Sending teams messages without setting up an Office 365 connector requires an authenticated user to send the messages. This user (or users) is stored in a Teams Messaging Account in FlexDeploy which can be managed at Topology->Integrations->Messaging.
The required prerequisites for sending messages this way are explained below.
This setup method is also required for approving tasks from Microsoft Teams. So, to approve tasks from Microsoft Teams (available in the 5.5.0.2 release), you must configure BOTH webhooks and a Teams Messaging Integration.
This plugin uses a Teams Messaging Account which contains all relevant credentials to connect to the Teams workspace. Navigate to Topology->Integrations->Messaging and create a new Account with the Provider set to MicrosoftTeams.
You must create an application in the Azure portal so the Microsoft identity platform can provide authentication and authorization services for your application.
Follow these steps to create the app registration:
Create a new client secret and capture client secret.
Record the secret's value for use in your client application code - it's never displayed again after you leave this page. |
Select API permissions > Add a permission > Microsoft Graph
Select delegated permissions. You can type the names of these permissions in to filter and find the necessary permissions quickly. The 7 or 8 permissions you need are:
The following image shows the minimum permissions required to send messages to teams and users.
After adding them all, click the Grant admin consent button. You should see checkmarks by each permission in the status column.
You may need to install the certificate for https://graph.microsoft.com/.default into your Java keystore. If this is the case, you will get an error about building a certificate path.