Merge branch 'next' into keycloack-oauth-adapter

NoOne7135 · web-flow · commit 9d79cff1a632 · 2025-03-24T14:43:07.000+02:00
diff --git a/adminforth/documentation/docs/tutorial/05-Plugins/11-oauth.md b/adminforth/documentation/docs/tutorial/05-Plugins/11-oauth.md
@@ -285,6 +285,49 @@ Enter a password (e.g., testpassword).
 Uncheck "Temporary" (so the user doesn't have to reset the password).
 Click "Set Password".
 
+### Microsoft Adapter
+
+Install Adapter:
+
+```
+npm install @adminforth/microsoft-oauth-adapter --save
+```
+
+
+1. In the Microsoft [Azure Portal](https://portal.azure.com/), search for and click [App registrations](https://portal.azure.com/#view/Microsoft_AAD_RegisteredApps/ApplicationsListBlade), then `New registration`.
+2. Give your application a name. This name will be visible to your users.
+3. Set the audience for the app to `Accounts in my organizational directory and personal Microsoft accounts`. This allows your user to log in using any Microsoft account.
+5. Set the Redirect URI platform to Web and enter your project's redirect URI.
+6. Go to your app and search `API permissions`, click `Add a permission`, select `Microsoft Graph`, select `Delegated permissions`, enable permissions: `offline_access`, `openid`, `profile`, `User.Read`, click `Add permissions`.
+7. Serch `Certificates & secrets`, click `New client secret` and create client secret.
+6. Get Application ID and Client Secret.
+7. Add the credentials to your `.env` file:
+
+```bash
+MICROSOFT_OAUTH_CLIENT_ID=your_application_id
+MICROSOFT_OAUTH_CLIENT_SECRET=your_microsoft_client_secret
+```
+
+Add the adapter to your plugin configuration:
+
+```typescript title="./resources/adminuser.ts"
+import AdminForthAdapterMicrosoftOauth2 from '@adminforth/microsoft-oauth-adapter';
+
+// ... existing resource configuration ...
+plugins: [
+  new OAuthPlugin({
+    adapters: [
+      ...
+      new AdminForthAdapterMicrosoftOauth2({
+        clientID: process.env.MICROSOFT_CLIENT_ID,
+        clientSecret: process.env.MICROSOFT_CLIENT_SECRET,
+        useOpenID: true,
+      }),
+    ],
+  }),
+]
+```
+
 ### Need custom provider?
 
 Just fork any existing adapter e.g. [Google](https://github.com/devforth/adminforth-google-oauth-adapter) and adjust it to your needs. 
diff --git a/dev-demo/resources/users.ts b/dev-demo/resources/users.ts
@@ -18,6 +18,8 @@ import AdminForthAdapterGithubOauth2 from  "../../adapters/adminforth-github-oau
 
 import AdminForthAdapterFacebookOauth2 from "../../adapters/adminforth-facebook-oauth-adapter";
 import AdminForthAdapterKeycloakOauth2 from "../../adapters/adminforth-keycloak-oauth-adapter";
+import AdminForthAdapterMicrosoftOauth2 from "../../adapters/adminforth-microsoft-oauth-adapter";
+
 export default {
   dataSource: "maindb",
   table: "users",
@@ -108,6 +110,10 @@ export default {
           clientSecret: process.env.KEYCLOAK_CLIENT_SECRET,
           keycloakUrl: process.env.KEYCLOAK_URL,
           realm: process.env.KEYCLOAK_REALM,
+        }),
+        new AdminForthAdapterMicrosoftOauth2({
+          clientID: process.env.MICROSOFT_CLIENT_ID,
+          clientSecret: process.env.MICROSOFT_CLIENT_SECRET,
           useOpenID: true,
         }),
       ],
