question

YoshitakaAkimoto-3764 avatar image
0 Votes"
YoshitakaAkimoto-3764 asked YoshitakaAkimoto-3764 commented

Is it possible to control the cache of b2c-signin?

When the b2c-signin screen is displayed, a request to add an XMLHttpRequest header and send a Json is executed. This POST method is probably a CSRF countermeasures.
The cache for this response is returned privately. Is there a way to control this, such as no cache?

https://docs.microsoft.com/answers/storage/attachments/78006-b2csignin.png

azure-ad-b2c
b2csignin.png (46.9 KiB)
· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Thanks @YoshitakaAkimoto-3764. The B2C treats each policy as a separate authority. Thus the access tokens, refresh tokens and ID tokens returned from each policy are not interchangeable. So Could you please share the scenario to control the cache of b2C-signin?

0 Votes 0 ·

Thanks @JitendraRai-2073. I understand that it is incompatible with the response of other policies. My idea is not necessarily to control the cache. The response to this POST request doesn't include a header to invalidate the cache, but I'm wondering if it doesn't affect the cache because it doesn't include the body, I'm not sure.

0 Votes 0 ·

0 Answers