Hi,
Your link to https://azure.microsoft.com/en-au/blog/azure-ad-b2c-google-signin-issue/ does not refer to Code_Challenge flow, and I do not see any options on the Azure UI.
My provider has this flow:
STEP 1 - AUTHORIZE:
REQUEST:
GET: https://domain/tp/v1/oauth/authorize?
scope=SCOPE&
response_type=code&
client_id=YOUR_CLIENT_ID&
redirect_uri=https://YOUR_APP/callback&
code_challenge=CODE_CHALLENGE&
code_challenge_method=S256
RESPONSE - It is up to Mobile Device App (client) to choose to follow a redirect or to just extract the code:
HTTP/1.1 302 Found
Location: https://YOUR_APP/callback?code=AUTHORIZATION_CODE
STEP 2 - GET ACCESS TOKEN AND REFRESH TOKEN:
REQUEST:
POST https://domain/tp/v1/oauth/token
Content-Type: application/json
{
"grant_type": "authorization_code",
"client_id": "YOUR_CLIENT_ID",
"code_verifier": "CODE_VERIFIER",
"code": "AUTHORIZATION CODE FROM STEP 1",
"redirect_uri": "com.myclientapp://myclientapp.com/callback"
}
RESPONSE:
HTTP/1.1 200 OK
Content-Type: application/json
{
"refresh_token_expires_in": 28800,
"refresh_token": "wTX0BWbAIZXDi6m5yl7qjd506JjE5XVmO1Ar8uv0oCdkOg2b91",
"access_token_expires_in": 3600,
"access_token": "eyJhbGciOiJIUzI1NiJ9...37M",
"token_type": "Bearer"
}
However, the only settings I see on Azure B2C are:
Where and how do I configure the provider?