I’ve implemented the password change custom policy according to the documentation and use msal.js on the frontend to start the password change flow. This works accept that the user needs to sign in again although the user is already signed in to the application. So it asks the user credentials every time. Why isn’t B2C detecting that the user has already signed in and how can I solve this? Thanks!
Azure AD B2C password change custom policy, user needs to sign in every time
1.7k views Asked by RonaldV At
2
There are 2 answers
0
ToDevAndBeyond
On
If you are trying to test through the B2C Custom Policies "Run now" endpoint, just remove the &prompt=login query parameter from the link. If you are already logged in it will skip the login, if you are not, it will still prompt for your credentials.
Credit to Jas Suri: Azure B2C EditProfile custom policy without Signing In first
Related Questions in AZURE
- How to update to the latest external Git in Azure Web App?
- I need an azure product that executes my intensive ffmpeg command then dies, and i only get charged for the delta. Any Tips?
- Inject AsyncCollector into a service
- mutual tls authentication between app service and function app
- Azure Application Insights Not Displaying Custom Logs for Azure Functions with .NET 8
- Application settings for production deployment slot in Azure App Services
- Encountered an error (ServiceUnavailable) from host runtime on Azure Function App
- Implementing Incremental consent when using both application and delegated permissions
- Invalid format for email address in WordPress on Azure app service
- Producer Batching Service Bus Vs Kafka
- Integrating Angular External IP with ClusterIP of .NET microservices on AKS
- Difficulty creating a data pipeline with Fabric Datafactory using REST
- Azure Batch for Excel VBA
- How to authenticate only Local and Guest users in Azure AD B2C and add custom claims in token?
- Azure Scale Sets and Parallel Jobs
Related Questions in AZURE-AD-B2C
- Implementing Azure AD B2C Authentication in .NET 8 Blazor Project (RenderMode: InteractiveAuto)
- B2C Login is showing me an error page after entering credentials. When clicked on Sign in button, it's logging me in without asking for creds
- How to authenticate only Local and Guest users in Azure AD B2C and add custom claims in token?
- how to get refresh token in msal-browser Azure AD B2C login?
- Azure B2C MFA custom policy flow 'try another way'
- Azure AD B2C login getting error The redirect URI 'localhost:3001' provided in the request is not registered
- Azure AD B2C login with Microsoft identity provider error: Proof Key for Code Exchange is required for cross-origin authorization code redemption
- Azure B2C cannot use Okta as IdP via OIDC - 'Signature validation failed'
- Need to pass custom claims to B2C Custom Policy from a React Application
- How to change Azure AD User invite email template and Accept invite link, Currently it's allowing text only, can we make like HTML
- Azure PIM role activation in B2B environment
- How to prevent Login in AD B2C based on an extension claim type using User Flows
- AADSTS9002326: Cross-origin token redemption is permitted only for the 'Single-Page Application' client-type. Request origin: 'capacitor://localhost'
- azure b2c custom policy failed to get access token
- B2c tenant Creation and creation of users/apps from main tenant using terraform. Is that possible?
Related Questions in CHANGE-PASSWORD
- Semmless password reset management for web services
- Invalidate session on changing Auth0 SSO password in Outsystems
- Ldap3 python modify password
- Check-password insecure issue in ccs-pykerberos library
- azure adb2c password reset redirect uri fails
- How to Change default password for aws ec2 instance remote desktop connection
- Implementing 'User Must Change Password at Next Logon' in Custom Credential Provider V2
- Powershell not prompting for additional input after Out-GridView has been selected
- Django REST Framework with a password reset form - not working when hosted in render.com
- Forced password update in WSO2 Identity Server 6.1.0
- NetUserChangePassword 1351 error issue and NetUserSetInfo(with DPAPI) inquiry
- Is there a way to change a user's password from within code?
- HSM 9K- Change password of LMK component cards, change password for card with component 2 using component 1 and 3
- how to separate password recovery from jwt authentication
- Using Plink to change user's password remotely
Related Questions in FORGOT-PASSWORD
- LastpaswordchangedDatetime return as longint value instead of datetime ,when i calling graphapi from custom policy( forgot password custom policy)
- Error Laravel Password Reset: Column 'email' Cannot Be Null
- Reset password HTML form - browser won't suggest password update
- How to change laravel broker
- MicroStrategy Web - Forgot Password function in Login Page
- Autocomplete password against email (in browser password manager) instead of recovery code
- otp verification from user and db table
- I'm trying to send a password reset link to my email through phpmailer this is the error its showing
- Which is the bestPlatform to send OTP as a SMS in Nodejs? i have tried twilio but they keep suspending my account due to the Geo location
- Message could not be sent. Mailer Error: Recipient email address is not set or empty
- In my graduation android app , i want to use OTP in forget password (using phone number not email) through realtime fire base . what is the solution?
- Flutter OTP for password changing
- My ResetPassword does not update on database
- Pass custom attributes as placeholder in verification mail of AWS cognito
- generating a password for login instead of a token
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
MSAL.js is setting the prompt parameter, therefore, forcing B2C to ignore the cookie, therefore, forcing the sign-in.
Source
You can verify this by taking the URL MSAL.js redirects the user to and removing the prompt query parameter.
Related GitHub Issue: Allow Controlling the prompt parameter. We need to convince the MSAL library owners we need control over this parameter.