Reputation: 614
How to force refresh id_token from B2C with msal.js and react js
I'm using msal.js in my react project for authentication. In that, I have a profile edit option.
steps in profile edit
- Update the database
- Update B2C profile name with Graph API
So once I edit the name, the B2C profile name is updated. But not the id_token. I wanna force refresh the id_token form B2C. The acquireTokenSilent method is always fetching the token from the cache. Is there any way to force the application to get the new token from B2C?
here is my code for acquireTokenSilent method
async acquireToken(request, redirect) {
return msalApp
.acquireTokenSilent(request)
.then((loginResponse) => {
console.log('gg');
if (loginResponse) {
console.log(loginResponse);
this.setState({
account: loginResponse.account,
isAuthenticated: true,
error: null,
});
return true;
}
})
.catch((error) => {
// Call acquireTokenPopup (popup window) in case of acquireTokenSilent failure
// due to consent or interaction required ONLY
if (requiresInteraction(error.errorCode)) {
this.setState({
isAuthenticated: false,
});
return redirect ? msalApp.acquireTokenRedirect(request) : this.onSignIn(redirect);
}
console.error('Non-interactive error:', error.errorCode);
return false;
});
}
Upvotes: 2
Views: 3643
Answers (3)
Reputation: 3991
A bit of a late reply, but the request object passed in acquireTokenSilent(request) can have a forceRefresh boolean property which, according to the docs, forces silent requests to make network calls if true.
Upvotes: 1
Reputation: 11315
Since you are not using profile edit policy from B2C, this is the consequence. You’ll only get a new token with acquireTokenSilent if the msal objects from the session storage are cleared, otherwise until the token in the session storage has expired, it’s acting as the cache.
Upvotes: 1
Reputation: 934
Check out method definition in MSAL.js for the acquireTokenSilent method: https://github.com/AzureAD/microsoft-authentication-library-for-js/blob/dev/lib/msal-core/src/UserAgentApplication.ts#L667
/**
* Use this function to obtain a token before every call to the API / resource provider
*
* MSAL return's a cached token when available
* Or it send's a request to the STS to obtain a new token using a hidden iframe.
*
* @param {@link AuthenticationParameters}
*
* To renew idToken, please pass clientId as the only scope in the Authentication Parameters
* @returns {Promise.<AuthResponse>} - a promise that is fulfilled when this function has completed, or rejected if an error was raised. Returns the {@link AuthResponse} object
*
*/
acquireTokenSilent(userRequest: AuthenticationParameters): Promise<AuthResponse> {
Upvotes: 2
Related Questions
- how do we renew idtoken using msal?
- Azure AD B2C Not getting Access Token
- MSAL: InteractionRequiredAuthError: no_tokens_found: No refresh token found in the cache. Please sign-in
- How to get no expiry refresh token in Azure B2C flow in React
- Azure B2C - MSAL - Fetch ID Token with updated claims
- How to get azure ad refresh token with react
- how to refresh the access token in azure b2c using MSAL.js after 24 hours?
- Refreshing the access token from azure ad
- Refreshing token through msal.js
- Azure AD B2C - MSAL JS - Refreshing token yields AADB2C90055