Allow public client flows to yes

"Image of AzureAD app configuration page with Allow public client flows toggled to yes."

Next step

Set up FeatureBase authentication