Microsoft
This guide explains how to set up Microsoft as an authentication provider with Stack Auth. Microsoft OAuth allows users to sign in to your application using their Microsoft account.
For Development purposes, Stack Auth uses shared keys for this provider. Shared keys are automatically created by Stack, but show Stack's logo on the OAuth sign-in page. You should replace these before you go into production.
Integration Steps
Create a Microsoft OAuth App
- Navigate to the Microsoft Entra admin center (formerly Azure AD).
- In the left sidebar, go to Applications > App registrations.
- Click New registration at the top of the page.
- Enter a name for your application.
- Under Supported account types, select the option that best suits your needs (typically Accounts in any organizational directory and personal Microsoft accounts).
- In the Redirect URI section, select Web as the platform and enter
https://api.stack-auth.com/api/v1/auth/oauth/callback/microsoft - Click Register to create the application.
- You'll be redirected to the app's Overview page. Note the Application (client) ID displayed at the top.
- In the left sidebar, click Certificates & secrets.
- Under Client secrets, click New client secret.
- Add a description, select an expiration period, and click Add.
- Copy the Value of the client secret immediately (you won't be able to see it again).
Enable Microsoft OAuth in Stack Auth
- On the Stack Auth dashboard, select Auth Methods in the left sidebar.
- Click Add SSO Providers and select Microsoft as the provider.
- Set the Client ID (Application ID) and Client Secret you obtained from the Microsoft Entra admin center.
Need More Help?
- Check the Microsoft identity platform Documentation
- Join our Discord