azure-ad-b2c

问题 I have hard time making my Azure B2C renewing procedure work. So if my cookie is visible when I access the login url (login.microsoftonline.com), under x-ms-cpim-sso:myApp.onmicrosoft.com_0, is there a way to decode its value? I would like to see when it expires and other related iformation. 来源： https://stackoverflow.com/questions/48328607/how-to-decode-azure-b2c-cookie

问题 Our current application is authenticating users with a SAML IdP. We wish to retain their implementation of SAML and update the application’s configuration with Azure AD B2C, not switch to OAuth2 or OpenID Connect. Does Azure AD B2C currently support receiving authentication requests via SAML? I am unable to find this in the documentation. 回答1: Azure AD B2C does not support integrating with applications / relaying parties via SAML yet. You can support this ask and keep up to date on its

问题 I am working on a project where we use Azure B2C authentication. We have to sign in, sign up, change user email address and password. I don't see email address field inside profile attribute in Profile editing policies . Can we change email address of user from "Profile editing policies" in Azure AD B2C? I am trying not to use Graph API for this. For change password, sign-in and sign-up, I am redirecting to the url that comes after running the corresponding policies in portal. Is that the

问题 I am attempting to develop an app with only a sign in policy. To the best of my knowledge the supported methods of creating new users for b2c are using the new user dialog on the users page, and with the graph api. Is this correct? Is there a method I'm missing? Which is the preferred method? When attempting to create users in the new user dialog, usernames become malformed, eg. username@domain.com becomes username_domain.com#EXT#@domain.com 回答1: The users created through the portal cannot be

问题 I am creating new users in Azure AD B2C using the graph client api. The json i send to the api looks like the following: { "creationType": "LocalAccount", "passwordProfile": { "password": "a:898;keJPpN/69X", "forceChangePasswordNextLogin": true }, "passwordPolicies": "DisablePasswordExpiration", "objectId": null, "accountEnabled": true, "displayName": "John Doe", "mailNickname": "john.doe", "signInNames": [ { "type": "emailAddress", "value": "john.doe@provider.com" } ] } The user is then

问题 I am trying to cater for a broad set of auth and identity management requirements, homogenizing this area of functionality across different legacy applications, and looking into Azure AD B2C as an option. It seems as though there may be a need for maintaining contact information on a group. For example, we may need to group users according to their 'reseller,' and we may wish to have additional info about the reseller within Azure AD B2C. Is this possible in AD B2C? 回答1: It is possible to add

问题 How do I add a Custom Attribute, when using custom policies, that is not used in a sign-up nor edit policy? Background I need to define custom attributes that will be set via the AD Graph API, not the user. I found this note: There is a known limitation of custom attributes. It is only created the first time it is used in any policy, and not when you add it to the list of User attributes. So I'm thinking what I'm trying to do is not achievable directly. I guess a workaround would be: Create

问题 I'm trying to use Azure AD B2C as a SAML Identity Provider. I am aware that several locations on the web state that B2C does not (yet) support SAML as identity provider (also e.g. answer on this question: Can I integrate a SAML application with Azure AD B2C?). However, when I read the comparison between built-in policies and custom policies on the "Azure AD B2C Custom Policies" docs, I see that SAML is already supported today as an identity provider. Also, I found this GitHub walk through:

问题 In Azure B2C Sign Up page, is there a way to have all the password and "display name" fields hidden until the verification code has been successfully entered and verified? We've read this page on what customisations can be done: https://docs.microsoft.com/en-us/azure/active-directory-b2c/active-directory-b2c-reference-ui-customization and it states JavaScript is not allowed. So wondering if there's another way to accomplish this task? Thanks! 回答1: At this time there is no way to only show the

问题 Using plain Xamarin.iOS how do I sign into Azure AD B2C? I know there is an example for Xamarin.Forms but I am unable to adapt it for Xamarin.iOS 回答1: Use the Microsoft Authentication Library (MSAL) in your mobile application to initiate an authentication workflow with your Azure Active Directory B2C tenant. On the iOS platform, the AppDelegate class must be modified to initialize a PlatformParameters instance, as demonstrated in the following code example: using Microsoft.Identity.Client;