Hi, When we tried to login with WAAD (microsoft) credentials,  authentication is successful and at the time of redirecting, the odoo 11 giving "Access Denied" error. Below are the configurations used:

1) Created Windows Azure AD(WAAD) in azure portal with granted the  User.ReadWrite.All permissions and reply URL: http://localhost:8069/auth_oauth/signin?

2)  Installed OAuth2 authentication app in Odoo 11 application

3)  OAuth Providers settings in Odoo application

    a.  Provider Name - Windows Azure AD

    b.  Client ID – <WAAD ID>

    c.  Allowed – Enabled

    d.  Body - Login with Microsoft

    e.  Authentication URL - https://login.microsoftonline.com/<tenantid>/oauth2/authorize

    f.  Scope - User.ReadWrite.All

    g.  Validation URL: https://login.microsoftonline.com/<tenantid>/oauth2/token

    h.  Data URL: https://graph.windows.net/<tenantid>

When we tried with other options, we changed the Authentication URL to https://login.microsoftonline.com/<tenantid>/oauth2/authorize?response_type=code+id_token&response_mode=fragment&nonce=678910

also, customized the code accordingly so that id_token act as access_token and requests.post(endpoint, params={'access_token': access_token}) used instead of requests.get(), then Odoo giving an error "Sign up is not allowed on this database"

Suggest us how to resolve the error(s)?

Thanks,

Lakshmi Chowdam.