You have a line-of-business API that is secured by using Azure Active Directory (Azure AD).
You deploy a solution to the app catalog. The solution requests permission to the API.
What should you do in the SharePoint admin center to ensure that the solution can access the API?
Developers building a SharePoint Framework solution that requires access to specific resources secured with Azure AD list these resources along with the required permission scopes in the solution manifest. When deploying the solution package to the app catalog, SharePoint creates permission requests and prompts the administrator to manage the requested permissions. For each requested permission, tenant administrators can decide whether they want to grant or deny the specific permission.
All permissions are granted to the whole tenant and not to a specific application that has requested them.
When the tenant administrator grants a specific permission, it is added to the SharePoint Online Client
Extensibility Azure AD application, which is provisioned by Microsoft in every Azure AD and which is used by the SharePoint Framework in the OAuth flow to provide solutions with valid access tokens.
Currently there are no comments in this discussion, be the first to comment!