Progress DataDirect for ODBC for Microsoft SharePoint User's Guide Release 8.0.0

OAuth 2.0 dynamic authorization code grant

Save PDF

OAuth 2.0 dynamic authorization code grant

Save PDF

Last Updated: July 30, 2025
2 minute read

DataDirect Connectors
ODBC
Microsoft SharePoint 8.0
Documentation

The OAuth 2.0 dynamic authorization code grant allows you to initiate an authorization code grant flow by specifying login credentials using the login prompt for your service, thereby providing a method to authenticate without fetching access and refresh tokens via the Configuration Manager or third-party application.

The following string includes the options used to connect with the OAuth 2.0 dynamic authorization code grant.

Driver=DataDirect 8.0 Microsoft SharePoint;
AuthenticationMethod=24;EnableLoginPrompt=true;SQLEngineMode=2;
ServiceURL=serviceurl;ClientID=client_id;ClientSecret=client_secret;
AuthURI=auth_uri;TokenURI=token_uri;Scope=scope;
RedirectURI=redirect_uri;[attribute=value[;...]];

where:

serviceurl: specifies the URL of a SharePoint site (or "site collection"), for example, https://mycorp.sharepoint.com/sites/marketing/global. The URL must include the base URL (https://mycorp.sharepoint.com/), as well as the path to the site (marketing/global). The driver uses the base URL to infer an OData endpoint, and the site path is used to locate the site that will be accessed.

client_id: specifies the client ID key for your application.

client_secret: specifies the client secret for your application.
Important: The client secret is a confidential value used to authenticate the application to the server. To prevent unauthorized access, this value must be securely maintained.

auth_uri: specifies the endpoint for obtaining an authorization code from a third-party authorization service.

token_uri: specifies the endpoint used to exchange authentication credentials for access tokens.

scope: specifies an OAuth scope or a space-separated list of OAuth scopes that limit the permissions granted by an access token. For example: Scope=Web.Read List.Write.

redirect_uri: specifies the endpoint to which the client is returned after authenticating with a third-party service. Note that the value of the Redirect URI (RedirectURI) option must include the port number. For example, RedirectURI=http://localhost:80 or RedirectURI=http://localhost:8080.

attribute=value: specifies connection option settings. Multiple options are separated by a semi-colon.

The following example connection string includes the options for connecting with the OAuth 2.0 dynamic authorization code grant.

Driver=DataDirect 8.0 Microsoft SharePoint;
AuthenticationMethod=24;EnableLoginPrompt=true;SQLEngineMode=2;
ServiceURL=https://mycorp.sharepoint.com/sites/marketing/global;
ClientID=abcdefghij1k2lmn3o4p5qr67s;ClientSecret=FaZBFRsGXTaR;
AuthURI=https://login.microsoftonline.com/xyzabc111000/oauth2/v2.0/authorize;
TokenURI=https://login.microsoftonline.com/xyz123abc/oauth2/token;
Scope=https://mycorp.sharepoint.com/offline_access;
RedirectURI=http://localhost:80;