Forum Discussion
darrellaas
Aug 04, 2016MVP
Sign in permissions for this network: Access your data anytime?
Hi Network managers. Bob McKeating has a question about the sign in requirements for this network. When you sign in with your Office 365 account it advises: O365 Network needs permission to: View ...
MichaelHolste
Microsoft
Nov 09, 2017Hey Adam,
That just gives SSO the permission to sign you in, it doesn't mean it will sign you into the Tech Community at any time. Here's a copy/paste about how this works:
Here is the exact call that we are making to graph.microsoft.com , hopefully to help ease your concerns. As with any app that uses Azure AD/SSO there is a minimum set of calls needed to authenticate the user and then a set of information that you grant access to.
Graph Info Here: https://graph.microsoft.io/en-us/
We are using OAUTH v2
https://azure.microsoft.com/en-us/documentation/articles/active-directory-protocols-oauth-code/
We are currently using "User.Read openid email profile offline_access" as the scope and then we are placing email, first name, last name, and company name into your community profile to create the account so that it has your first and last name.
These are all very standard and are a minimum set of info for the community to simply place you into a profile that you can then completely choose the right information and settings for your liking.
Hope that helps!
Trey Miller
Oct 05, 2018Copper Contributor
Why does the prompt not explicitly declare each piece of data that it will be granted access to? This makes it very difficult to accept the access request. "Access your data anytime" sounds very ominous without clarifications, and there are no clarifications without doing a web search and finding this thread.