Required App Registrations
- Armin Franke
- Stefan Franz
For the Custom Connector to work with SharePoint and tia® Connect, the following App Registrations need to be created.
App Registrations for metadata and file content (global)
For access from SharePoint the following API permissions are required:
These are global Permissions, you can limit the access to individual sites. see Required App Registrations | App Registrations for metadata and file content (sites)
API | Permission | Type | Description |
|---|---|---|---|
|
| Application | Have full control of all site collections |
|
| Application | Read and write items in all site collections |
App Registrations for metadata and file content (sites)
API | Permission | Type | Description |
|---|---|---|---|
|
| Application | Have full control of selected site collections |
|
| Application | Read and write items in selected site collections |
The permission requires further configuration: Controlling app access on a specific SharePoint site collections is now available in Microsoft Graph - Microsoft 365 Developer Blog
Use the e.g. Microsoft Graph Explorer or Postman to send this request with for sites that should use tia® Connect:
POST https://graph.microsoft.com/v1.0/sites/<siteId>/permissions
Content-Type: application/json
{
"roles": ["fullcontrol"],
"grantedToIdentities": [{
"application": {
"id": "<ClientId>",
"displayName": "<AppRegistration Name>"
}
}]
}The Site name can be found with Graph API, too:
https://graph.microsoft.com/v1.0/sites?search=<SiteName>&$select=idThe result contains the siteId:
{
"@odata.context": "https://graph.microsoft.com/v1.0/$metadata#sites(id)",
"value": [
{
"id": "<siteId>
}
]
}
App Registrations for communication with tia® Connect via the Custom Connector
API | Permission | Type | Description |
|---|---|---|---|
|
| Delegated | Maintain access to data you have given access to |
|
| Delegated | Sign in and read user profile |
|
| Application | write-archive |