问题
According to this documentation, the Policy Name should be in the TFP (Trust Framework Policy) claim but it is showing up in the ACR claim. I started with the Starter Pack
ID Token w/ ACR Claim containing the Policy Name
Also, further down in the documentation it says the ACR is where the Policy Name will be:
Related SO Post
回答1:
It is recommended you issue the policy ID in the "tfp" claim. If you are creating custom policies, then you can issue this by configuring the "JwtIssuer" technical profile. You can learn more about this at here.
回答2:
This is actually configurable, so it does not matter so long as you configure your application to use whichever you choose.
Go to B2C_1_YourPolicy -> edit -> 'Token, session & SSO config' and flip the toggle for the "Claim representing policy ID" field. You can choose either tfp or acr.
来源:https://stackoverflow.com/questions/46688455/in-azure-ad-b2c-should-the-acr-or-tfp-claim-have-the-policy-name