Prerequisites
- Entra ID admin (App registrations access)
- Lovable workspace Owner or Admin
Configure in Entra ID
1
Register an application
Microsoft Entra ID → App registrations → New registration.
2
Redirect URI (Web)
3
Expose API / permissions
No custom API permissions are required. Ensure default OpenID permissions are enabled.
4
Grant admin consent (if needed)
Grant consent for the
openid and email scopes if prompted.5
Copy values to Lovable
From the app registration:
- Application (client) ID
- Directory (tenant) ID
- Client secret (create one)
Reference
- Redirect URI: https://auth.lovable.dev/\_\_/auth/handler
- Required scopes:
openid,email
Troubleshooting
AADB2C or multi-tenant setup
AADB2C or multi-tenant setup
Use the correct tenant in the issuer URL for your configuration.
Email missing
Email missing
Ensure users have an email attribute and consent includes the
email scope.