Skip to content
/ active-directory-b2c-dotnet-webapp-and-webapi Public
forked from Azure-Samples/active-directory-b2c-dotnet-webapp-and-webapi

A combined sample for a .NET web application that calls a .NET Web API, both secured using Azure AD B2C

aka.ms/aadb2c

License

MIT license
0 stars 238 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

azzab80/active-directory-b2c-dotnet-webapp-and-webapi

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

25 Commits
.nuget
.nuget
 
 
TaskService
TaskService
 
 
TaskWebApp
TaskWebApp
 
 
.gitignore
.gitignore
 
 
B2C-WebAPI-DotNet.sln
B2C-WebAPI-DotNet.sln
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

services platforms author
active-directory-b2c
dotnet
dstrockis

Azure AD B2C: Call a .NET web API from a .NET web app

This sample has a solution file that contains two projects: TaskWebApp and TaskService. TaskWebApp is a "To-do" MVC web application that the user interacts with. TaskService is the app's back-end web API that stores each user's to-do list. You can use this sample to quickly get started with building a .NET web app, web api, and calling the api from the web app.

The sample also covers:

  • Calling an OpenID Connect identity provider (Azure AD B2C)
  • Acquiring a token from Azure AD B2C using MSAL

See our detailed documentation on:

Getting started

Our sample is configured to use the policies and client ID of our demo tenant. To use our sample with your own configuration:

  1. Create an Azure AD B2C tenant.
  2. Register a web api.
  3. Register a web app.
  4. Set up policies.
  5. Grant the web app permissions to use the web api.

Note: The client application and web API must use the same Azure AD B2C directory.

Update the Azure AD B2C configuration

Open web.config in the TaskService project and replace the values for

  • ida:Tenant with your tenant name
  • ida:ClientId with your web api application ID
  • ida:SignUpSignInPolicyId with your "Sign-up or Sign-in" policy name

Open web.config in the TaskWebApp project and replace the values for

  • ida:Tenant with your tenant name
  • ida:ClientId with your web app application ID
  • ida:ClientSecret with your web app secret key
  • ida:SignUpSignInPolicyId with your "Sign-up or Sign-in" policy name
  • ida:EditProfilePolicyId with your "Edit Profile" policy name
  • ida:ResetPasswordPolicyId with your "Reset Password" policy name

Run the sample

Build and run both the apps. Sign up and sign in, and create tasks for the signed-in user. Sign out and sign in as a different user. Create tasks for that user. Notice how the tasks are stored per-user on the API, because the API extracts the user's identity from the token it receives. Also try playing with the scopes. Remove the permission to "write" and then try adding a task. Just make sure to sign out each time you change the scope.

Next Steps

Customize your user experience further by supporting more identity providers. Checkout the docs belows to learn how to add additional providers:

Microsoft

Facebook

Google

Amazon

LinkedIn

Questions & Issues

Please file any questions or problems with the sample as a github issue. You can also post on StackOverflow with the tag azure-ad-b2c.

About

A combined sample for a .NET web application that calls a .NET Web API, both secured using Azure AD B2C

aka.ms/aadb2c

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • C# 53.2%
  • JavaScript 33.1%
  • HTML 11.4%
  • CSS 2.1%
  • Classic ASP 0.2%