azure-ad-b2c

I am using starter pack of custom polices with SocialAndLocalAccounts pack. It is working fine for me. But I am facing one issue.I need to get email as claim after successfully login. I am getting email as claim, once user has been been signed-up and redirects back immediately to application. but I am not getting it when a user simply signs-in. How can I get that? where do I need to write an Output Claim to get the value of email in claim? Kindly help me. Thanks Following describes how you can save, load, and then issue the otherMails claim as emails from the sign-up/sign-in and password reset

As per Azure AD B2C documentation we can configure SSO for Azure AD B2C application. We want our user to do self-registration for the application thus opted for AD B2C. However after creating B2C tenant account and configuring all the policies. I am unable to find option to configure SSO. Since after 30th Nov 2017, Active Directory will only be available in new portal. Kindly provide reference wrt new portal. . Any help will be appreciated. Thanks in advance. As the document in the your question said,if you have multiple applications and policies in your B2C tenant, you can manage user

My use case is: Create users via API with custom fields, nominated password using any email address Update/disable those users via API 'Sign in' to Azure AD app with user details via rest API to obtain token Make authorised requests to Web API when token passed in Http header Can all of this be achieved with straight Azure AD/B2C or should I be looking at some other identity provider e.g. IdentityServer/Auth0? Edit 1 I'm getting very confused between AAD apps/users and B2C apps/users, there is very little guidance on what to use in this case. Using https://docs.microsoft.com/en-us/azure/active

I have an asp.net web application that authenticates via Azure AD B2C tenant. I have a sign-up-sign-in policy [login is using username instead of email] with MFA turned on. I have also setup Custom UI login page [unified.html] and MFA page [phonefactor.html] in a storage blob that the policy points to. I am able to authenticate the user via the custom login page and login with MFA. The issue is when I create a new user and force the user to change the password at their first login, instead of redirecting the user to the change password screen, I am getting an invalid username and password

I have an Angular app that uses MSAL.js and when I try to get an access token I'm receiving the following error: AADB2C90077: User does not have an existing session and request prompt parameter has a value of 'None'. I was passing the wrong scope value; I had a typo in my tenant name: this.userAgentApplication.acquireTokenSilent('https://{tenantname_with_typo}.onmicrosoft.com/webapi/read') 来源： https://stackoverflow.com/questions/47823447/aadb2c90077-user-does-not-have-an-existing-session-and-request-prompt-parameter

We're happily enriching our claims via custom RESTful API, but is it possible to instead display the fetched claim values (comma delimetered, for example) in a drop-down and ask used to pick one? <ClaimType Id="city"> <DisplayName>city where you work</DisplayName> <DataType>string</DataType> <UserInputType>DropdownSingleSelect</UserInputType> <Restriction> <!-- FETCH THESE VIA REST --> <Enumeration Text="Bellevue" Value="bellevue" SelectByDefault="false" /> </Restriction> </ClaimType> 来源： https://stackoverflow.com/questions/49253190/fetch-claimtype-enumerations-via-rest