Reference for OpenID authentication

OpenID configuration is required for Outlook 365 E-Mail integration. It is also required when authentication is required, before the tia® Viewer Core displays documents.

Parent	Configuration	Required	Description

Parent	Configuration	Description
`spring.security.oauth2.client.provider.tia`	`issuer-uri`	Usually `https://login.microsoftonline.com/<tenant>/v2.0`
`spring.security.oauth2.client.provider.tia`	`user-name-attribute`	Defines where in the token the username can be found, usually name
`spring.security.oauth2.client.registration.tiaviewer`	`provider`	The provider that should be used. Should be `tia`
`spring.security.oauth2.client.registration.tiaviewer`	`client-id`	The public identification of the application, the ClientId
`spring.security.oauth2.client.registration.tiaviewer`	`client-secret`	The client secret for the application
`spring.security.oauth2.client.registration.tiaviewer`	`scope[0]`	fixed value `openid`
`spring.security.oauth2.client.registration.tiaviewer`	`scope[1]`	fixed value `email`
`spring.security.oauth2.client.registration.tiaviewer`	`scope[2]`	fixed value `profile`
`tia.security.oidc`	`type`	Usually `authorization_code`

Example Outlook 365 OpenID YAML configuration:

spring:
  security:
    oauth2:
      client:
        provider:
          tia:
            issuer-uri: https://login.microsoftonline.com/<tenant>/v2.0 
            user-name-attribute: name
        registration:
          tiaviewer:
            provider: azure
            client-id: <clientId>
            client-secret: <clientSecret>
            scope:
              - openid
              - email
              - profile

tia:
  security:
    oidc: authorization_code