What is the nature and description of the request?

Current approach of Authorization of API calls supports users to generate local AWX/Tower tokens within the tool.

Application user should be able to generate authorization token through Azure AD and use that to authenticate their API calls instead of generating token locally and storing it for later use within AWX/Tower. This is an important feature from Security perspective where users should avoid storing or using auth tokens stored in the tool to avoid damage done in case of unauthorized access to the stored token.

Users should have a way to authorize themselves and generate auth token in Azure AD; later use that token to authorize and execute API calls instead of using locally created tokens or basic auth.

Why does the customer need this? (List the business requirements here)

This is an important feature from Security perspective where users should avoid storing or using auth tokens stored in the tool to avoid damage done in case of unauthorized access to the stored token.

How would you like to achieve this? (List the functional requirements here)
List any affected known dependencies: Doc, UI etc..

• Automation Gateway
• Automation Controller

Github Link if any