question

DisplayName-3010 avatar image
0 Votes"
DisplayName-3010 asked amanpreetsingh-msft answered

Azure AD B2C SAML Response encoding issue

Hi everyone,

If I create a user with a name which does have characters which need to be encoded correctly in the name or other attributes it is not correctly added to the SAML response, or not shown correctly by the test web application, the problem is with the surname, in this case containing an "ö".


     <saml:AttributeValue xsi:type="xs:string">John</saml:AttributeValue>
 </saml:Attribute>
 <saml:Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Surname">
     <saml:AttributeValue xsi:type="xs:string">Te??st</saml:AttributeValue>
 </saml:Attribute>
 <saml:Attribute Name="email" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" FriendlyName="Email Address">
     <saml:AttributeValue xsi:type="xs:string">john.doe@email.com</saml:AttributeValue>
 </saml:Attribute>

For OpenID Connect it works as expected:

{
"exp": 1652178625,
"nbf": 1652175025,
"ver": "1.0",
"iss": "",
"sub": "",
"aud": "",
"acr": "b2c_1a_signin",
"nonce": "defaultNonce",
"iat": 1652175025,
"auth_time": 1652175025,
"email": "john.doe@email.com",
"name": "john.doe@email.com",
"given_name": "John",
"family_name": "Teöstr",
"tid": "***"
}

Is this just a miss configuration, a bug or a missing feature?

azure-ad-b2c
· 2
5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

amanpreetsingh-msft avatar image amanpreetsingh-msft ·

@DisplayName-3010 • This looks like a bug as I tested it out in my tenant and experiencing the same behavior. I have raised a ticket with the Product Team regarding this issue. I will post the answer once I have an update.

1 Vote 1 ·
DisplayName-3010 avatar image DisplayName-3010 amanpreetsingh-msft ·

Thank you

0 Votes 0 ·

1 Answer

amanpreetsingh-msft avatar image
0 Votes"
amanpreetsingh-msft answered

Hi @DisplayName-3010 • I worked with the product team on this issue and they confirmed it as a bug. A work item is added for them to fix this issue. As of now, I don't have an ETA from their side. I will keep an eye on the progress and will post an update on this thread once the fix is released.

Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.