Simulating MS AD Login for Jmeter Performance Testing

Question

Hi Team, 

For my project, I need to write a Jmeter script to performance test the Login functionality. It is using Azure AD B2C API for login.

In the network tab of Chrome, it shows that Microsoft is calling 3 APIs internally before it comes back to the Redirect page of the website.

1. GET oauth2/v2.0/authorize - We are able to simulate in Jmeter/Postman

2. POST SelfAsserted - This has my username and password in the Form Data. Not able to simulate in Jmeter/Postman

3. GET api/CombinedSigninAndSignup/confirmed - This is the last API from Microsoft which gets called.

4. The redirect page of my Application is called, it has a token in id_token field in Form data.

Could you please tell us, how the simulation for SelfAsserted and Confirmed call will work ? Whether its possible to simulate the exact flow or not. I have got many posts online about how to simulate Authorize call, but not finding enough material on SelfAsserted API call. 

Kindly assist.

Thanks,

Saheli

Answer 1

We're migrating from MSDN to Microsoft Q&A as our new forums and Azure AD B2C has already made the move!  To ease your transition experience, we have created a forum thread on Q&A  where one of our specialized engineers in the subject or the Azure community members can provide the best possible answer to your scenario or question. In future, you can ask and look for the discussion for Azure AD B2C related questions here.

We are actively working to onboard remaining Azure services on Microsoft Q&A. We will make a public announcement once complete. Want to Learn more about new platform: Microsoft Q&A Getting Started