Microsoft (Client Credentials)

Overview

Pre-built tooling

Pre-built integrations

Access requirements

Setup guide

Useful links

API gotchas

Pre-built tooling

✅ Authorization

Tools	Status
Pre-built authorization (OAuth)	✅
Credentials auto-refresh	✅
Pre-built authorization UI	✅
Custom authorization UI	✅
End-user authorization guide	✅
Expired credentials detection	✅

✅ Read & write data

Tools	Status
Pre-built integrations	🚫 (time to contribute: <48h)
API unification	✅
2-way sync	✅
Webhooks from Nango on data modifications	✅
Real-time webhooks from 3rd-party API	🚫 (time to contribute: <48h)
Proxy requests	✅

✅ Observability & data quality

Tools	Status
HTTP request logging	✅
End-to-type type safety	✅
Data runtime validation	✅
OpenTelemetry export	✅
Slack alerts on errors	✅
Integration status API	✅

✅ Customization

Tools	Status
Create or customize use-cases	✅
Pre-configured pagination	🚫 (time to contribute: <48h)
Pre-configured rate-limit handling	🚫 (time to contribute: <48h)
Per-customer configurations	✅

Pre-built integrations

No pre-built integration yet (time to contribute: <48h)

Not seeing the integration you need? Build your own independently.

Access requirements

Pre-Requisites	Status	Comment
Paid dev account	❓
Paid test account	❓
Partnership	❓
App review	❓
Security audit	❓

Setup guide

No setup guide yet.

Need help getting started? Get help in the community.

Contribute improvements to the setup guide by editing this page

Useful links

Contribute useful links by editing this page

API gotchas

Microsoft has a unified OAuth system for their various APIs. This provider should work for most of them (e.g. Microsoft EntraID, OneNote, Onedrive, Outlook, Sharepoint Online, Microsoft Teams etc.).
Microsoft offers a tool that allows you to construct and perform Graph API queries and see their response for any apps on which you have an admin, developer, or tester role. For more information you can check Microsoft Graph Explorer.
Please be aware that the Microsoft Graph API implements throttling to manage the volume of requests. For more information on handling throttling, refer to the Microsoft Graph Throttling Guidance.
If you are developing an app for users within your own organization and the app has already been granted adequate permissions at the organization level with user consent turned off, you must override the integration config when calling the create connect session method:
- Override authorization_params by setting only scope: '.default' and "prompt": "" to remove the consent screen. Note that if consent is required it will prompt the user for consent due to the “.default” scope.
- Override authorization_params by setting only scope: '.default offline_access' and "prompt": "" to remove the consent screen. Note that if consent is required it will prompt the user for consent due to the “.default” scope.
- Set the .default scope documentation to ensure the permissions remain the same as those granted at the organization level.

const { data } = await nango.createConnectSession({
  [...],
  integrations_config_defaults: {
    "microsoft-oauth2-cc": {
      authorization_params: {
        scope: '.default offline_access',
        "prompt": ""
      }
    }
  }
});

If this is not done, the app will show a consent screen prompting the user to grant permissions which the user will be unable to do without admin access.

Contribute API gotchas by editing this page

Connect to Microsoft (Client Credentials)

Guide to connect to Microsoft (Client Credentials) API using Nango Connect.

APIs & Integrations

​Overview

Pre-built tooling

Pre-built integrations

Access requirements

Setup guide

Useful links

API gotchas

​Pre-built tooling

​Pre-built integrations

​Access requirements

​Setup guide

​Useful links

​API gotchas

Connect to Microsoft (Client Credentials)

Overview

Pre-built tooling

Pre-built integrations

Access requirements

Setup guide

Useful links

API gotchas