How To Set Up Your Own Microsoft App (OpenID Connect)

Last updated 10/02/2023

Step 1

Log in to the your Azure Portal:

https://portal.azure.com/

Step 2

Under Azure services, click on App registrations.

If you don't see it, click on "more services" and search for it.

Step 2

Step 3

Click New Registration.

Step 3

Step 4

  • Enter a name for your application (we recommend using your organization name).
  • Select Single Tenant for the supported account types.
  • Set the Redirect URI to Web, then enter:

    https://api.breadbutter.io/callback

Note: For the Microsoft Enterprise Provider, please ensure that the account type is Single Tenant. This restricts login to your domain only, whereas "Multitenant" will allow any Microsoft user to log in.

Step 4

Step 5

  • Click Register.
  • After the application is created, copy and save the Application (client) ID for the last step.
Step 5

Step 6

  • Click on Endpoints at the top of the page, and copy the following for the last step:
    • OAuth 2.0 authorization endpoint (v2)
    • OAuth 2.0 token endpoint (v2)
Step 6

Step 7

  • Click on Certificates & Secrets, and then click on New client secret.
  • Enter a description, set your desired expiry, and then click Add.
  • Set a reminder for yourself to replace this Secret before it expires. If the Secret expires, your users will no longer be able to log in with the provider.
Step 7

Step 8

  • Your Secret value will be generated automatically, and you must copy this Secret value down immediately; the value will be hidden forever if you navigate away from the page, so you must regenerate a new one if the value is lost.
Step 8

Step 9

Bread & Butter Setup:

  1. Go to https://app.breadbutter.io/sign-in/
  2. Click Sign In and authenticate (or Sign Up make a new account and authenticate)
  3. Go to Settings in the left menu.
  4. Click on the Microsoft button under SSO Settings > Enterprise Accounts.
  5. Choose OpenID Connect for the protocol.
  6. Enter a name.
  7. Enter a description (optional).
  8. Enter the OAuth 2.0 Authorization Endpoint (v2) value from the Endpoints page in Azure.
  9. Enter the OAuth 2.0 Token Endpoint (v2) value from the Endpoints page in Azure.
  10. Enter the Application (client) ID from the Overview page in Azure.
  11. Enter the Client Secret that you generated and saved above.
  12. Click Save.
  13. Enable Microsoft by clicking the new entry in the Microsoft Identity Providers list
Step 9

©2023 Bread & Butter IO Inc. - All Rights Reserved. Privacy policy | Terms of Service

API

Add authentication & API event tracking to your website/app with a script tag & configuration