Versions Compared

Old Version 1

changes.mady.by.user Blagica

Saved on

compared with

New Version 2

changes.mady.by.user Blagica

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Creating a custom scope

Normally, access tokens issued by Azure AD are issued for Microsoft Graph. However, ModelOp Center requires that the access tokens requested with the following apps be issued for the apps themselves and not Microsoft Graph: gateway-service, internal-client, external-integration-client, and go-cli.

...

  1. Open the app registration

  2. Open “API permissions” tab

  3. Click “Add a permission”

    1. Click “APIs my organization uses”

    2. Search for the app by name. For example, “gateway-service”. Select the app

    3. Click “Delegated permissions”

    4. Select custom_scope

  4. Click “Grant admin consent for _”

Creating an app role

To create an app role for a given app, follow these steps:

  1. Open the app registration

  2. Click “Create app role”

    1. Display name: modelop_client

    2. Allowed member types: Applications

    3. Value: modelop_client

    4. Description: This role is used to distinguish between OAuth2 clients and end users