Reputation: 221
Using Policy Keys in Azure B2C custom policies
I am writing a custom policy for Azure B2C. A part of this policy is to use a custom claims provider to get some information from an Azure function and put it in the token. When calling this function a code is required to be put in as a query parameter on the call.
My policy works fine however I don't want to hard code that key or even the URL for the azure function. Is there anyway to set this URL/key as a policy key and refer to it within the policy. This way I won't need to maintain separate policies for each environment.
The metadata section of the claimsprovider in question.
<Metadata>
<Item Key="ServiceUrl">https://azurefuntiongoeashere/api/functionname?code=keygoeshere</Item>
<Item Key="SendClaimsIn">Body</Item>
Upvotes: 1
Views: 1880
Answers (1)
Reputation: 11335
If you secure your REST API with a conventional method like certificate/basic auth, or OAUTH, you can use a policy key.
https://learn.microsoft.com/en-us/azure/active-directory-b2c/secure-rest-api
Upvotes: 1
Related Questions
- Configuration in Azure AD B2C for Custom Policies
- Configure Azure Custom Policy For KeyCloak
- B2C custom policy calling a rest api
- Create Azure AD B2C custom policies and applications using powershell
- Azure B2C custom policy and Client Id
- Custom policies in Azure AD B2C
- Azure B2C Custom Policies: Invalid Request, client secret error
- Custom Policies and application insights
- Azure AD B2C Custom Policy
- Azure AD B2C custom policies