Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

scal-203353 #9961

Merged
merged 1 commit into from
Apr 18, 2024
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,7 @@
:page-aliases: /admin/ts-cloud/ts-cloud-embrace-redshift-azure-ad-oauth.adoc
:connection: Redshift
:description: ThoughtSpot supports Microsoft Azure Active Directory (AD) OAuth for a Redshift connection.
:jira: SCAL-160062
:jira: SCAL-160062, SCAL-203353

ThoughtSpot supports Microsoft Azure Active Directory (AD) OAuth for a {connection} connection.
With Azure AD OAuth, the authorization server generates an access token from Azure AD on behalf of the ThoughtSpot user which authenticates them with {connection} and authorizes ThoughtSpot to query the database using their {connection} user account.
Expand Down Expand Up @@ -52,10 +52,11 @@ Example: `Redshift OAuth User Resource`
. After the application is created, select *Expose an API* from the left navigation pane. If this is your first setup, *Set* appears to the right of the *Application ID URI*.
+
image:redshift-expose-api.png[Expose an API]

+
[#step-8]
. Next to *Application ID URI*, select *Set* and change its value from `api://<alphanumeric value>` to `\https://<alphanumeric value>` and select *Save*.
+
image:redshift-app-uri-oauth-client2.png[Change the Application ID URI value from api:// to https://]
image:redshift-app-uri-oauth-client2.png[Change the Application ID URI value from api: to https:]
+
NOTE: The Application ID URI must be unique within your organization's directory, such as `\https://your.company.com/4d2a8c2b-a5f4-4b86-93ca-ack45667`.

Expand Down
3 changes: 2 additions & 1 deletion cloud/modules/ROOT/pages/connections-redshift-reference.adoc
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,7 @@
:experimental:
:connection: Redshift
:description: Learn the specific information needed to establish a secure connection to Amazon Redshift.
:jira: SCAL-203353

You need specific information to establish a seamless and secure connection.
The following fields are required, except where noted.
Expand All @@ -23,7 +24,7 @@ Database:: Specify the database associated with the account.
(IAM only) Secret Key:: Specify the secret key associated with the account.
(OAuth only) OAuth Client ID:: Enter the OAuth client ID associated with the {connection} database.
(OAuth only) OAuth Client Secret:: Enter the OAuth client secret associated with the {connection} database.
(OAuth only) Scope:: (External OAuth) Scope maps to a role in your Snowflake database.
(OAuth only) Scope:: Scope maps to a role in your Snowflake database.
+
For OAuth with Azure AD provider, it should be similar to `\https://<APPLICATION_ID_URI>/session:role:developer offline_access openid`.
For more information, see: xref:connections-redshift-azure-ad-oauth.adoc#step-8[part 1, step 8] in Configure Azure AD external OAuth for a {connection} connection.
Expand Down