Integration with Azure Active Directory
Create App registration for Claim Insight in your AD (Microsoft Entra ID).
You will need to obtain client ID and tenant ID from App registration.
Create the client secret and save its value.
You will also need to specify Redirect URI in the format https://<host>:<port>/clinsight/login/oauth2/code/
.
Create Enterprise application and assign users/groups.
You will need to define the following environment variables for the Claim Insight docker container:
- SECURITY_DISABLEAUTH=false
- OAUTH2_PROVIDER=azure
- SPRING_CLOUD_AZURE_ACTIVEDIRECTORY_ENABLED=true
- SPRING_CLOUD_AZURE_ACTIVEDIRECTORY_PROFILE_TENANTID=tenant ID from the App registration
- SPRING_CLOUD_AZURE_ACTIVEDIRECTORY_CREDENTIAL_CLIENTID=client ID from the App registration
- SPRING_CLOUD_AZURE_ACTIVEDIRECTORY_CREDENTIAL_CLIENTSECRET=client secret from the App registration
Claim Insight will automatically forward to the Microsoft login page when you attempt to access it.