I am trying to design a Saas multitenant application based on an existing single-tenant application using IdentityServer4(abstracting Azure AD with underlying AD Connect, MSAL local accounts), and my current requirements are :
SSO to multiple SPA applications connecting to microservices.
Support SSO login using on-prem active directory credentials(business IDs).
Support login using local accounts in my existing database.
Support social login (Google and Facebook).
I have read the Identity Experience framework custom policies documentation but I am not 100% sure from the documentation whether all these are possible if I use Azure AD B2C as my IAM.
Please let me know if I need to look at some other service to cater to my requirements.
Also please let me know if the following two topologies are supported :
1)
2)
