This section explains how to register and configure your application in Azure Active Directory to use Microsoft Graph and MSAL.

7.1. Accessing the Azure Portal

Access the Portal:
Visit https://portal.azure.com and log in with an account that has administrative permissions.

Navigate to Azure Active Directory:
Select "Azure Active Directory" from the side menu.

7.2. Register a New Application

Go to "App registrations":
Select "App registrations" within Azure Active Directory.

Create a New Registration:

• Click on "New registration" and complete the form:
  • Name : "OneDrive Personal Picker Plugin" (or a descriptive name).
  • Supported account types :
    Select "Accounts in any organizational directory and personal Microsoft accounts (e.g., Skype, Xbox)" to support personal accounts.
  • Redirect URI :
    Select "Web" and enter the redirection URI, for example:
    https://testpluging.bubbleapps.io/version-test/onedrive.
• Click "Register."

7.3. Configure the Application Registration

7.3.1. Obtain the Client ID

• Copy the Application (client) ID displayed in the "Essentials" section of the registered application. This value will be used in the plugin.

7.3.2. Configure the Redirect URI

• Go to "Authentication" and ensure the redirect URI (e.g., https://testpluging.bubbleapps.io/version-test/onedrive) is listed.
• If necessary, add a platform by selecting "Add a platform" and choosing "SPA"
• Check the option "Implicit grant and hybrid flows" if your application requires it.

7.3.3. Configure API Permissions (Microsoft Graph)

Go to "API permissions":
Select "API permissions" from the side menu.

Add Permissions:

• Click "Add a permission" and select "Microsoft Graph."
• Add delegated permissions such as:
  • For read-only access: Files.Read.All and User.Read.
  • For read and write access: Files.ReadWrite.All and User.Read.
• If using "Application" type permissions, click "Grant admin consent."

7.3.4. Configure Certificates and Secrets (Optional)

• If you need a client secret, go to "Certificates & secrets," create one, and copy the value immediately, as it cannot be viewed again.

7.4. Additional Configurations

Review the Manifest:
From the "Manifest" section, you can adjust values like "signInAudience."

Branding and Properties:
Customize the logo, name, and other details in "Branding," and review the "Overview" section to confirm all information is correct.

7.5. Integration with the Plugin in Bubble

Client ID:
Paste the obtained Client ID into the client_id field of the plugin properties in Bubble.

Redirect URI:
Ensure the Redirect URI configured in Azure matches the one you use in Bubble.

Permissions:
Verify that the permissions configured in Azure correspond to the operations the plugin will perform.