Skip to content

Latest commit

 

History

History
53 lines (35 loc) · 3.09 KB

README.md

File metadata and controls

53 lines (35 loc) · 3.09 KB

Azure AD B2C Crash Course

Find the slides here

Description

One seemingly simple requirement for an app is to allow users to create an account. But the scope of that requirement grows quickly: How do they sign in? Change passwords? Can they sign in with social accounts like Facebook? What about implementing 2-Factor authentication?

That simple requirement of allowing users to create an account has now morphed into a full-blown crisis, and since you're dealing with identity, we must do our best to not leak any account information!

Azure AD B2C has been designed to deal with those requirements, and in this session you will learn how to harness and integrate the power of Azure AD B2C into your app allowing users to create accounts, sign-in (including with existing social network accounts), change passwords, and enable 2-factor authentication.

At the end of this session, you'll be able to identify users of your app and authorize them to protected resources.

The Talk

We start with a description of what B2C is. Exploring the fundamental terms such as Tenant (that's where everything goes), Applications (an abstraction that models your "real life" apps), Identity Providers (the things that perform the authentication), and Policies (those very important things which provide the interaction between your apps and B2C).

The talk then segues into a demo - and it's during this demo that we build up an app that allows user accounts to be created along with social authentication, MFA, and customization of the login UI.

Demo

The demo is broken up into two parts, the first explains the portal.

Portal

Mobile App and Web API

  • The protected resource is an Azure Function
  • We access everything that B2C provides through the MSAL client.

Additional Documentation