Programmatic (API calls) User authentication using Azure AD B2C instead of login.microsoftoneline.com form
New to Azure AD ... So please don't be too harsh if it isn't. :-)
The tech stack is the latest Angular 2 with C # Medium and the latest .Net Framework.
Ideally, we want to use Azure AD B2C to store user credentials and for authentication - but we want our own forms on our site to do the registration and registration of registration forms, and then pass the credentials through an (REST?) API call ( using MS Graph SDK?) for Azure AD B2C, and then test the callback for the authorization message.
A couple of reasons are application flow control, logging, and "url flickering" (ie going from our site url to login.microsoft ... url and then back to our sites url).
Can this be done without hacking?
Thank you in advance for your help and patience!
source to share
You are looking for " Resource Owner User Credentials ".
This is currently not supported for Azure AD B2C, but you can give the user the B2C team feedback you want through the Azure Feedback Forum: Add resource owner password credentials support to Azure AD B2C and mute authentication to Microsoft authentication library
You should also see updates at this location if and when they implement this feature.
source to share
Note that one of the downsides to executing the requests you are requesting is that you can do "register and register login forms" so your application is able to see the credentials and possibly take copies of them; thus, your users must trust you to behave.
A regular Internet stream means your application doesn't need to be trusted; he doesn't even see the password at all.
source to share