MS SharePoint Integration 

How are authentication and authorization managed in the MS SharePoint to Prolaborate connection? 

Authentication and authorization between SharePoint and Prolaborate are managed securely through Azure Active Directory (AAD) using the OAuth 2.0 protocol. 

Authentication: 

The SharePoint web part uses AAD to authenticate users. This ensures the web part can: 

• Identify the currently logged-in SharePoint user. 
• Access services like Microsoft Graph or Prolaborate APIs on their behalf. 

Authorization: 

The web part requests specific permissions during setup, including: 

• User.Read – to access basic user profile details via Microsoft Graph. 
• access_as_user – to perform actions in the Prolaborate API using the authenticated user’s identity. 

These permissions are usually granted through the AAD admin consent flow, ensuring a secure and authorized connection. 

Token Management: 

Token acquisition and refresh are handled automatically by AADHttpClient, which: 

• Manages access tokens in the background. 
• Ensures tokens are refreshed as needed without user disruption. 
• Validates tokens on the backend before allowing access to APIs. 

All API interactions are strictly validated to confirm the user’s identity and permissions. 

Does the SharePoint to Prolaborate connection use HTTPS for communication, or is it based on a proprietary protocol? 

Yes. All communication between SharePoint and Prolaborate is conducted over HTTPS. 

• The SharePoint web part is hosted on Microsoft Azure and relies exclusively on HTTPS for all data exchanges. 
• All connections with external services, including Microsoft Graph and Prolaborate APIs, are encrypted and routed through secure HTTPS endpoints. 
• This ensures robust data protection, integrity, and confidentiality during all interactions. 

The HTTPS-only design guarantees secure, encrypted communication meeting enterprise-grade security standards.