question

Nijo avatar image
0 Votes"
Nijo asked SaurabhSharma-msft answered

B2C Custom Policy REST Integration Error

Hello All,

I am new to Azure and B2C. I was trying REST API integration as explained here

I have followed the same steps but I am getting an error when I try to upload "SignUpOrSignin" policy file.

Validation failed: 1 validation error(s) found in policy "B2C_1A_SIGNUP_SIGNIN" of tenant ".onmicrosoft.com".Claim type "identityProvider" is the output claim of the relying party's technical profile, but it is not an output claim in any of the steps of user journey "SignUpOrSignIn".


Please advise, I have tried all the options to fix this issue from rookie level.


azure-ad-b2c
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Nijo avatar image
1 Vote"
Nijo answered

Hello,

It worked when I added the output claim for "identity provider" in the "SelfAsserted-LocalAccountSignin-Email " Technical claim also.

Nijo

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

SaurabhSharma-msft avatar image
1 Vote"
SaurabhSharma-msft answered

@Nijo Can you please check if your trustframeworkbase file contains "identityProvider" claims under ClaimsSchema.
<ClaimType Id="identityProvider">
<DisplayName>Identity Provider</DisplayName>
<DataType>string</DataType>
<DefaultPartnerClaimTypes>
<Protocol Name="OAuth2" PartnerClaimType="idp" />
<Protocol Name="OpenIdConnect" PartnerClaimType="idp" />
<Protocol Name="SAML2" PartnerClaimType="http://schemas.microsoft.com/identity/claims/identityprovider" />
</DefaultPartnerClaimTypes>
<UserHelpText/>
</ClaimType>
Also, please make sure to upload the policies in below order -

  1. TrustFrameworkBase.xml

  2. TrustFrameworkExtensions.xml

  3. SignUpOrSignin.xml

  4. ProfileEdit.xml

  5. PasswordReset.xml

If you still faces any issue, I suggest you to please attach policies files here so that I can validate it as well.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Nijo avatar image
0 Votes"
Nijo answered SaurabhSharma-msft converted comment to answer

Hello @SaurabhSharma-msft,

Thank you for your reply.
Yes, my trustframeworkbase file contains "identityProvider".
I had uploaded in the same order itself.

I have attached the15506-signuporsignin.xml15548-trustframeworkbase.xml15529-trustframeworkextensions.xml files please advise.

Many thanks.
Nijo



5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

SaurabhSharma-msft avatar image
1 Vote"
SaurabhSharma-msft answered

@Nijo I have looked into your policies and trustframeworkbase file was missing "identityProvider" claims in output claims of Claims Provider section.
16224-image.png
I have attached the updated policy with this response. I have tested this in my environment and your policies are uploading correctly now. Please upload the policies in order - base policy then extension policy and let me know if you see any issues.
16272-trustframeworkbase.xml



image.png (274.2 KiB)
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.