Comments (9)
kamranbashir
commented on July 21, 2024
1
Good news it worked. π . many thanks for the help.
Now i need to know how configure rest!!
2018-03-18T12:58:53 PID[18564] Information 2018-03-18 12:58:53.153 +00:00 [Information] identity provider requested, redirecting to: "microsoft"
2018-03-18T12:58:53 PID[18564] Information 2018-03-18 12:58:53.169 +00:00 [Information] External login requested for provider: "microsoft"
2018-03-18T12:58:53 PID[18564] Error 2018-03-18 12:58:53.169 +00:00 [Error] External login error: provider requested microsoft is not a configured external provider
2018-03-18T12:58:53 PID[18564] Information 2018-03-18 12:58:53.184 +00:00 [Information] {
"Category": "Endpoints",
"Name": "Endpoint failure",
"EventType": "Failure",
"Id": 3001,
"Message": "External login error: provider requested microsoft is not a configured external provider",
"Details": {
"EndpointName": "authenticate"
},
"Context": {
"ActivityId": "eb3348ed-3e2a-4b15-b39f-9bedc887aa3a",
"TimeStamp": "2018-03-18T12:58:53.1846154+00:00",
"ProcessId": 18564,
"MachineName": "RD00155D974697",
"RemoteIpAddress": "213.105.186.4"
}
}
from active-directory-b2c-advanced-policies.
rojasja
commented on July 21, 2024
Hello.
All key generation is now possible directly in the Azure Portal.
Inside your b2c tenant.
Select Identity Experience Framework (an Azure Subscription is required)
Select Key Management.
from active-directory-b2c-advanced-policies.
rojasja
commented on July 21, 2024
ExploreAdmin.dll is deprecated.
from active-directory-b2c-advanced-policies.
kamranbashir
commented on July 21, 2024
yes, i got it working before your reply many thanks for your reply
from active-directory-b2c-advanced-policies.
kamranbashir
commented on July 21, 2024
in Azure b2c custom policy file TrustFrameworkExtensions.xml which section i can pass a query string variable
for example identity server 4 http://docs.identityserver.io/en/release/endpoints/token.html?highlight=acr_values
i want to pass acr_values
allows passing in additional authentication related information for the password grant type - identityserver special cases the following proprietary acr_values:
idp:name_of_idp bypasses the login/home realm screen and forwards the user directly to the selected identity provider (if allowed per client configuration)
tenant:name_of_tenant can be used to pass a tenant name to the token endpoint
refresh_token
thanks
from active-directory-b2c-advanced-policies.
chrispadgettlivecom
commented on July 21, 2024
Do you want to set acr_values for the authorization endpoint or the token endpoint?
It can be set for the authorization endpoint by appending to the authorization_endpoint item of the IdentityServer technical profile as follows:
<Metadata>
<Item Key="authorization_endpoint">https://identityserver/connect/authorize?acr_values=idp%3Aname_of_idp</Item>
</Metadata>
from active-directory-b2c-advanced-policies.
chrispadgettlivecom
commented on July 21, 2024
Excellent, @kamranbashir, can you please post the above question with the azure-ad-b2c tag to Stack Overflow so it can be answered and then discovered by others?
from active-directory-b2c-advanced-policies.
kamranbashir
commented on July 21, 2024
I have updated stack overflow.
From identity server:
2018-03-18T21:14:45 PID[18300] Information 2018-03-18 21:14:45.699 +00:00 [Information] Start key discovery request
2018-03-18T21:14:46 PID[18300] Information 2018-03-18 21:14:46.121 +00:00 [Information] Start authorize request
2018-03-18T21:14:46 PID[18300] Information 2018-03-18 21:14:46.137 +00:00 [Information] Start authorize request protocol validation
2018-03-18T21:14:46 PID[18300] Error 2018-03-18 21:14:46.184 +00:00 [Error] "Invalid flow for client: AuthorizationCode"
"{
"ClientId": "renukey",
"RedirectUri": "https://login.microsoftonline.com/te/kamtenant.onmicrosoft.com/oauth2/authresp\",
"AllowedRedirectUris": [
"https://login.microsoftonline.com/te/kamtenant.onmicrosoft.com/oauth2/authresp"
],
"SubjectId": "unknown",
"ResponseType": "code",
"ResponseMode": "form_post",
"Flow": "AuthorizationCode",
so far azure b2c policy by default sending flow = AuthorizationCode to identity server 3/4
how we can send flow= client_credentials from TrustFrameworkExtensions.xml policy file.
Doest not work below mentioned in TrustFrameworkExtensions.xml
InputClaims
InputClaim ClaimTypeReferenceId="grant_type" DefaultValue="password"
/InputClaims
from active-directory-b2c-advanced-policies.
chrispadgettlivecom
commented on July 21, 2024
Can you please create a new issue for this or, better, create a Stack Overflow post for it?
from active-directory-b2c-advanced-policies.
Related Issues (20)
- Invalid client assertion
- user journey that does not create duplicate accounts HOT 5
- Account Linking example needs to be updated to use alternativeSecurityId HOT 16
- Custom policies getting mixed together HOT 2
- B2C SAML response with incorrect entityID HOT 2
- Validation errors do not communicate reason for failed validation HOT 1
- Clarification on claim transformation method HOT 1
- Is there any method to get MAC address of the user's system using custom policies? HOT 1
- Can I use two email addresses for MFA using custom policies? HOT 4
- Account-linking allows unlinking facebook which causes account-lockout.
- saml custom policy logout url
- How to create users with same email but with different in custom user attribute in Azure AD B2C? HOT 5
- How to check whether a user is exist in firebase before sending reset email? HOT 1
- Angular8/Vue custom component not loading in google sites in chrome browser
- Can we link both email and username for the local identities HOT 2
- Updated Source Code for WingTipGamesWebApplication HOT 1
- Azure AD B2C Password reset is not working HOT 1
- Connect existing user with external idp
- Append input Claim value to createstringclaim transformation InputParameter value
- Azure AD B2C witn LinkedIn UserFlow does not work
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
π Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. πππ
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google β€οΈ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from active-directory-b2c-advanced-policies.