The required list of required information in order to setup the Azure AD Authentication is as follows:
identityMetadata - metadata link with tenant(directory ID) information,
clientID - the application ID
clientSecret
This can be setup in the Azure portal as described in this walkthrough:
1. Login to azure under
https://portal.azure.com/
2. Under App Registrations, register your new application.
It will ask you for name, supported accounts and redirect uri
Name and supported accounts please setup as per your preferences.
Redirect url required is https://login.akiomacloud.de/auth/azure/openid/return
where https://login.akiomacloud.de would be the domain running the Node.js server
3. Update the metadata link in azure-config.js with the new tenant information
identityMetadata: 'https://login.microsoftonline.com/24981a26-eb7a-4f13-95d4-66827d36dec8/.well-known/openid-configuration'
Where '24981a26-eb7a-4f13-95d4-66827d36dec8' is the tenant id (see screenshot)
4. Update the new clientID in the azure-config.js file to match your application clientID.
clientID: '87f210d2-d3af-43dd-ba98-07adaff3e791',
(see screenshot)
5. Go to the newly registered application settings and generate a new secret key. Use this key in the config file for azure(azure-config.js)
clientSecret: 'xxxxx?=xxxxxx_xxxxxx?EQphp_e0[=5'
This can be found in the application settings, App Registrations -> select application -> under Certificates & secrets
(see screenshot)
6. After setting up all the required configuration, restart your Node.js server and you are good to go!