Azure AD B2C - “emails” claim in custom policy

后端未结

关注

 2  1756

醉梦人生 2020-12-10 05:00

I\'m looking for a way to add an emails claim (collection of emails) to a custom policy for Azure AD B2C. This application claim is available from the Azure Po

2条回答

一向 (楼主)

2020-12-10 05:43
I couldn't find an answer this either - it looks like the "emails" claim is being returned by a custom OutputClaimsTransformation, the configuration of which isn't available in the samples.

I did find the this answer on SO which helped, but it covers updated the "otherMails" claim for NEW users and I had existing users on the basic policies who I couldn't update in that way.

It seems that emails is being populated by concatenating "otherMails" (in the case of social signups) with the first entry in the "signInNames" array.

I ended up doing the following to get the "emails" claim dynamically created.

Create two new ClaimTypes in TrustFrameworkExtensions.xml
```
  
    Emails
    stringCollection
    User's email addresses
  

 
    First Other mail
    string
    Other Mail
  
```
Create 3 new ClaimsTransformations in TrustFrameworkExtensions.xml
```
    
      
    
    
      
    
  

  
    
      
      
    
    
      
    
  

  
    
      
      
    
    
      
    
  
```
Create a new TechnicalProfile in TrustFrameworkExtensions.xml:
```
    
      
        Read
        true
      
      false
      
        
      
      
                   
      
      
        
        
        
      
      
    
```
Add a new OrchestrationStep to the SignUpOrSignIn UserJourney just before the last step (SendClaims) in SignUpOrSignIn
```
    
      
        
        
      
    


    
```
Edit the PolicyProfile TechnicalProfile and add the OutputClaim:
```
 
```
0 讨论(0)

查看其它2个回答
发布评论:

提交评论
- 加载中...