I have set up a Sign-In custom policy in Azure AD B2C in order to customise the GUI dynamic content during the login flow and customise the branding based on certain scenarios. This sign-in policy displays a "Forgot your password?" link that is handled by my application to initiate the flow for another custom Password Reset policy.
In the standard Password Reset policies provided by B2C, once the user has reset the password, an additional screen appears indicating that the password has been successfully changed and provides a link to re-execute the sign-in policy. With the custom policy, the redirect url is immediately called after the password has been reset.
Is it possible to configure an additional step to the Password Reset policy flow with a screen that shows a confirmation message?
I've been struggling with this for days as well. I've managed to get it working by adding the following to the Extensions file.
I think the trick is that this new technical profile has an outputclaim of justResetPassword, so it will fire to try and capture that value. As it's datatype is button though it doesn't display. This bit I am not very clear on, but as it is working and it took me this long to get here, I'm not going to question it too much.
You may notice this new technical profile references a ContentDefinition of
api.passwordchangesuccess
. This is a custom content definition that I created myself to provide a nicer custom heading for the "Password reset message". You may be able to utilize the ContentDefinition api.selfasserted instead if you don't need too much customisation of the success page.Final result after resetting password: Screenshot