azure-ad-b2c

问题 I'm new to the Azure B2C world. I'm attempting to create a Custom User attribute to store data for our application. I've created it in the Azure portal and assigned it to my Signup/SignIn policy. However, I want to be able to update/read this value programtically. I've been going down the route of using Graph API and registering Extensions. So two questions: 1) Are extensions/custom attributes the same thing? 2) I've tried this code and the returned extensions are always empty: public void

问题 My issue is: When I use Microsoft's project, the line of code mentioned in the title runs and authenticates correctly, and I can perform operations on users as demonstrated in the "B2CGraphClient" sample project. However when I copy-and-paste B2CGraphClient.cs into my web application, this line of code hangs forever. How can this be? The line that hangs is #184 in B2CGraphClient.cs . Details: I am using the sample project named "B2CGraphClient" mentioned in this article, whose zipfile is

问题 I'm trying to provide the correlation id for this issue but I'm not sure how to obtain it. I assume it should be in response, is that correct? Is it the client-request-id maybe? HTTP Response HTTP/1.1 403 Forbidden Cache-Control: no-cache Pragma: no-cache Content-Type: application/json;odata=minimalmetadata;streaming=true;charset=utf-8 Expires: -1 Server: Microsoft-IIS/8.5 ocp-aad-diagnostics-server-name: CGa9FFPZASZM+usTGvTzaOZ4zSMxhpbWh2mO9+eJZWs= request-id: 6ddd7a86-02c9-4dcf-9932

问题 I was curious if it was possible to read query parameters when requesting an OAuth2 token through Azure? Essentially, when making a test call with a policy that I created, I would like to have an additional query parameters read from the call and the orchestration (user journey) steps should read these values and inject that value into a custom claim (for the JWT or ID token). I know from the follow links that it may* be possible with Azure B2C service? But I can't find any good concrete

问题 I'm using Xamarin Forms in Visual Studio 2015 with the new MSAL preview v.1.1.0. The app calls the PublicClientApplication.AcquireTokenAsync which pulls up the login form in Chrome on the mobile device. The login is successful, but when it redirects I get the error message "This site can't be reached. The webpage at msal[my app id]://auth/?code=[auth code]... might be temporarily down or it may have moved permanently to a new web address. When stepping through the app I see that the

问题 I need to redirect to the Azure login page based on the user directory i.e either B2C or B2B directory. I had created the custom policy based on the Azure starter pack. When I execute the custom policy URL with the query parameter login_hint in B2C it does not populate in the username textbox. For B2C Login I had customized the login screen. Now when I redirect to the B2B login screen and add the same parameter then the username is populated in the sign in screen. Now the questions is 1. B2C

问题 I followed official steps as below to try the scenario "web app calling a Web API in Azure Ad B2C", the only difference is I am using Asp.Net core . I am using AuthorizationCode to get the access token, but it always returns with id token and NULL access token . Create an Azure AD B2C tenant. Register a web api. Register a web app. Set up policies. Grant the web app permissions to use the web api. My code: app.UseOpenIdConnectAuthentication(new OpenIdConnectOptions { AuthenticationScheme =

问题 I want to customize the default sign up page created using Azure AD B2C. I also have referred the relevant azure documentation as well. But it is not much clear. Is there any document that contains all the steps that i can refer to fulfill this purpose. Thanks in advance 回答1: The documentation for Azure AD B2C can be confusing as heck to someone new to Azure and/or new to OpenIdConnect, but it's all you get -.. for now. (Thanks for the comment by @SergeyBrazhnik for reminding me to add this,

问题 I want to query application roles and group claims from Azure Active Directory in my Angular 5 Web App. I want to give admins special permissions / access to pages. I have a registered a B2C App in Azure and a Microsoft App at https://apps.dev.microsoft.com and have tried querying data via Microsoft Graph with the MSAL.js. I used the Application ID from my B2C Web App as the clientID, acquired a token, and called to the endpoint "https://graph.microsoft.com/v1.0/users". The data returns as an

问题 I am using custom policies. The user journey desired is: User enters the email/password on screen 1. On successful validation of screen 1, the user is sent to screen 2. In screen 2 user has to enter a code sent to their email. (Note the user has already verified the email during sign up) I am stuck at getting 2 to work. The current policy looks like this: Step 1 outputs email claim. Step 2 takes the email claim as input. In step 2 an editable text box with email prefilled is presented. No