Hello @Elliot !
Welcome to Microsoft QnA!
Yes , Azure provides a similar way to d the same thing with Application Registrations
https://learn.microsoft.com/en-us/azure/active-directory/develop/quickstart-register-app
https://learn.microsoft.com/en-us/azure/active-directory/fundamentals/auth-oauth2
Register your application with Azure AD. You do this in the Azure portal. Once registered, you'll get a client ID and a client secret. These are used to authenticate your app with Azure AD.
Configure your application to use Azure AD as an OAuth provider. This is generally done using a library or middleware that supports OAuth 2.0. In your case, since you're using Meteor/Node.js, you could use the passport-azure-ad
module. You would configure this with the client ID and client secret you got in the previous step.
When a user wants to log in, they will be redirected to the Azure AD login page. They enter their corporate Microsoft account credentials here. Azure AD then issues an authorization code, which is sent back to your application.
Your application exchanges this authorization code for an access token. This is done by making a POST request to the Azure AD token endpoint, including the client ID, client secret, authorization code, and redirect URI.
The access token can then be used to access resources on behalf of the user.
This process allows users to log in with their corporate Microsoft account with minimal configuration required on their end. You just need to make sure that they have Azure AD set up and that their users are registered in Azure AD.
You will also need to ensure that multi-tenant support is enabled for your application in Azure AD. This allows users from any Azure AD directory to log in, not just users from the directory your application is registered in. This is usually a setting you configure when you register your application.
I hope this helps!
Kindly mark the answer as Accepted and Upvote in case it helped!
Regards