Category: Collaboration
Contentsquare’s integration with Microsoft Teams enables you to automatically alert and rally your team when key digital experience metrics deviate from normal so that you can drive timely action.
Permissions & Scopes
Endpoint |
Required Permission |
Why |
---|---|---|
Get the tenant name for frontend display purposes during the installation process |
||
List the teams of the tenant, to allow users to chose in which team to send their alert, from the Contentsquare platform (alert creation interface). We only display the teams with |
||
List the channels that are inside of the teams, to allow users to chose in which channel to send their alert, from the Contentsquare platform (alert creation interface). We only display the channels with |
||
GET our |
||
Install our |
||
Verify if our |
Our Contentsquare Digital Experience Alerts
app requires tenant-wide Application Permissions, that can only given by AdminConsent.
Grant tenant-wide admin consent to an application - Microsoft Entra ID
To grant tenant-wide admin consent, you need:
- A Microsoft Entra user account with one of the following roles:
- Global Administrator or Privileged Role Administrator, for granting consent for apps requesting any permission, for any API.
- Cloud Application Administrator or Application Administrator, for granting consent for apps requesting any permission for any API, except Microsoft Graph app roles (application permissions).
- A custom directory role that includes the permission to grant permissions to applications, for the permissions required by the application.
Microsoft Teams Application
You need to be able to access this section on the admin center of Microsoft Teams : https://admin.teams.microsoft.com/policies/manage-apps
Documentation on the manage apps section :
Manage your apps in the Microsoft Teams admin center - Microsoft Teams
Looking at the following documentation on the available permissions to manage Microsoft Teams, it seems that to access the manage-apps
section, one needs the Teams Administrator
role.
Use Microsoft Teams administrator roles to manage Teams - Microsoft Teams
FAQ
What protocols are used to send CS alerts to teams?
We are using Azure Bot Service - HTTPS calls Azure AI Bot Service | Microsoft Azure
What is the ContentSquare API called that pushes the alerts?
The alerts are triggered & pushed by our backend services & those are not publicly exposed; there's no Contentsquare API that pushes the alerts.
=> We use the Microsoft owned botbuilder
NPM package to interact with the Azure Bot Service
through methods such as CloudAdapter.continueConversationAsync()
Is encryption used?
The information that we store from your tenant in our database in order for the integration to function properly are the following, unencrypted (we only encrypt customer credentials) :
- TenantId
- TenantName
- Id of our Graph Application in your Tenant's Catalog (unique per tenant)
- TeamId of the teams in which app is installed
- ChannelId in which alerts are configured
- ConversationReference (identifier for our bot to be able to send message to the identified Team/Channel)
Security scanning at ContentSquare?
Contentsquare | Trust Portal
Service type: backend service running on Node.js, not exposed on the internet, using both :
- Microsoft Graph API endpoints
- Azure Bot Service through botbuilder NPM library
Public Facing URI: only for Azure Bot Service events listening
- https://webapi.contentsquare.com/v1/microsoft-teams/bot-activity => That is to be called by Azure Bot Service as a callback only
- Other than that endpoint, the service interacting with Microsoft Azure / Microsoft Teams in itself is not exposed to the internet
Does Service Require TLS 1.2+?
- We use HTTPS to make the calls to Azure