The following forum(s) have migrated to Microsoft Q&A (Preview): Azure Active Directory!
Visit Microsoft Q&A (Preview) to post new questions.

Learn More

Is this scenario possible with B2C custom policies RRS feed

  • Question

  • Hello,

    Is it possible to make the following work with Azure B2C:

    - users access a single-page application

    - they are redirected to an external SAML IdP (using B2C custom policies)

    - upon successful authentication, they receive the corresponding tokens from Azure B2C

    - the SPA then needs to access data via API. Those APIs are on-premise and "published" through API Management. But on-premise services only support SAML authentication.

    Is it possible that the SAML assertion is saved somewhere in the B2C session, an could be reused later on (via an API?) to pass it in a Bearer header when making the backend call?

    Thanks in advance

    • Edited by Binks821 Monday, August 21, 2017 8:06 AM
    Monday, August 21, 2017 8:03 AM

All replies