social_auth_entra_id 2.0.0 | Drupal.org

This is a non-production site

- Drupal Core Drupal CMS puts the power of Drupal into the hands of marketers, designers and content creators
- Drupal CMS Drupal CMS puts the power of Drupal into the hands of marketers, designers and content creators
- Drupal AI Open limitless possibilities with Drupal AI
- Case Studies Powerful stories that show Drupal solutions in the real world
- Drupal for Government Drupal is the open-source CMS that enables digital transformation of government and increases citizen engagement
- Drupal for Higher Education See why 70% of the world's leading universities chose Drupal
- Drupal for Nonprofit See why Drupal is the open-source CMS choice for some of the world’s most influential nonprofits
- Drupal for eCommerce Natively integrate content and commerce
- Drupal for FinTech Secure and trustworthy FinTech infrastructure
- Drupal for Healthcare Drupal powers systems that are secure, patient-centric and engaging
- Drupal for Media & Publishing Create engaging multi-channel experiences to connect with your audiences - everywhere
- Download Drupal Download Drupal and the extensions you need
- Documentation Full knowledgebase including Drupal 7 resources
- Getting Started Guide to installing Drupal on a server
- Local Development Guide Guide to installing Drupal locally with Docker and DDEV
- Developer Resources Step-by-step guide for learning Drupal
- Drupal User Guide Learn to build with Drupal
- API Complete documentation of Drupal Core APIs
- Modules Extend your project's functionality
- Themes Change your project's look and feel
- Distributions Jumpstart your project with a pre-configured install
- Issues Queue Report issues and contribute improvements
- Security Advisories Stay on top of the latest security alerts and updates
- Find a Drupal Certified Partner Connect with the best Drupal agencies around the world
- Become an Drupal Certified Partner Join an elite network of agencies committed to Drupal excellence and innovation
- Find a Hosting Provider Find a hosting provider for your Drupal project
- Find a Migration Partner Get help with your migration to the latest version of Drupal
- Find Training Upskill your Drupal team
- Drupal Steward Ensure your website is protected with Drupal Steward
- About the Community Come for the code, stay for the community
- How to Contribute Get involved in growing and evolving Drupal
- DrupalCon DrupalCon unites experts from around the globe who create ambitious digital experiences. Network, learn, and be inspired
- Events Discover local events, meet-ups, and training
- Jobs / Careers Find opportunities to work in Drupal
- News & Blogs News and stories about Drupal
- Forum Got a question about Drupal? Find answers on the Drupal forums
- Slack Get support and communicate with the global Drupal community
- Newsletters Sign up for Drupal news and manage your subscriptions
- Drupal Swag Shop Get your Drupal branded merch!
- The Drupal Association Learn how we support Drupal's growth and innovation - and how you can help
- Become a Member Become a Ripplemaker and support the Drupal Association
- Become a Drupal Certified Partner Join an elite network of agencies committed to Drupal excellence and innovation
- Donate Make a donation to the nonprofit that supports Drupal
- Log in
- Create account
- Try Drupal CMS
- Try hosting

Posted by jaseerkinangattil on December 17, 2025 at 8:50pm

New Features

Microsoft Personal Account Support

Account Type Configuration: Choose organization-only, common (organization + personal), or consumers-only (personal accounts).
Dynamic Endpoint Routing: Automatic OAuth endpoint selection based on the configured account type.
Flexible Issuer Validation: Validation adapts for personal accounts while maintaining security standards.

Admin Experience Improvements

Callback URL Display: Read-only field showing the OAuth redirect URI.
Azure Portal Mapping: Clear mapping between module settings and Azure AD “Supported account types”.
Flexible Domain Input: Supports comma-separated or newline-separated domain entries.
Enhanced Help Text: Improved documentation and Azure AD setup guidance.

OAuth Reliability

User.Read Scope: Explicitly requested to ensure profile access.
Optional Microsoft Graph API: Graceful fallback if the /me endpoint fails.
Session Persistence: OAuth parameters are stored and reused to prevent mismatches.

Code Quality

Drupal Coding Standards: Fully compliant with phpcs and phpcbf.
Enhanced Documentation: Over 500 lines of inline developer comments.
Input Validation: Proper sanitization and validation throughout the module.

Upgrade Path

From 1.0.0 to 2.0.0: Direct upgrade with no breaking changes. Review and update the configurations

Post-Upgrade Steps

Review the new Account Type setting at /admin/config/services/entra-id/settings.
Consider enabling administrator protection options:
- Block user 1 from SSO login
- Block administrator role from SSO login
Test the OAuth flow to ensure successful authentication.

Azure AD Configuration

To support personal Microsoft accounts, update your Azure app registration:

Supported account types: Accounts in any organizational directory and personal Microsoft accounts
Or Personal Microsoft accounts only for consumers-only mode

VCS Label

2.0.0

Release type

Short description

New features and bug fixes

Packaged Git sha1

140a9edf669d723f1ddca78ccb9e7af233c22c7e

Release files