Comments (8)
@NikolaosWakem , can you share details on what the issue was. I'd like to see if there's anything we can update to prevent people from running into the same issue.
from active-directory-b2c-dotnetcore-webapp.
Thanks for you help in tracking this dow
I've wasted at least 30-40 hours finding this out the hard way over the last 3 weeks so let's fix it or thoroughly document it. Scope must be vanity name, authority must not be vanity names for access tokens to work
from active-directory-b2c-dotnetcore-webapp.
Quick update - finally managed to get this to work after removing and re-adding my application from Azure B2C and then making sure my scopes were configured correctly. It does not appear to work without specifically defining custom scopes - the default user_impersonation scope alone will not provide an access token.
from active-directory-b2c-dotnetcore-webapp.
@NikolaosWakem I'm seeing exactly the same issue. My configuration is correct (as it is documented), and I don't believe this is related to the reply url - it appears to be related to scopes, but I'm not sure what the solution is right now, and the Azure portal doesn't give the option of adding access related token scopes either.
from active-directory-b2c-dotnetcore-webapp.
@NikolaosWakem This sample works fine for me. Suggest you capture request using Fiddler and find out what's wrong.
@garethrampton Yes, the code is not matching the readme guideline. You need to register another web api application, and define scope, then grant api access to the web app application. All these steps can be done on portal. Suggest you follow steps in this article.
from active-directory-b2c-dotnetcore-webapp.
@NikolaosWakem is using a tenant that has an additional domain name (mydomain.com) connected to the Azure AD B2C tenant (mydomain.onmicrosoft.com). Using mydomain.com as the tenant name in the request URL causes our service to prevent returning access_tokens (although id_tokens are returned just fine)
from active-directory-b2c-dotnetcore-webapp.
I still can't get this to work. I never receive an Access token although I receive an Id token fine.
@allenhula I followed the steps in the linked article which is how I'd had things set up anyway.
Anyone have any pointers on how to get this working - or can provide a sample configuration?
The other thing I see - is when auth'ing directly via my web app the auth process works as expected (minus the ability to get an access token), but if I try using any variation of the "run now" link from the Azure portal I get a remote failure with the error that the message.state is null or empty.
from active-directory-b2c-dotnetcore-webapp.
@garethrampton can you elaborate more on the "any variation of the run now link". Also, can you share the correlation ID when you hit the failure?
from active-directory-b2c-dotnetcore-webapp.
Related Issues (20)
- got secure error when I try to sign in HOT 2
- Not compatible with aspnet core 2.1 HOT 1
- Error from RemoteAuthentication: Message contains error: 'redirect_uri_mismatch', error_description: 'AADB2C90006: The redirect URI 'http://b2.95e4700435c54427a457.northeurope.aksapp.io/signin-oidc' provided in the request is not registered for the client id 'eb201049-e7b1-4227-9a7c-5bb259261d37'. Correlation ID: 8f75359e-009f-44e3-b537-3f85f58cdd9c HOT 6
- User.Identity.Name is null and HttpContext.User.Claims is empty HOT 6
- ERROR Account username: Missing from the token response environment login.microsoftonline.com home account id: AccountId: XXXX HOT 8
- Single-Sign Out AD B2C HOT 2
- NullReferenceException in MSALSessionCache constructor HOT 1
- acquireTokenSilent sometimes returns a null accesstoken HOT 1
- Error messages in OnRemoteFailure should be url encoded before appending to query string HOT 3
- Latest version of AAD B2C? HOT 2
- Update the repository to not use Bower HOT 3
- Update the repository to use the latest MSAL version HOT 2
- b2clogin.com for ASP.NET Core HOT 7
- No accounts being returned on cca.GetAccountsAsync()
- Words 'simple' and 'dead simple' should be removed from content. HOT 1
- Unit testing for SessionController HOT 1
- Compatibility with .NET Core 3.1 HOT 2
- How do I diagnose errors? HOT 1
- How to pass domain_hint while calling B2C for login HOT 1
- How to select a policy at runtime?
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from active-directory-b2c-dotnetcore-webapp.