How to upgrade from ADAL to MSAL 2.0 (Server/DC) SharePoint Online
Authentication Upgrade
New enhanced security has been introduced to the SharePoint Connector for Confluence. After updating to SharePoint Connector for Confluence App version 1.10.x, the old AzureAD application registration will not be able to authenticate with the existing configuration. Therefore, in order to use the app and the new enhanced authentication mechanism after updating to version 1.10.x, you need to take the following steps.
Prerequisite
Azure AD account with administration permissions
Azure App registration changes
The subsequent modifications will enable you to utilize the new MSAL 2.0 authentication mechanism for your AzureAD application. Thus, follow these steps:
Navigate to your exiting app registration and then go to the Authentication tab
Click on “Add a platform” and select “Single-page application”
Change platform configuration to the new value (click to enlarge)Enter the new redirect url “https://<your confluence domain>/plugins/servlet/csi/auth-helper” and click on “Configure”
New Redirect URI configured
You should now have a new redirect URL specified under the Single-page application URLs
Remove old Redirect URIs
Disable implicit flow
Since we have now switched to the new MSAL library, we need to disable Implicit grant and hybrid flows by unchecking “Access tokens” and “ID tokens”.
Issue with loading macros after update
In some instances, outdated data may be cached in your browser, preventing the use of the latest file versions. In this situation, clearing the browser cache or pressing CTRL + F5 could be beneficial.
Related articles