azure-ad-b2c

问题 Why does the redirect URL have to match completely? Wouldn't matching at the domain level be sufficient enough for proper security? What if I had hundreds of paths? example urls: https://myawesomesite.com https://myawesomesite.com/account/profile https://myawesomesite.com/games/fungame/points https://www.myawesomesite.com/games/fungame/points ... I would have to enter the 4 above redirect urls into my B2C app configuration. 回答1: This is actually discussed in RFC 6819 "OAuth 2.0 Threat Model

问题 We are looking at using Azure AD B2C in an application and I am confused about which package to use when working with Azure AD B2C. This question discusses the difference between the MSAL and ADAL library: MSAL or ADAL library for use with Azure AD B2C and Xamarin. In addition to that, there is now a warning on the Azure AD Graph API reference to instead use the Microsoft Graph API. None of the examples for B2C seem to use Microsoft Graph API and there appears to be no description of the

问题 After a week of researching authentication principles that would work with Azure AD B2C using the Xamarin to target the Android platform (not Xamarin.Forms), I'm finally asking for a little advice. I've got an activity with a 'Sign in' button and I would like to log in to Azure on the button's touch event. Ideally I'd want to receive a token after the login steps are completed. Here is the code that I have so far: public class MainActivity : Activity { public TaskCompletionSource<bool>

问题 We're happily enriching our claims via custom RESTful API, but is it possible to instead display the fetched claim values (comma delimetered, for example) in a drop-down and ask used to pick one? <ClaimType Id="city"> <DisplayName>city where you work</DisplayName> <DataType>string</DataType> <UserInputType>DropdownSingleSelect</UserInputType> <Restriction> <!-- FETCH THESE VIA REST --> <Enumeration Text="Bellevue" Value="bellevue" SelectByDefault="false" /> </Restriction> </ClaimType> 来源：

问题 Closed. This question is off-topic. It is not currently accepting answers. Want to improve this question? Update the question so it's on-topic for Stack Overflow. Closed 2 years ago . I am new to Azure AD B2C. I am trying to use Azure AD B2C for authentication with a Java web application, but there does not seem to be any guides or Java code samples to help. Can anyone help with some basic code samples that could help explain how to integrate with a Java client? 回答1: There isn't currently a

问题 When attempting to the load the default SSO SignIn page in Azure, the Email Address element is selected by default and in focus as follows; When the page is zoomed the Email Address input is rendered at the top of the page on load, this causes tablets and smaller devices to be presented with a page that is already scrolled. I have attempted to add a new input on a custom page and given it a tabindex of 0 (as a hack) as the default for all element contained inside the "api" div is 1. I have

问题 I have an Azure B2C Custom Policy to sign up. And when I try to get a refresh token I receive this error: {"error":"invalid_request","error_description":"AADB2C90079: Clients must send a client_secret when redeeming a confidential grant.\r\nCorrelation ID: 776e4226-467b-4648-b7f7-a9c09715fd68\r\nTimestamp: 2017-10-31 21:12:56Z\r\n"} I'm logging in using this url: https://login.microsoftonline.com/<MyTenant>.onmicrosoft.com/oauth2/authorize? p=B2C_1A_signup_signin &client_id=<MyB2CAppID>

问题 Running out of things to try, can anyone please help? Trying to run 'change password' via Postman I get token using app id and secret I can read data from the user profile no problem I grant permissions to Graph API in Azure portal I generate the token again, review it in jwt.io, sample "Device.ReadWrite.All", "Member.Read.Hidden", "Directory.ReadWrite.All", "Domain.ReadWrite.All", "Application.ReadWrite.OwnedBy", "Application.ReadWrite.All" ], I send "password": "Test123456",

问题 I added a Native app in my B2C Tenant. App.xaml.cs code looks like this public static PublicClientApplication PCA = null; // Azure AD B2C Coordinates public static string Tenant = "something.onmicrosoft.com"; public static string ClientID = "*********-0e3a-483a-9e15-7896c524ed1d"; public static string PolicySignUpSignIn = "B2C_1_EmailSignup"; public static string PolicyEditProfile = "B2C_1_PasswordReset"; public static string PolicyResetPassword = "B2C_1_PasswordReset"; public static string[]

问题 I want to integrate Multi Factor Authentication (MFA) through Azure Active Directory (AD) B2C in my website built in PHP only for authentication purpose, I checked its documentation and some code samples, I have created following things from its tutorial which mentioned here https://docs.microsoft.com/en-us/azure/active-directory-b2c/tutorial-create-tenant Azure AD B2C tenant Register a web application (reply URL is https://jwt.ms ) Create a sign-up and sign-in user flow / password reset user