Skip to content

Allow OIDC with Azure B2C#10

Open
Peterburnett wants to merge 29 commits intoTOTARA_160_STABLE-catalystfrom
azureb2c
Open

Allow OIDC with Azure B2C#10
Peterburnett wants to merge 29 commits intoTOTARA_160_STABLE-catalystfrom
azureb2c

Conversation

@Peterburnett
Copy link
Copy Markdown

@Peterburnett Peterburnett commented Mar 6, 2023

There are a couple of places where the client_secret should not be passed to Azure B2C as part of the authentication requests. B2C is picky about this, and will reject the token grant if passed. The data bindings also needed to be improved and allowed to suit custom values, as the B2C data bindings are different to the default bindings in AAD.

@Peterburnett
Allow OIDC with Azure B2C
78223d6 
There are a couple of places where the client_secret should not be passed to Azure B2C as part
of the authentication requests. B2C is picky about this, and will reject the token grant if passed.
The data bindings also needed to be improved and allowed to suit custom values, as the B2C data bindings
are different to the default bindings in AAD.
Peterburnett and others added 28 commits March 7, 2023 11:27
@Peterburnett
Bugfix
bff9c59
@Peterburnett
Bugfix #2
541853c
@Peterburnett
Fix warning for user creation before fields initialised
d5fe782
@Peterburnett
Removed totara incompatible test
c1cce0c
@Peterburnett
Use email as primary key for user matching
c11a20d
@Peterburnett
Merge pull request #12 from catalyst/azureb2cemail
3726921 
Use email as primary key for user matching
@Peterburnett
Debugging
79fa4a1
@Peterburnett
Corrected field mapping logic for custom mapped attributes
55866ee
@Peterburnett
Update auth method for matched accounts
110bdeb
@Peterburnett
Coerce user to OIDC correctly
2c3d7f0
@Peterburnett
Uncache password when coercing accounts
947b0a5
@Peterburnett
Update password update mechanism for account rollover
73a14b7
@Peterburnett
Update token to match found username on auth
df676f9
@Peterburnett
Lowercase comparisons of email before matching user
3641b5e
@Peterburnett
Second instance corrected
80fe3c4
@Peterburnett
Bugfix for user flow order
bafdcb8
@Peterburnett
Transform email at deserialise
0c04f08
@Peterburnett
Revert "Bugfix for user flow order"
8ed183a 
This reverts commit bafdcb8.
@Peterburnett
Revert "Second instance corrected"
01fd71a 
This reverts commit 80fe3c4.
@Peterburnett
Revert "Lowercase comparisons of email before matching user"
f6e7d23 
This reverts commit 3641b5e.
@Peterburnett
Apply lowercasing after token management
0845064
@Peterburnett
Bugfix for lowercase loading from token map
e400fd9
@Peterburnett
Allow for configurable matching
104401a
@matthewhilton
Merge pull request #13 from catalyst/config-matching
577871c 
Allow for configurable matching
@Peterburnett
Allow for email and idnumber based match routing
d3781c3
@Peterburnett
Fix null condition for user updating
2fd65c6
@Peterburnett
Another bugfix for user matching
c15b700
@Peterburnett
Set token to correct username for idnumber matching
ff604df
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Peterburnett @matthewhilton