đź“–
PixieBrix Documentation
Connect to Custom Azure Applications/APIs

Connect to Custom Azure Applications/APIs

ℹ️
This guide covers authenticating with custom Azure Applications/APIs. You will need your Azure and PixieBrix Administrator to assist with the instructions in this guide.

Create/Register an Azure Application

đź“š
Azure documentation to Register an Application
  1. Visit the Enterprise Applications page
  2. Click New application
    3. image
  3. Click Create your own application
    4. image
  4. Provide a name for your application and click “Create”
    5. image

Assign Users and Groups

  1. Assign one or more users/groups to the application for them to access the application
    2. image

Configure the Application Registration

  1. Open the Application Registration for your application. To locate it from the Omnibar, search for the name and select the “Application” entry
    2. image
  2. Open the Authentication settings
    3. image
  3. Click “Add a platform”
    4. image
  4. Choose Single-page Application
    5. image
  5. Provide the following Custom Redirect URL. (The chromiumapp.org origin is a special origin that the Chrome Web Browser uses client OAuth2 flow redirects.)
    6. https://mpjjildhmpddojocokjkgmlkkkfjnepo.chromiumapp.org/oauth2

Configure API Permissions

  1. Select Manage > API Permissions
    2. image
  2. Add some base permissions. To allow sign in, select “Microsoft Graph” and choose the Open ID permissions:
    3. image

Record the Application and Directory ID

  • Return to the Overview page for the application you created
    • image

  • Record the Application (client id) and Directory (tenant) ID for use with PixieBrix
    • image

Configure the PixieBrix Integration

ℹ️
To complete these steps for your team, you must be an Admin on your PixieBrix team. Alternatively, for development & testing, you may configure the integration in the Extension Console
  1. Open the PixieBrix Admin Console: https://app.pixiebrix.com/
  2. Select Integrations in the left side nav
    3. image
  3. Click “Add Integration”
    4. image
  4. Search for Microsoft Azure
  5. Provide the following information for the Application
    • Pushdown (read-only): the integration configuration will be pushed to your team members. They will each authenticate individually with the application
    • Application (client) ID: from the Application Registration Overview
    • Directory (tenant) ID: from the Application Registration Overview
    • Scope: for information on available Azure scope names, see https://learn.microsoft.com/en-us/graph/permissions-reference
      • image

Testing the Integration Configuration in a Mod

  1. Create a new Mod in the Page Editor, e.g., a Trigger
  2. Add an HTTP Request Brick
  3. Configure the brick:
    1. URL: https://graph.microsoft.com/v1.0/me
    2. Integration Configuration: select the Integration Configuration you configured in the previous section
    3. Method: get
      4. image
  4. Run the Mod
  5. Your browser will open the OAuth2 authentication flow
  6. After you authenticate, the Output Panel will show your user’s profile information:
    7. image

Twitter