You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: README.md
+27-5Lines changed: 27 additions & 5 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -9,18 +9,40 @@ This a plugin for LSC, using Microsoft Graph API
9
9
The object of this plugin is to synchronize users from a Microsoft Azure active directory to a referential.
10
10
For example it can be used to synchronize the users in an Azure AD to an LDAP repository.
11
11
12
-
### Architecture
12
+
### Configuration
13
13
14
-
WIP
14
+
The plugin connects to Microsoft Graph API as a [deamon app](https://docs.microsoft.com/en-us/azure/active-directory/develop/scenario-daemon-overview). More information on how to register it on Microsoft Azure can
15
+
be found [here](https://docs.microsoft.com/en-us/azure/active-directory/develop/scenario-daemon-app-registration).
15
16
16
-
### Configuration
17
+
The application must have the `Application permission``User.Read.All` permission granted. The documentation about permissions and consent can be found [here](https://docs.microsoft.com/en-us/azure/active-directory/develop/v2-permissions-and-consent).
17
18
18
-
WIP
19
+
At the time being the plugin only allows to connect to the API using a client secret.
19
20
20
21
### Usage
21
22
22
-
WIP
23
+
There are examples of configuration in the `sample` directory. The `lsc.xml` file describes a synchronization from Microsoft Graph API to an LDAP repository.
24
+
25
+
The values to configure are:
26
+
27
+
#### Source service
28
+
29
+
##### Connection
30
+
31
+
-`connections.pluginConnection.msGraphApiConnectionSettings.clientId`: The client id for the application
32
+
-`connections.pluginConnection.msGraphApiConnectionSettings.clientSecret`: The client secret used to connect to the application
33
+
-`connections.pluginConnection.msGraphApiConnectionSettings.tenant`: The Azure AD tenant
34
+
35
+
##### API parameters
36
+
37
+
-`tasks.task.pluginSourceService.filter`: (Optional, default none) The filter to use for fetching the list of pivots. For the syntax to use in those filters the syntax can be found [here](https://docs.microsoft.com/en-us/graph/query-parameters#filter-parameter).
38
+
-`tasks.task.pluginSourceService.pivot`: (Optional, default `mail`) The field to use as pivot.
39
+
-`tasks.task.pluginSourceService.pageSize`: (Optional, default none) The page size used to paginate the results from the graph API. Default is no page size, but the API has a `100` default page size.
40
+
-`tasks.task.pluginSourceService.select`: (Optional, default none) The comma separated list of fields to gather when getting the details of a user. The syntax to use can be found [here](https://docs.microsoft.com/en-us/graph/query-parameters#select-parameter). By default the API returns a default set of properties.
23
41
42
+
The jar of the Microsoft graph API LSC plugin must be copied in the `lib` directory of your LSC installation. Then you can launch it with the following command line:
0 commit comments