Closed martinlingstuyl closed 5 months ago
Looks like a great suggestion to me 👍
Additionally, we could add a working example to this docs page: https://pnp.github.io/cli-microsoft365/user-guide/using-own-identity
Awesome suggestion and I had the same idea when reading your latest blog about sites.selected permissions 😉. You Rock 👏🤩
@Adam-it @martinlingstuyl ok as we discussed in #1963, you can assign me to this one as well
When creating a custom identity for the CLI, one of the steps is to flip a switch in the azure portal:
Allow Public Clients Flow
After which the device code flow can be used.
It would be nice to have a oneliner that can create a CLI identity app registration.
However, within the CLI we don't have an option for enabling the above mentioned toggle. We can create the app using a manifest, but that's quite complicated. We should add a flag option to do just that:
Options
For entra app add:
--allowPublicClientFlows
For entra app set:
--allowPublicClientFlows [allowPublicClientFlows]
Implementation
The Microsoft Graph does not have a property to do this. So in the CLI we should update the app using the manifest.
We're talking about the following manifest property:
https://learn.microsoft.com/en-us/entra/identity-platform/reference-app-manifest#allowpublicclient-attribute