SharePoint Archives - File transfer tool from Limagito

23 Oct
SharePoint OAuth 2.0 authorization code flow
Version v2023 is needed and available here.
At this moment our advise is to use: How-to access sharepoint rest api using oauth
This blog article is based on the following information: Microsoft identity platform and OAuth 2.0 authorization code flow
First you’ll need to register an AD app with your AD Tenant. It will assign you the necessary information you need for the OAuth2 setup.
Some links to get you started:
Register AD app with your AD Tenant
Configure a client application to access a web API
We added some screenshots of a possible setup in our File Mover:
Please set Auth Type in our SharePoint setup to: ‘OAuth 2.0 Authorization Code Flow’
OAuth2 Setup:
Enable ‘Code Challenge’
Enable ‘Include Nonce’
Set ‘Authorization Endpoint URL’
https://login.microsoftonline.com/%realm/oauth2/v2.0/authorize
%realm will be replaced by the Realm value (= Tenant or Tenant_ID). You can also enter the full URL including the Tenant.
Set ‘Token Endpoint URL’
https://login.microsoftonline.com/%realm/oauth2/v2.0/token
%realm will be replaced by the Realm value (= Tenant or Tenant_ID). You can also enter the full URL including the Tenant.
Enter your Client ID and Client Secret (please check the article howto create them)
Set ‘Scope’ to: openid offline_access https://graph.microsoft.com/
We are not 100% sure about the Scope at this moment .. waiting on feedback
Set Response Mode to: form_post
Set Response Type to: code+id_token
When using %realm in the ‘Authorization or Token Endpoint URL’
Please set ‘Realm’ to your Tenant of Tenant_ID
After the setup, please click on the <Get> button. If you get a firewall popup, you’ll need to accept this otherwise we will not be able to capture the Tokens.
Follow the steps in the browser and it should fill the Refresh and Access Token afterwards. Do not forget to click <Save>.
$SharePoint C:\Data\Foto\v2023\SharePoint\OAuth 2.0 authorization code flow\SharePoint authorization code flow$
Common Setup:
If you want extra debug information during the test, please enable ‘Add Control Information to Log’
#Filetransfer #SharePoint
If you need any help with this ‘how-to-access-sharepoint-rest-api-using-oauth’ option, please let us know.
Best Regards,
Limagito Team
By Limagito-Team SharePoint oauth, OAuth2, SharePoint
23 Oct
How to access SharePoint Rest API using OAuth
Version v2023 is needed and available here.
This Authorization method using OAuth2 was tested by a customer of us (Eddy, we really appreciate this). It is based on the following article.
As mentioned in the article, first you’ll need to register an AD app with your AD Tenant. It will assign you the necessary information you need for the OAuth2 setup
Feedback customer:
This required the following settings in Azure. Maybe only the delegated permissions under Graph are enough, didn’t play too much.
Also the the redirect url should be set for the app, and ID_token must be enabled.
Limagito File Mover Setup:
In this case the Auth Type in our SharePoint setup should be set to: ‘OAuth 2.0 Authorization Code Flow’
OAuth2 Setup:
Disable ‘Code Challenge’
Seems to work also when enabled (tested by customer)
Enable ‘Include Nonce’
Set ‘Authorization Endpoint URL’
https://login.microsoftonline.com/%realm/oauth2/authorize
%realm will be replaced by the Realm value (= Tenant or Tenant_ID). You can also enter the full URL including the Tenant.
Set ‘Token Endpoint URL’
https://login.windows.net/%realm/oauth2/token?api-version=1.0
%realm will be replaced by the Realm value (= Tenant or Tenant_ID). You can also enter the full URL including the Tenant.
Enter your Client ID and Client Secret (please check the article howto create them)
Set ‘Scope’ to: openid
If you don’t receive a Refresh Token, change it to: openid offline_access
Customer used: https://<Tenant>.sharepoint.com/.default
Set ‘Resource’ to: https://graph.microsoft.com/
Customer used: https://<Tenant>.sharepoint.com
Set Response Mode to: form_post
Set Response Type to: id_token+code
When using %realm in the ‘Authorization or Token Endpoint URL’
Please set ‘Realm’ to your Tenant of Tenant_ID
After the setup, please click on the <Get> button. If you get a firewall popup, you’ll need to accept this otherwise we will not be able to capture the Tokens.
Follow the steps in the browser and it should fill the Refresh and Access Token afterwards. Do not forget to click <Save>.
OAuth2 setup used by customer (info about the .default Scope: here):
OAuth2 setup we received from our SharePoint source code provider:
Common Setup:
If you want extra debug information during the test, please enable ‘Add Control Information to Log’
#Filetransfer #SharePoint
If you need any help with this ‘how-to-access-sharepoint-rest-api-using-oauth’ option, please let us know.
Best Regards,
Limagito Team
By Limagito-Team OAuth2 SharePoint azure, oauth, OAuth2, SharePoint
25 Nov
Added SharePoint OAuth2 Authentication in Limagito File Mover
Added SharePoint OAuth2 Authentication
In version v2020.22.25.0 we added OAuth2 Authentication as a fourth method for connecting to SharePoint.
Please select ‘Online Authentication using OUath2’ as Authentication Type (Setup Tab). After selection the OAuth2 Tab will be visible.
We received the following information from the customer (thank you Brad):
Client Id
Client Secret
Redirect URI

Update March 2022
We had a user getting the following error when trying to Get the OAuth2 Token: AADSTS70000
He had to change App Domain to: www.localhost.com
and
Redirect URI to the Site url (without the default.aspx at the end) in the SharePoint Application setup AND Limagito OAuth2 setup
We used the information from the customer and added them in the OAuth2 Setup:
Client ID
Client Secret
Scope, we used Web.Manage
Redirect URI
Next, click <GET>
At this moment we’ll start a request for the Realm and Principal ID of the SharePoint Site. A Dialog will appear with information about the next step.
Now you’ll need to click ‘Trust It’ to continue to the next step:

The Authorization Code will appear in the address bar of your browser.
Please COPY / PASTE this complete URL (https://…) in the ‘Auth Code’ field of the OAth2 Setup screen. We’ll strip the part we need and trigger a request for a Refresh and Access token. The response will be added to the ‘Refresh Token’ and ‘Access Token’ field of the OAuth2 setup.
Please click <Save> to save these Tokens which we’ll need to connect.
If you need any help with our ‘SharePoint OAuth2 Authentication’ option, please let us know.
Best Regards,
Limagito Team
By Limagito-Team SharePoint AADSTS70000, OAuth2, SharePoint