Create an App Service for the SharePoint Online Microservice
As part of the deployment process for the SharePoint Online microservice, an app service needs to be created to host the microservice and configured for authentication to access the key vault as needed.
Create the app service
Log in to your Azure portal as a user with the necessary permissions to create an App Service.
In Azure, navigate to All Services > App Services and create a new App service.
Under Project Details, select a Subscription and then create a Resource Group for the App Service.
Under Instance Details, enter the following information:
Name – Enter a name for the app service
Publish – Select Code
Runtime Stack – Select .NET Core 3.1 (LTS)
Operating System – Select Linux
Region – Select the appropriate region
Click Review + Create.
Â
Click Create.
After the deployment of the App Service completes, click Go to resource.
On the Overview page, copy and save the URL for the app service. You will need this later.
Configure authentication
Navigate to the Authentication blade for the app service and click Add identity provider.
Select Microsoft.
On the Add an identity provider page, do the following:
App registration type – Select Pick an existing app registration in this directory.
Name or app ID – Select the service principal you created to provide Azure AD authentication for the microservice.
Issuer URL – Replace the default value with
https://login.microsoftonline.com/<Your Tenant ID>
Authentication – Select Require authentication.
Unauthenticated requests – Select HTTP 401 Unauthorized: recommended for APIs.
Token Store – Leave selected.
Click Add.
Create a managed identity for the app service
Navigate to the Identity blade for the app service.
Turn on System assigned to create the managed identity.
Save your changes.
Next steps
Provision a Cosmos DB Account for SharePoint Online
Â