https://github.com/dzimchuk/azure-ad-b2c-asp-net-core

A sample demonstrating how you can configure your ASP.NET Core 5.0 applications to take advantage of Azure AD B2C to perform such tasks as authenticating users, protecting Web APIs, redeeming authorization code, calling a protected Web API.
https://github.com/dzimchuk/azure-ad-b2c-asp-net-core

azure-ad-b2c net5 netcore

Last synced: 20 days ago
JSON representation

A sample demonstrating how you can configure your ASP.NET Core 5.0 applications to take advantage of Azure AD B2C to perform such tasks as authenticating users, protecting Web APIs, redeeming authorization code, calling a protected Web API.

• Host: GitHub
• URL: https://github.com/dzimchuk/azure-ad-b2c-asp-net-core
• Owner: dzimchuk
• License: mit
• Created: 2016-05-23T20:13:41.000Z (almost 9 years ago)
• Default Branch: master
• Last Pushed: 2023-06-13T13:46:01.000Z (almost 2 years ago)
• Last Synced: 2025-04-06T02:07:08.328Z (about 1 month ago)
• Topics: azure-ad-b2c, net5, netcore
• Language: C#
• Homepage:
• Size: 290 KB
• Stars: 34
• Watchers: 7
• Forks: 12
• Open Issues: 2
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

        
# azure-ad-b2c-asp-net-core

A sample demonstrating how you can configure your ASP.NET Core 7.0 applications to take advantage of [Azure AD B2C](https://azure.microsoft.com/en-us/services/active-directory-b2c/), [Microsoft Identity Web](https://github.com/AzureAD/microsoft-identity-web) and [MSAL](https://github.com/AzureAD/microsoft-authentication-library-for-dotnet) to perform such tasks as:

- Authenticate users

- Protect Web APIs

- Redeem authorization code

- Call a protected Web API

- Implement self-service password reset

- Implement profile editing

Please find more information in this walk-through post:

[Create user flows](https://docs.microsoft.com/en-us/azure/active-directory-b2c/tutorial-create-user-flows?pivots=b2c-user-flow)

This post describes how it used to be during .NET Core 2.0 days:

[Setting up your ASP.NET Core 2.0 apps and services for Azure AD B2C](https://dzimchuk.net/setting-up-your-asp-net-core-2-0-apps-and-services-for-azure-ad-b2c/)

Most of the configurations and workarounds are handled by official packages now (for example, AADB2C90091 response on cancelling profile editing). However, it may give you more insights on why things are done in a certian way.

# Configuration

## Web App

```

"Authentication": {

    "AzureAdB2C": {

      "Instance": "https://{your-tenant-name}.b2clogin.com",

      "Domain": ".onmicrosoft.com",

      "ClientId": "",

      "CallbackPath": "/signin-oidc",

      "SignedOutCallbackPath": "/signout/B2C_1_SignUpAndSignIn",

      "SignUpSignInPolicyId": "B2C_1_SignUpAndSignIn",

      "ResetPasswordPolicyId": "B2C_1_PasswordReset",

      "EditProfilePolicyId": "B2C_1_ProfileEdit",

      // To call an API

      "ClientSecret": "[client secret]"

    }

  },

  "TestService": {

    "BaseUrl": "https://localhost:5001",

    "Scopes": "e.g. https://{your-tenant-name}.onmicrosoft.com/testapi/read_values"

  }

```

## TestService

```

"Authentication": {

    "AzureAdB2C": {

      "Instance": "https://{your-tenant-name}.b2clogin.com",

      "Domain": ".onmicrosoft.com",

      "ClientId": "",

      "SignUpSignInPolicyId": "B2C_1_SignUpAndSignIn"

    }

  }

```