OAuth Data Connectors: Dynamic Redirect URI Support Simplifies Authentication Setup

What Changed

Dynamic redirect URI support was implemented across four OAuth-based CCF connectors: Azure DevOps Auditing, Google Cloud Platform Cloud Monitoring, Google Workspace Reports, and Workday. The connectors now use template variable {{redirectUri}} instead of hardcoded portal URIs.

Security Impact (Visibility & Fidelity)

Previously, these connectors required manual Azure portal redirect URI configuration during OAuth app registration. The hardcoded “https://portal.azure.com/TokenAuthorize/ExtensionName/Microsoft_Azure_Security_Insights" caused deployment friction and limited portal flexibility.

Dynamic redirect URIs enable:

• Simplified connector deployment without manual portal configuration
• Support for different Microsoft Sentinel environments and tenants
• Reduced configuration errors that could prevent data ingestion

Implementation Details

Each connector received identical updates:

• Connector definitions now include “showRedirectUri”: true and “sendRedirectUri”: true flags
• Polling configurations replaced static redirect URIs with {{redirectUri}} template variables
• Documentation updated to reference dynamic URI values from the connector experience
• PowerShell tooling enhanced to support the redirectUri parameter

The change affects authentication flows for Azure DevOps audit logs, Google Cloud Platform monitoring data, Google Workspace reports, and Workday activity logs.

Affected Files

Solutions/AzureDevOpsAuditing/Data Connectors/AzureDevOpsAuditLogs_CCP/AzureDevOpsAuditLogs_DataConnectorDefinition.json
Solutions/AzureDevOpsAuditing/Data Connectors/AzureDevOpsAuditLogs_CCP/AzureDevOpsAuditLogs_PollingConfig.json
Solutions/Google Cloud Platform Cloud Monitoring/Data Connectors/GCPMonitoringLogs_CCP/GCPCloudMonitoringLogs_ConnectorDefinition.json
Solutions/Google Cloud Platform Cloud Monitoring/Data Connectors/GCPMonitoringLogs_CCP/GCPCloudMonitoringLogs_PollingConfig.json
Solutions/Google Cloud Platform Cloud Monitoring/Data Connectors/Readme.md
Solutions/GoogleWorkspaceReports/Data Connectors/GoogleWorkspaceTemplate_ccp/GoogleWorkspaceReports_DataConnectorDefinition.json
Solutions/GoogleWorkspaceReports/Data Connectors/GoogleWorkspaceTemplate_ccp/GoogleWorkspaceReports_PollingConfig.json
Solutions/Workday/Data Connectors/Workday_ccp/Workday_DataConnectorDefinition.json
Solutions/Workday/Data Connectors/Workday_ccp/Workday_PollingConfig.json
Tools/Create-Azure-Sentinel-Solution/common/createCCPConnector.ps1
(packaging artefacts: 3.0.3.zip, 3.0.8.zip, ReleaseNotes.md, Solution_AzureDevOpsAuditing.json, Solution_GoogleCloudPlatformMonitor.json, Solution_GoogleWorkspaceReports.json, createUiDefinition.json, mainTemplate.json)