Score:-1

Azure AD B2C use case - SSO between 2 applications

in flag

I have 2 applications .

Application 1 : A .NET backend / Angular frontend app with AD B2C for authentication. (This application is already developed and working.) Application 2 : A similar stack application using database for authentication (basic email/password authentication)

Application 2 users are also created in Application 1 and AD B2C also (via App1 API and Graph API)

From application 2 I want to be able to access application 1 (through deep-links) . How should I structure my 2 applications so that SSO is possible from Application 2 to application 1 (since application 2 user is already authenticated when logging into application 2 and clicking deep-link to application 1 - where also the user exists).

Thanks

Score:0
ng flag

What you need is "on behalf of flow", which allows you to exchange a token for Application 1 for a token for Application 2. Unfortunately, B2C does not support this currently (AAD B2B does) and it's a fairly major flaw in B2C usage.

user14013917 avatar
in flag
Thank you. Just a clarification, when you say "it's a fairly major flaw in B2C usage" does this mean my use case is flawed and I am trying to use B2C in a way it was not designed to and I should re-think my approach?
user14013917 avatar
in flag
Also is it possible (https://github.com/azure-ad-b2c/rest-api) for AD B2C to delegate authentication to a REST endpoint (custom database auth) and on authentication continue with the same user for authorization flow into the AD B2C application. ie App2 (user logs in user/pswd) --> clicks on deeplink to App1 --> redirect to AD B2C --> REST API (verifies user session/authenticates) --> passes token/handle to AD B2C --> authenticated user continues AD B2C userid/token flow to App1 .
ng flag
I mean it's a flaw that it is missing from B2C, lots of people are complaining about that
I sit in a Tesla and translated this thread with Ai:

mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.