Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

NAA - Queries for App registration on Azure Portal, Application (Client) ID and AppSource #4977

Open
ashu66867 opened this issue Oct 16, 2024 · 2 comments
Open

NAA - Queries for App registration on Azure Portal, Application (Client) ID and AppSource #4977

ashu66867 opened this issue Oct 16, 2024 · 2 comments
Assignees
@exextoc
Labels
Area: authentication Issue related to authentication Needs: author feedback Waiting for author (creator) of Issue to provide more info

Comments

@ashu66867
Copy link

Our add-in is already published to AppSource and is used by multiple tenants. I am trying to use NAA. I have the following questions:

  1. Is it safe to have Application (client) ID hard coded in the client side code? I am following this tutorial for NAA authentication.
  2. Can onmicrosoft.com tenant be used for app registration & adding SPA redirect Uris considering our add-in will be used by multiple tenants?
  3. Once my client SPA receives the access token by NAA, Can I send this token to my server-side and call graph api from there? Do I need to do extra registrations steps?
  4. I found the below option on our AppSource listing. Is this required for using NAA?
    NAA- q1
@microsoft-github-policy-service microsoft-github-policy-service bot added the Needs: triage 🔍 New issue, needs PM on rotation to triage ASAP label Oct 16, 2024
@exextoc exextoc added Needs: attention 👋 Waiting on Microsoft to provide feedback Area: Outlook Issue related to Outlook add-ins and removed Needs: triage 🔍 New issue, needs PM on rotation to triage ASAP labels Oct 16, 2024
@exextoc exextoc self-assigned this Oct 16, 2024
@neprasad-microsoft neprasad-microsoft added Area: authentication Issue related to authentication and removed Area: Outlook Issue related to Outlook add-ins labels Oct 16, 2024
@pkkj
Copy link

pkkj commented Oct 22, 2024

Answer for some questions:

  1. Yes. You need this ID for calling NAA API.
  2. You can register in an onmicrosoft.com tenant, but for multi-tenant applications the publisher needs to be verified to not get a warning as described in this document. The page does mention the apps publisher domain can't be onmicrosoft.com to be verified.
  3. Yes you could return it to server, though the token is used in the client in most scenarios.

@qinliuMSFT qinliuMSFT added Needs: author feedback Waiting for author (creator) of Issue to provide more info and removed Needs: attention 👋 Waiting on Microsoft to provide feedback labels Oct 23, 2024
@manuelsidler
Copy link

We're also very interested in question number four and couldn't find any information about it in the NAA docs.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@exextoc exextoc

Labels
Area: authentication Issue related to authentication Needs: author feedback Waiting for author (creator) of Issue to provide more info
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
6 participants
@manuelsidler @pkkj @exextoc @neprasad-microsoft @qinliuMSFT @ashu66867