samples icon indicating copy to clipboard operation
samples copied to clipboard

Published 20 hours ago verified publisher icon azure-ad-b2c

embedded-password-reset not working with SAML enabled?

Open cch99 opened this issue 2 years ago • 0 comments
trafficstars

I have followed the embedded-password-reset policy and added the changes to my TrustFrameworkExtensions with the addition ClaimsProvider section that contains the SAML config however the password reset link always goes back to the SAML SP instead of the reset password flow. I also removed any reference to social login. Any idea what could be going on.

<ClaimsProvider>
  <DisplayName>Token Issuer</DisplayName>
  <TechnicalProfiles>
    <!-- SAML Token Issuer technical profile -->
    <TechnicalProfile Id="Saml2AssertionIssuer">
      <DisplayName>Token Issuer</DisplayName>
      <Protocol Name="SAML2" />
      <OutputTokenFormat>SAML2</OutputTokenFormat>
      <Metadata>
        <Item Key="IssuerUri">https://XXXX.onmicrosoft.com/impartner</Item>
      </Metadata>
      <CryptographicKeys>
        <Key Id="SamlAssertionSigning" StorageReferenceId="B2C_1A_SamlIdp" />
        <Key Id="SamlMessageSigning" StorageReferenceId="B2C_1A_SamlIdp" />
      </CryptographicKeys>
      <InputClaims />
      <OutputClaims />
      <UseTechnicalProfileForSessionManagement ReferenceId="SM-Saml-issuer" />
    </TechnicalProfile>
    <!-- Session management technical profile for SAML-based tokens -->
    <TechnicalProfile Id="SM-Saml-issuer">
      <DisplayName>Session Management Provider</DisplayName>
      <Protocol Name="Proprietary" Handler="Web.TPEngine.SSO.SamlSSOSessionProvider, Web.TPEngine, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null" />
    </TechnicalProfile>
  </TechnicalProfiles>
</ClaimsProvider>

cch99 avatar Jun 01 '23 21:06 cch99